Recent Breaches
-
March 11, 2025 • Ransomware forced Yap health department to disconnect network and operate manually.
-
March 11, 2025 • On March 11 2025, Maine-based classified ads publisher Uncle Henrys suffered a ransomware-style attack that deleted its primary website database and took the site offline until April 15. Attackers demanded Bitcoin. Management stated only a few advertisement entries were copied and no personal data compromise was confirmed.
-
March 11, 2025 • On March 11 2025, Maine-based classified ads publisher Uncle Henrys suffered a ransomware-style attack that deleted its primary website database and took the site offline until April 15. Attackers demanded Bitcoin. Management stated only a few advertisement entries were copied and no personal data compromise was confirmed.
-
March 10, 2025 • A hacker known as Gloomer claimed to have breached the OmniGPT AI chatbot platform, stealing and leaking millions of user messages and account details. Data samples were posted on BreachForums and reported by multiple cybersecurity outlets, though OmniGPT has not confirmed the incident.
-
March 10, 2025 • TerrePower detected suspicious activity between December 12 and December 16, 2024. An unauthorized actor may have viewed and obtained files containing sensitive personal identifiers. Notifications began March 7, 2025.
-
March 10, 2025 • Social media platform X (formerly Twitter) suffered a massive cyberattack involving a large-scale DDoS assault that caused worldwide outages and service disruptions. The company activated additional defenses through Cloudflare to mitigate the impact. The hacktivist group Dark Storm claimed responsibility for the attack, while Elon Musk suggested possible involvement of state-sponsored actors after attack traffic was traced to IPs originating from Ukraine a claim the group denied. The disruption temporarily affected user access and platform functionality, marking one of the largest attacks against X since its rebranding.
-
March 10, 2025 • Sausalito reported hacking targeting city systems, prompting meeting cancellation and recovery steps.
-
March 10, 2025 • Retailer mailed breach letters following cybersecurity incident affecting customer information.
-
March 10, 2025 Russian news report referenced a cyber incident but details remain undetermined
-
March 10, 2025 • Austin pediatric orthopedics notified breach impacting ninety thousand patient records.
-
March 10, 2025 • Company notified individuals after unauthorized access enabled exposure of sensitive consumer information.
-
March 10, 2025 • LKQ Corporation confirmed it was impacted by the Oracle E-Business Suite (EBS) hacking campaign after being listed by the Cl0p ransomware group. LKQ told the Maine Attorney General that personal information for more than 9,000 individuals was compromised, and an example notice letter indicated affected data included sole proprietor supplier information such as Employer Identification Numbers and Social Security numbers. According to LKQ, it launched an investigation on October 3, 2025 and completed its analysis of personal information compromise on December 1, 2025.
-
March 9, 2025 • The French government says Apple sent out threat notifications to customers alerting them to spyware attacks earlier in September.
-
March 9, 2025 • Apple notified French officials of targeted mercenary-spyware attacks (latest Sep 3, 2025); CERT-FR says this is the fourth wave in 2025; highly targeted espionage against high-profile users; Apple recommends Lockdown Mode and expert assistance; no attribution disclosed.
-
March 9, 2025 • Polish MSWiA hospital reported ransomware attack and activated emergency procedures
-
March 9, 2025 • Tri-Century Eye Care reported that it identified suspicious activity on September 3, 2025, secured its environment, and later determined on September 19, 2025 that an unknown actor gained unauthorized access to its network and acquired files containing personal and protected health information. The organization stated there was no evidence of access to its current electronic medical records system, but the acquired files may have included patient and employee identifiers (including SSNs and dates of birth) along with medical, insurance, and billing/payment information. Public reporting noted the incident impacts approximately 200,000 individuals and that the Pear ransomware group claimed responsibility and later published files allegedly stolen from Tri-Century.
-
March 8, 2025 • Cyberattack on the Ministry of Interior hospital in Krakw encrypted administrative and medical IT systems, fully paralyzing patient care and access to records. Hospital departments began restoring systems by March 11, indicating ~3 days of disruption. No data exfiltration or perpetrator identified.
-
March 8, 2025 • A software-update vulnerability at MFA provider 2Keys allowed access to contact data for federal service users (CRA/ESDC phone numbers; CBSA emails) authenticating between Aug 315, 2025; attacker sent phishing SMS to some numbers; government deems no further sensitive data accessed.
-
March 8, 2025 • Incruit reported signs of external attack and data exposure beginning March 8; customers were notified and regulators opened an investigation; scope and method under review.
-
March 8, 2025 • YNHHS reported that an unauthorized third party accessed its network and on March 8 2025 obtained copies of certain patient data. The health system disclosed the breach publicly on April 24 2025, stating 5.5M+ patients were affected. Data types vary by individual and may include demographics, patient type, medical record number, and in some cases Social Security numbers. No encryption or operational shutdown was reported.