Key developments
7-Eleven breach exposes 185,300 people
BleepingComputer's Sergiu Gatlan reported that 7-Eleven disclosed unauthorized access on April 8 to systems used to store franchisee documents, with customer notification letters sent May 1. ShinyHunters later claimed responsibility, saying it stole more than 600,000 records from 7-Eleven's Salesforce environment and leaked a 9.4 GB archive after ransom demands were rejected. Have I Been Pwned analyzed the leaked data and estimated exposure for 185,300 people, including names, dates of birth, email addresses, phone numbers, and physical addresses.
Why it matters
This is a large consumer data breach with leaked personal identifiers and a named extortion actor.
Sources & driving stories
BLEEPINGCOMPUTER · Sergiu Gatlan
BleepingComputer coverageOncology Institute confirms patient data access
Security Affairs' Pierluigi Paganini and Rescana reported that The Oncology Institute was notified on May 20 that Kroll had detected unauthorized third-party access to vendor-managed systems affecting patient data. The company had first disclosed a related incident in a November 2025 SEC filing, but the latest notice is the first public confirmation that patient data systems were accessed. Rescana said the likely vendor is Cognizant-owned TriZetto Provider Solutions, while the attacker, data types, and number of affected patients remain unconfirmed.
Why it matters
It extends a healthcare vendor incident into confirmed patient-data exposure without yet defining the full scope.
Sources & driving stories
SECURITY AFFAIRS · Pierluigi Paganini
Security Affairs coverageRESCANA
Rescana coverageRadiology Associates notifies 266,000 victims
Rescana reported that Radiology Associates of Richmond began sending breach notices on May 21 after forensic review found files containing PHI were acquired without authorization in a network intrusion discovered around July 25, 2025. The exposed data included names, Social Security numbers, dates of birth, addresses, government-issued identification numbers, medical and health insurance information, and some financial account details. The firm said it reported the incident to HHS and multiple state attorneys general.
Why it matters
The breach combines large-scale patient data exposure with highly sensitive identity and health information.
Sources & driving stories
RESCANA
Rescana coverageWorth noting
WORTH NOTING
Krispy Kreme claims due June 22
The settlement turns a 2024 ransomware incident into an active privacy remediation process, with cash payouts and credit monitoring still available.
Still unclear
OPEN QUESTION
Will 7-Eleven confirm ShinyHunters' attribution?
Public reporting still leaves official attribution and the final affected-record count unresolved.
OPEN QUESTION
Which other providers were hit by the vendor breach?
The Oncology Institute says the same third-party incident may have affected additional healthcare organizations, but they have not been identified.