StreamElements
March 20, 2025
•[ phishing, data leak ]
StreamElements confirmed that one of its former third-party service providers experienced a data breach, which led to the exposure of customer information including names, addresses, phone numbers and email addresses. The breach is believed to relate to the period between 2020 and 2024. Although StreamElements stated its own servers were not compromised, it is actively contacting affected customers and warning of increased phishing risk.
Pam Golding Properties
March 20, 2025
•[ data leak ]
South African real-estate firm investigated data leak after reports of compromise.
Sunnking Sustainable Solutions
March 20, 2025
•[ data leak ]
Unauthorized actor accessed Sunnking Sustainable Solutions internal servers in Rochester, New York and exfiltrated about 35,000 employee and client records. Breach detected March 20 2025 and disclosed April 2 2025. No encryption or service disruption occurred.
Meigs Ems
March 20, 2025
•[ data leak, medical ]
Ambulance service asked patients to be vigilant after discovering a cyber breach.
Central Maine Healthcare
March 19, 2025
•[ hack, healthcare ]
An unauthorized actor accessed Central Maine Healthcares IT environment between March 19 and June 1, 2025, compromising sensitive patient data; systems were secured immediately and patient notifications began in late July 2025
Bank Indonesia
March 19, 2025
•[ ddos ]
DDoS activity briefly disrupted the Smart Rupiah exchange booking system, officials said.
James Pascoe Group
March 19, 2025
•[ data leak ]
Owner of Farmers and Whitcoulls notified regulator of a data breach.
Office of the State’s Attorney for Baltimore City
March 19, 2025
•[ ransomware, data leak ]
Following a March 2025 intrusion, the Kairos ransomware group stole internal legal and police records from the Baltimore City States Attorneys Office and later published portions online; the office reported no service disruption but confirmed investigation of unauthorized access.
John Dramani Mahama
March 18, 2025
•[ account takeover ]
Mahamas official X account was compromised and used to post unauthorized content.
California Cryobank
March 18, 2025
•[ data leak ]
California Cryobank, a leading sperm donation organization, reported a data breach after detecting unauthorized access to its network between April 20 and 22, 2024. The incident exposed sensitive personal and financial information, including names, bank details, Social Security numbers, drivers license numbers, payment card data, and health insurance information. The company assured that its core operations remained unaffected and began notifying affected individuals, offering complimentary credit monitoring and identity protection services. Authorities and cybersecurity experts are investigating the scope of the breach to determine how the attackers gained access and whether donor-related data was compromised.
Western Alliance Bank
March 18, 2025
•[ data leak, third-party breach ]
Western Alliance Bank notified 21,899 customers that their personal information was stolen after a breach of a third-party secure file transfer system. The breach occurred between October 12 and October 24, 2024, and exposed names, Social Security numbers, dates of birth, financial account numbers, drivers licence numbers, tax IDs and/or passport information. The company found no evidence of fraudulent use yet and is providing one year of complimentary credit monitoring to those impacted.
Atchison County Government
March 18, 2025
•[ ransomware ]
Multiple us municipalities reported outages; Atchison County closed offices due to cyber incident.
Harcourts Prime Properties
March 18, 2025
•[ ransomware, data leak ]
Unauthorized access to Harcourts Prime Properties internal systems followed by ransom demand; investigation ongoing; no confirmed data volume or encryption reported.
Precision Orthopaedics and Sports Medicine
March 17, 2025
•[ phishing, data leak ]
Hospital reported mailbox compromise exposing patient demographic and clinical information.
Atlas Healthcare Group Facilities
March 17, 2025
•[ data leak ]
Multiple facilities reported data security incident; breach letters sent March third.
Les Automotive
March 17, 2025
•[ supply chain attack, malware ]
Supply-chain compromise at vendor led dealership sites to serve malicious clickfix.
Virgin Islands Lottery
March 17, 2025
•[ ransomware ]
Ransomware attack discovered March 17 2025 encrypted the Virgin Islands Lotterys servers, phones, and software, halting operations across both districts. Attackers demanded a $1 million ransom, which was not paid. Systems were rebuilt from backups and restored by May 31 2025. No confirmed data theft or group attribution publicly reported.
Mountain West Insurance & Financial Services LLC
March 17, 2025
•[ phishing, data leak ]
On March 17, 2025, Mountain West Insurance & Financial Services detected unauthorized access to several corporate email accounts. An investigation determined that emails containing extensive personal, financial, and health-related information may have been accessed or acquired without authorization. Mountain West issued breach notices on September 22, 2025.
Ascom
March 16, 2025
•[ ransomware, data leak ]
Hellcat claims theft from ascom; company confirms ticketing system incident.
Astral Foods
March 16, 2025
•[ cyberattack ]
Cyberattack caused week-long operational delays and financial losses at South African producer.
