Full List

Search

Recent Breaches

• Japan Airlines December 26, 2024 • [ hack ] Japans flag carrier announces that it has restored its systems following a cyber incident that delayed some domestic and international flights.
• Trusteed Plans Service Corporation December 26, 2024 • [ leak, finance ] TPSC detected a breach on 12/26/2024; investigation found unauthorized access and data acquisition. A data review completed 08/07/2025 identified 19,775 impacted individuals. Notices sent 09/1509/16/2025 detail exposure of PII/PHI (DOB, SSN, health info; sometimes insurance IDs). No outage or misuse evidence reported.
• Mi Argentina December 25, 2024 • [ hack, government ] The Mi Argentina site and the SUBE card app, two of the governments most important digital platforms, suffer a cyber attack.
• City of West Haven December 25, 2024 • [ ransomware, government ] The government of West Haven, Connecticut, says it is investigating a cyberattack that recently forced it to temporarily shut down all of its IT systems. The Qilin ransomware group claims responsibilty for the attack.
• ArdyssLife December 24, 2024 • [ hack, manufacturing ] The threat actor known as 0mid16B claims to have successfully attacked Ardyss[.]com and ArdyssLife[.]com, stealin 596 GB of data from United States ArdyssLife[.]com and Ardyss[.]com server network.
• Undisclosed Organization(s) December 24, 2024 Researchers at Northwave reveal that UNC5325, a suspected Chinese threat actor, is exploiting CVE-2024-9474, a vulnerability in Palo Alto firewalls, to install custom malware backdoor for espionage.
• CyberHaven December 24, 2024 • [ hack, malware, technology ] Data-loss prevention startup Cyberhaven says threat actors published a malicious update to its Chrome extension that was capable of stealing customer passwords and session tokens.
• Speedio December 24, 2024 • [ leak, misconfiguration, technology ] In December 2024, data alleged to have been taken from the Brazilian lead generation platform Speedio was posted for sale to a popular hacking forum. The data was allegedly obtained from an unsecured Elasticsearch instance and contained over 62M records of largely public business information including company names, phone numbers and physical addresses, along with 27M unique email addresses, predominantly from public services such as Gmail and Outlook. Speedio did not respond to multiple attempts to disclose the incident, and the origin of the data could not be independently verified. The data was provided to HIBP by a source who requested it be attributed to "ayame@xmpp.jp".
• European Space Agency December 23, 2024 • [ hack, xss, government ] The European Space Agency's official web shop is hacked as it started to load a piece of JavaScript code that generates a fake Stripe payment page at checkout.
• Kenton County School District December 20, 2024 • [ social, phishing, education ] Personal data from current and former students in Kenton County School District are compromised in a phishing scheme.
• Crown Mortgage Company December 20, 2024 • [ ransomware, finance ] Unauthorized access was discovered on Dec 20, 2024, at Crown Mortgage Company, exposing customer names and Social Security numbers. Breach notifications were sent on Jan 2, 2025, and the company offered 24 months of identity monitoring. A ransomware group has claimed responsibility, but this remains unconfirmed.
• Cornwell Quality Tools December 20, 2024 • [ leak, manufacturing ] Cornwell Quality Tools discovered a data breach (Dec 20, 2024), later completed an investigation (Aug 4, 2025) and mailed notices (Sept 4, 2025) offering credit monitoring; exposed data may include names, SSNs, DL numbers, financial accounts, and medical information
• Multiple Organizations December 19, 2024 • [ hack, malware, technology ] The developers of Rspack reveal that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a software supply chain attack that allowed a malicious actor to publish malicious versions to the official package registry with cryptocurrency mining malware.
• Pittsburgh Regional Transit December 19, 2024 • [ ransomware, malware ] Pittsburgh Regional Transit (PRT) is hit with a ransomware attack.
• Ukrainian State Registers December 19, 2024 • [ hack, government ] Suspected Russian threat actors from the XakNet collective launch one of the largest cyberattacks on Ukraines state services in recent months.
• Boone County School District December 19, 2024 • [ social, phishing, education ] Personal data from current and former students in Boone County School District are compromised in a phishing scheme.
• Undisclosed Malaysian educational institution December 19, 2024 • [ financial, malware, education ] Researchers from Trend Micro discover a Python-Based NodeStealer version targeting Facebook Ads Manager.
• PowerSchool December 19, 2024 • [ hack, education ] Education software firm PowerSchool confirms it suffered a cybersecurity incident that allowed a threat actor to steal the personal information of students and teachers from school districts using its PowerSchool SIS platform.
• Military personnel in Ukraine December 18, 2024 • [ social, malware, government ] The Computer Emergency Response Team of Ukraine (CERT-UA) discloses that a threat actor tracked as UAC-0125 is leveraging Cloudflare Workers to trick military personnel in the country into downloading malware disguised as Army+, a mobile app that was introduced by the Ministry of Defence back in August 2024 in an effort to make the armed forces go paperless.
• "Tony" (undisclosed crypto investor) December 18, 2024 • [ social, phishing, finance ] A scammer impersonating Google manages to phish 45 bitcoins approximately $4,725,000 at todays value from Tony, a 42-year-old professional from northern California.