Full List

Search

Recent Breaches

• Visionworks January 1, 2025 • [ leak, healthcare ] The federal suit, which seeks class-action status, alleges a data breach exposed 40,000 customers' private data.
• Nikki‑Universal Co. Ltd January 1, 2025 • [ ransomware, malware, manufacturing ] Nikki-Universal Co. Ltd., produsen kimia asal Jepang jadi korban serangan ransomware pada Desember 2024. Data dicuri, server tak berfungsi
• Cell C January 1, 2025 • [ ransomware, technology ] Cell C said that the threat actors that breached its systems and stole a limited amount of customer data identified themselves as the RansomHouse hacking group.
• Starkville-Oktibbeha Consolidated School District January 1, 2025 • [ ransomware, education ] A data breach that has crippled Starkville-Oktibbeha Consolidated School Districts network appears to be a ransomware attack, according to online sources.
• Valdosta State University (VSU) January 1, 2025 • [ hack, education ] Valdosta State University is working to fully restore its network and university systems after discovering a significant cybersecurity intrusion.
• Carruth Compliance Consulting, Inc. January 1, 2025 • [ hack ] On January 13, 2025, Carruth Compliance Consulting (CCC) posted a website notice entitled Notice of Data Security Incident after discovering that...
• Discord January 1, 2025 • [ hack, technology ] third-party customer support services hacked
• Fondo Genesis (MetLife) December 31, 2024 • [ ransomware, malware, finance ] The ransomware group RansomHub claims responsibility for a breach of MetLife's operations in Latin America. MetLife denies the allegations, acknowledging a separate cyber incident involving Fondo Genesis, a subsidiary operating solely in Ecuador. Claims to have exfiltrated 1TB of data.
• Ford X Account December 31, 2024 • [ hack, manufacturing ] Ford confirms that its X account was briefly compromised, after posts referencing the Israel-Palestine war are published.
• Thomas Cook (India) Ltd. December 31, 2024 • [ hack, retail ] Global travel agency Thomas Cook's Indian arm closes its affected systems after a cyber attack takes down its IT infrastructure.
• Office of Foreign Assets Control December 30, 2024 Chinese state-backed threat actors breach the Office of Foreign Assets Control (OFAC), a Treasury Department office that administers and enforces trade and economic sanctions programs, exploiting a vulnerability in a BeyondTrust Remote Support SaaS instance.
• DEphoto December 28, 2024 The threat actor known as 0mid16B breaches DEphoto, a U.K. photo business, twice in few days, acquiring the personal information of 555,952 customers.
• Multiple Italian sites, including Malpensa and Linate airports December 28, 2024 Pro-Russia group Noname057(16) targets Italian sites, including Malpensa and Linate airports, in a new DDoS campaign amid rising geopolitical tensions.
• Atos December 28, 2024 French tech giant Atos, which secures communications for the country's military and secret services, denies claims made by the Space Bears ransomware gang that they compromised one of its databases. Instead the threat actors breached unconnected "external third-party infrastructure," which, although stored data mentioning the company's name, was not managed or secured by Atos.
• The Children’s Center of Hamden December 28, 2024 • [ hack, healthcare ] The Childrens Center of Hamden reported a December 2024 data-security incident in which an unauthorized actor acquired files from its systems, exposing PII/PHI for ~5.2k clients and staff; investigation ended June 29, 2025; notifications began Aug 12, 2025; credit monitoring offered.
• Undisclosed U.S. telecommunications company December 27, 2024 • [ hack, technology ] A White House official adds a ninth U.S. telecommunications company to the list of telecoms breached in a Chinese hacking campaign that impacted dozens of countries.
• Infocert December 27, 2024 Infocert, one of the leading Spid digital identity providers in Italy, confirms a serious breach of its users personal data. The attackers claim to have stolen a huge volume of data from Infocerts databases, including 5.5 million registrations, 1.1 million telephone numbers, and 2.5 million email addresses.
• Turin Public Transport December 27, 2024 • [ hack, ddos, government ] Pro-Russia threat actors from Noname057(16) target Italian ministries, institutions, critical infrastructure websites and private organizations in coincidence with the visit of Ukrainian President Volodymyr Zelensky to Italy.
• Fraunhofer Institute for Industrial Engineering IAO December 27, 2024 • [ ransomware, malware, technology ] On December 27, 2024, Fraunhofer IAO in Stuttgart suffered a ransomware attack that encrypted and disrupted internal systems. The institute reported the incident to the Bavarian Data Protection Authority and law enforcement within statutory deadlines. While research data is typically anonymized, unauthorized disclosure cannot be ruled out, though no confirmed exfiltration has been identified.
• X account of Animoca Brands co-founder Yat Siu December 26, 2024 A threat actor compromises the X account of Animoca Brands co-founder Yat Siu, using it to promote a fraudulent token.