People trust password managers, and when that trust isn’t upheld, it can prove costly — as LastPass has just discovered.

Pornhub’s situation underscores the persistent risks organizations face from third-party vendors—even years after relationships end—and comes as the site is already facing increased scrutiny due to evolving U.S. regulatory requirements over age verification and privacy standards.

LastPass faces $1.6 million fine from U.K. regulators after 2022 data breach exposed 1.6 million users. Password manager failed proper security controls.

Hackers linked to Beijing accessed the email account of the U.S. ambassador to China, Nicholas Burns, in an attack that is believed to have compromised at least hundreds of thousands of individual U.S. government emails. The departments were among the federal agencies compromised in a newly discovered China-based hacking campaign, officials said.

U.K.-based healthcare tech provider DXS International said it discovered and contained a data breach on Sunday. A ransomware gang took credit for the breach.

A ransomware group stole the personal information of over 113,000 people from Richmond Behavioral Health Authority’s network.

Petco disclosed a data breach exposing customer Social Security numbers, financial account details, and driver's license information due to a software error.

A Michigan-based company that helps car dealerships with financing and credit reports is working to contact nearly 6 million Americans after a data breach.

The Centre told the Lok Sabha that no Aadhaar data breach has occurred from the core UIDAI database till date, citing strong security architecture and regular cybersecurity audits.