PrivacySignal
Breach

The Breach That Won’t End: An Update on Canvas, and how they created an EdTech’s Vendor Trust Problem

DataBreaches.net · · International · Data Breaches

Jeff Piontek comments on the Instructure breach: The forensic review has taken far longer than anyone expected. Through June, Instructure was still finalizing customer-specific findings and asking institutions to designate a security contact to receive them. In early July, the company began delivering the first wave of institution-specific data packets, through a permissioned file-sharing link... Source

Who should care: Cybersecurity · Privacy officers · Administrators

This summary is AI-assisted and may contain errors. It is an original briefing to help you gauge significance quickly — not a reproduction of the source. Always read the linked original before relying on it. See our methodology.

Related stories

Breach
BleepingComputer · · International

Coca-Cola says Fairlife ransomware attack halts US dairy production

The Coca-Cola Company disclosed today that a ransomware attack impacting its Fairlife dairy subsidiary has disrupted operations, temporarily suspending production of Fairlife products across the United States. [...]

Who should care: Cybersecurity · Privacy officers · Administrators

#breach#security Read original →
Breach
BleepingComputer · · International

23andMe to pay $18 million in new genetics data breach settlement

23andMe has agreed to an $18 million settlement with a coalition of 43 state attorneys general over its failure to adequately protect customers' genetic data from a breach. The settlement resolves multistate claims that the company did not take sufficient steps to secure some of the most sensitive personal information people can share.

Who should care: Cybersecurity · Privacy officers · Administrators · Lawyers · Compliance

#breach#enforcement Read original →
Breach
The Guardian — Tech · · International

TikTok facing UK investigation amid fears over age checks and harm to children

UK media regulator Ofcom has opened a formal investigation into TikTok over concerns that its age verification measures are ineffective, potentially leaving children exposed to content about suicide, self-harm, and pornography. The probe comes roughly a year after child protection requirements under the Online Safety Act took effect.

Who should care: Cybersecurity · Privacy officers · Administrators · Lawyers · Compliance

#breach#enforcement#regulation Read original →
Breach
DataBreaches.net · · International

AU: Regulator’s preliminary findings did not indicate Qantas breached privacy obligations

Australia's privacy regulator conducted a preliminary inquiry into a 2025 Qantas data breach that exposed 5.67 million customer records and found no indication the airline likely violated the country's privacy obligations. The Office of the Australian Information Commissioner has not issued a final determination.

Who should care: Cybersecurity · Privacy officers · Administrators · Lawyers · Compliance · General readers · Policy

#breach#regulation#privacy Read original →
Breach
HIPAA Journal · · US Federal

Vision Care Providers Settle Data Breach Class Actions

Two vision care providers, Total Vision in California and Naperville-area provider Naper Vision, have agreed to settlements resolving class action lawsuits stemming from data breaches. The cases were brought under health data privacy frameworks, with affected patients seeking compensation for the exposure of their personal and medical information.

Who should care: Cybersecurity · Privacy officers · Administrators · Healthcare professionals · Compliance

#breach#healthcare Read original →