Breach

Numerous healthcare providers across the U.S. had their patient data compromised following an attack against the legacy data migration servers of major healthcare software-as-a-service firm Oracle Health, previously known as Cerner, initially discovered late last month, reports BleepingComputer.

SiliconAngle reports that third-party compromise accounted for 36% of all data breaches last year, which may still be undervalued due to inadequate reporting and improper classification, highlighting the escalation in vendor-driven attacks.

Widely used cloud-based streaming tools platform StreamElements has disclosed having been impacted by a data breach involving a former third-party service provider.

The Register reports that data breach notification service Have I Been Pwned had nearly 16,000 records belonging to current and former Mailchimp mailing list subscribers stolen following a successful phishing attack against HIBP Administrator Troy Hunt.

Major U.S. wheelchair and mobility equipment provider Numotion had data from over 494,000 individuals, or its entire customer base, compromised after the breach of certain email accounts from September to November, according to SecurityWeek.

New York University had over 1 million students' personal data reported by DataBreach.com's Zach Ganot to have been leaked following the hijacking of the university's website over the weekend, according to The Record, a news site by cybersecurity firm Recorded Future.

Cryptocurrency lending platform Abracadabra.Finance had nearly $13 million worth of Ethereum pilfered and distributed across at least three cryptowallets following an attack initially identified by Cyvers and PeckShield, The Crypto Times reports.

Hackread reports that cybersecurity firm CloudSEK has contested Oracle's categorical rejection of an alleged breach of its Oracle Cloud single sign-on endpoint that purportedly resulted in the compromise of six million records.