Full List

Search

Recent Breaches

• Abri Credit Union May 3, 2024 • [ data leak ] Abri Credit Union disclosed unauthorized access to its systems occurring in May 2024 that was discovered in December 2025. The incident may have exposed personal, financial, and limited medical information of members. The credit union notified affected individuals and offered credit monitoring services; no operational disruption was publicly reported.
• The Post Millennial May 2, 2024 Have I Been Pwned adds the information for 26,818,266 people whose data was leaked in a recent hack of The Post Millennial conservative news website.
• Human Events May 2, 2024 • [ hack, leak ] The conservative news website Human Events is also hacked and replaced with a page leaking private information.
• The Post Millennial May 2, 2024 • [ hack, misconfiguration, technology ] In May 2024, the conservative news website The Post Millennial suffered a data breach. The breach resulted in the defacement of the website and links posted to 3 different corpuses of data including hundreds of writers and editors (IP, physical address and email exposed), tens of thousands of subscribers to the site (name, email, username, phone and plain text password exposed), and tens of millions of email addresses from thousands of mailing lists alleged to have been used by The Post Millennial (this has not been independently verified). The mailing lists appear to be sourced from various campaigns not necessarily run by The Post Millennial and contain a variety of different personal attributes including name, phone and physical address (depending on the campaign). The data was subsequently posted to a popular hacking forum and extensively torrented.
• Brandywine Realty Trust May 1, 2024 • [ ransomware, malware ] Philadelphia-based real estate company Brandywine Realty Trust discloses to have fell victim to a ransomware attack that disrupted some of its business applications.
• Payroll Vendor for UK Ministry of Defence May 1, 2024 The UK Government confirmed today that a threat actor recently breached the countrys Ministry of Defence and gained access to part of the Armed Forces payment network.
• Firstmac Limited May 1, 2024 • [ leak, finance ] Firstmac Limited warns customers that it suffered a data breach a day after the new Embargo cyber-extortion group leaked over 500GB of data allegedly stolen from the firm.
• Atlas May 1, 2024 • [ ransomware, malware, energy ] The Back Basta extortion group claims to have breached Atlas, one of the largest national distributors of fuel in the United States. Black Basta purportedly stole 730 GB of data
• South African Department of Justice and Constitutional Development May 1, 2024 • [ hack, financial, government ] The South African Department of Justice and Constitutional Development (DJ&CD) suffers a cyber security incident affecting child maintenance payments.
• At least three Wyndham hotels May 1, 2024 • [ espionage, malware, hospitality ] pcTattletale, a consumer-grade spyware app is found running on the check-in systems of at least three Wyndham hotels across the United States.
• AddComm May 1, 2024 Dutch bank ABN Amro says client data may have been compromised in a ransomware attack at third-party services provider AddComm.
• Brosix and Chatox May 1, 2024 • [ hack, misconfiguration, technology ] Brosix and Chatox promised secure messaging, but threat actors accessed unprotected backups containing highly sensitive pharmacy and patient communications
• Undisclosed contractor April 30, 2024 The infamous IntelBroker threat actor claims to have breached a third-party contractor and stolen sensitive data belonging to two prominent banks in the United Kingdom: HSBC and Barclays.
• Regional Cancer Center April 30, 2024 • [ ransomware, malware, healthcare ] Details of at least 2 million patients with the Regional Cancer Center (RCC) are compromised, affecting 11 out of 14 servers and causing disruptions in many divisions, including the Radiation Department. The attackers demand a ransom.
• El Centro Del Barrio (CentroMed) April 30, 2024 • [ hack, healthcare ] San Antonio-based healthcare provider El Centro Del Barrio (which operates as CentroMed) is informing 400,000 patients that their personal and protected health information was compromised in a recent cyberattack.
• City of Helsinki April 30, 2024 • [ leak, education ] The City of Helsinki discloses it is investigating a data breach in its education division, which it discovered in late April 2024, impacting tens of thousands of students, guardians, and personnel.
• Atrium Health April 29, 2024 • [ social, phishing, healthcare ] Atrium Health sends notifications to patients who may have been impacted by a malicious email sent to employees in April, through which an unauthorized third party gained access to a group of employees emails.
• Equinox April 29, 2024 • [ ransomware, malware, government ] Equinox notifies clients and staff members about a data security incident on April 29 due to a LockBit 3.0 ransomware attack.
• London Drugs April 28, 2024 • [ ransomware, malware, retail ] Canadian pharmacy chain London Drugs closes all its retail stores to contain what it described as a "cybersecurity incident." One month later the LockBit ransomware operation claims responsibility for the attack.
• Pueblo County School District 70 April 27, 2024 • [ ransomware, malware, education ] Pueblo County School District 70 is the victim of a ransomware attack.