Data Breach Roundup (July 3 - 9, 2026)

Data Breach Roundup (July 3 - 9, 2026)

Accenture confirms breach after hacker offers stolen data for sale

Accenture is an IT company with a global reach providing consulting, cloud services, and more. A threat actor known as 888 claims to have stolen 35GB of data containing source code, RSA and SSH keys, Azure tokens,

Accenture confirms breach after hacker offers stolen data for sale
IT services giant Accenture has confirmed it suffered a security breach after a threat actor claimed to have stolen 35 GB of source code and other data from the company.

Another massive data breach exposed millions of driver’s license numbers

AssuranceAmerica is a provider of car and rental insurance in more than a dozen US states. On March 17, they discovered unauthorized access into their systems and concluded that attackers had stolen names, contact information, and driver's license numbers for almost 7 million customers. They said the attackers also took information about customers’ auto insurance policies and accounts, their drivers and vehicles, and details about customer claims.

Another massive data breach exposed millions of driver’s license numbers | TechCrunch
The cyberattack targeting a U.S. insurance giant is the largest known breach of driver’s license numbers so far in 2026.

Mount Royal University confirms breach as hackers claim attack

Canadian university Mount Royal has confirmed a data breach on June 17. The attack impacted current and former students. The attackers claim to have 10 TB of data. Little else is known at this time, but the university is promising an update once the investigation is complete.

Mount Royal University confirms breach as hackers claim attack
Mount Royal University in Calgary says hackers stole and then deleted data from its file storage systems after breaching the university’s network.

European cloud provider Nextcloud leaks 367K records, exposing staff and clients

Nextcloud is a popular option for privacy enthusiasts to self-host their own complete cloud suite, however they do offer managed services for enterprise customers. It appears that this service was misconfigured and exposed nearly 8 GB - 367,000 files - of customer data. It includes data like invoices, email messages, names, email addresses and much more of clients like IONOS, STRATO, and a German school ministry.

https://cybernews.com/security/nextcloud-cloud-provider-data-leak/

Telco giant KDDI says data breach affects over 12 million people

An update to a story from last week. Last week we said that Japanese ISP KDDI's breach could've impacted up to 14 million people. We now know that 12 million accounts have been impacted, as well as 7.6 million passwords.

Telco giant KDDI says data breach affects over 12 million people
Japanese telecommunications giant KDDI says that millions of people had their email addresses and passwords exposed after attackers breached an email platform used by five internet service providers (ISPs) in the country.

Community Discussion