Personal Information of 33.7 Million Stolen From Coupang

South Korea’s Coupang disclosed a five‑month data breach in which attackers accessed names, addresses, email addresses, phone numbers, and order history for about 33.7 million customers. The breach began in late June and was only detected in mid‑November, illustrating how prolonged unauthorized access can go unnoticed before large‑scale exposure is revealed. The company has blocked the access, notified authorities, and is working through the fallout of a very large consumer data loss.

London councils cyber incident: Data breach warning as recovery expected to take weeks

Three inner London councils, including Westminster and Kensington and Chelsea, confirmed evidence that data was copied in a recent cyberattack and warned residents to be vigilant while recovery continues. Officials estimate that restoring full services safely could take weeks, with some applications temporarily suspended and ongoing coordination with national cybersecurity authorities. The disclosure highlights the long recovery timeline and public communications challenges when local government systems are affected.

FTC takes action against education technology provider for failing to secure student data

The FTC announced that Illuminate Education must implement an information security program and delete unnecessary data after a breach exposed personal information of more than 10 million students. The action alleges that the company failed to deploy reasonable security measures to protect sensitive student data held in cloud databases. The settlement underscores regulatory accountability for large‑scale data security failures involving children’s information.

Ireland launches 2025 national cyber risk assessment

Ireland’s National Cyber Security Centre released a comprehensive 2025 assessment outlining escalating cyber threats, systemic risks, and vulnerabilities across critical sectors such as energy, transport, healthcare, and finance. The report notes increasingly sophisticated nation‑state activity, growing cybercrime, and potential cascading impacts on interconnected infrastructure. It provides an evidence base for strengthening national preparedness, resilience, and strategic responses to evolving threats.

AI highlighted as major cybersecurity threat in Experian’s 2026 forecast

Experian released its 2026 Data Breach Industry Forecast, predicting that artificial intelligence will drive a new wave of sophisticated attacks, along with other emerging threats like quantum computing. The forecast warns of more convincing synthetic identities, autonomous AI agents, and shape‑shifting malware, reflecting rapid adoption of advanced tools by attackers. It signals expectations of faster, harder‑to‑detect cyber threats in the coming year and encourages proactive preparation.

AT&T data breach settlement claim deadline approaches

AT&T agreed to a $177 million settlement after two separate 2024 data leaks, and affected customers can file claims for up to $7,500, with the deadline set for December 18, 2025. The leaks involved millions of users’ sensitive information, including Social Security numbers, and stemmed from separate incidents earlier in 2024. The news emphasizes lingering legal and financial consequences long after the initial breaches, as well as the need for timely action by those eligible to claim.