Here’s your weekly #databreach news roundup:
PoinCampus, IMI, Casio UK, Grubhub, and Ya-moon.
PoinCampus
XposedOrNot += PoinCampus Data Breach
— XposedOrNot (@XposedOrNot) February 9, 2025
The PoinCampus #databreach in November 2024 affected the South Korean education platform, exposing 89K unique email addresses along with names and a limited number of phone numbers and dates of birth. pic.twitter.com/EEFRgY8jEt
Read more at : https://xposedornot.com/xposed#PoinCampus
IMI
IMI becomes the latest British engineering firm to be hacked
— DevaOnBreaches (@DevaOnBreaches) February 8, 2025
British engineering company IMI has disclosed a cybersecurity incident just days after rival firm Smiths reported it was targeted by hackers. #databreachhttps://t.co/icPMu3Tvkp
British engineering firm IMI has disclosed a cybersecurity incident involving unauthorized access to its systems, just days after a similar breach at rival Smiths Group. IMI has engaged external cybersecurity experts to investigate and contain the attack while complying with regulatory obligations. The company has not confirmed whether data was stolen, but the U.K.’s Information Commissioner’s Office has received a data breach report and is assessing the situation.
Casio UK
Casio UK's e-shop at casio[.]co[.]uk was hacked to include malicious scripts that stole credit card and customer information between January 14 and 24, 2025. #databreachhttps://t.co/Z9I9a2DNIf
— DevaOnBreaches (@DevaOnBreaches) February 6, 2025
Casio UK’s e-shop was compromised between January 14-24, 2025, with malicious scripts stealing customer credit card and personal details. The breach, exploiting Magento vulnerabilities, was discovered by JSCrambler on January 28 and removed within 24 hours. Attackers used a skimmer to inject a fake checkout form, exfiltrating encrypted data to a Russian server. JSCrambler noted Casio UK’s weak Content Security Policy (CSP) allowed the attack. This follows prior security incidents, including an October 2024 ransomware attack exposing 8,500 individuals’ data and another breach affecting ClassPad users from 149 countries.
Grubhub
Popular food delivery company Grubhub announced it suffered a security breach involving a “third-party actor,” which gave “unauthorized access to certain user contact information. #databreachhttps://t.co/wktyggrjAU
— DevaOnBreaches (@DevaOnBreaches) February 5, 2025
Grubhub disclosed a security breach caused by unauthorized access through a third-party service provider, exposing user contact details, partial payment card data for campus diners, and hashed passwords for legacy systems. The company terminated the provider’s access, partnered with forensic experts, and reinforced security measures, including credential rotations and enhanced monitoring. No full payment card numbers, bank details, or sensitive IDs were compromised. Users are advised to use unique passwords to minimize risk.
Ya-moon
Exclusive and New: A hacker claims to have breached Ya-moon, a notorious South Korean sexual crime hub against women and children operating since 1990. User data has now been leaked!
— Hackread.com (@HackRead) February 6, 2025
Read: https://t.co/pTa9G4f5F9#CyberSecurity #DataBreach #SouthKorea #CyberCrime
A hacker named “Valerie” claims to have breached Ya-moon, a notorious South Korean pornography site linked to illegal content, exposing 326,000 user records. The leaked data includes usernames, IP addresses, plain-text passwords, chat logs, and private messages, potentially aiding law enforcement in identifying perpetrators. Despite previous failed attempts by authorities to dismantle the site, this breach could serve as a critical investigative tool. The exposure of South Korean-based user activity highlights security lapses within the platform and may lead to significant legal actions.
