A misconfigured Azure Blob storage container belonging to TalentHook has exposed nearly 26 million resumes, containing sensitive personal information of US job seekers. This breach poses significant risks for identity theft and targeted phishing attacks, leading to potential harassment and fraud against individuals whose data was leaked.

Over 4 billion user records, including sensitive financial, WeChat, and Alipay data, were exposed in what is believed to be the largest data leak in China’s history. The dataset, comprising 631 gigabytes, was left unprotected and is thought to have been collected for surveillance and profiling purposes. Affected individuals face significant risks with no clear recourse due to the anonymity of the data's source.

Hong Kong's privacy authority is investigating a data breach at Louis Vuitton that has affected approximately 419,000 customers. The leaked data includes personal details such as names, passport information, addresses, and shopping history, although no payment information was compromised. The investigation will assess whether there were delays in notifying the authorities about the breach.

A vulnerability in GitHub Copilot Chat, discovered by Legit Security, allowed the leakage of sensitive data such as AWS keys and zero-day bugs from private repositories. By exploiting hidden comments and remote prompt injection, attackers could control Copilot's responses and exfiltrate sensitive information from users. GitHub has since addressed the issue by blocking the method used for data leakage.

Interlock ransomware has leaked sensitive data from a cyberattack on the city of St. Paul, exposing critical information and raising concerns about cybersecurity and data protection. The breach highlights the ongoing threats posed by ransomware attacks to municipal systems.