ADDA
March 24, 2025
•[ data leak ]
In March 2025, data allegedly breached from the ADDA housing societies service was posted to a public hacking forum. The data contained over 1.8M unique email addresses along with names, phone numbers and MD5 password hashes.
Sansone Group
March 22, 2025
•[ leak ]
A data breach at Sansone Group LLC in late March 2025 exposed sensitive PIIfull names and SSNs of an unknown number of individuals. Notifications were sent on July 21; the state AG was notified on August 21. Levi & Korsinsky LLP is investigating possible legal claims.
Cobb County Government
March 22, 2025
•[ ransomware ]
Cobb County took servers offline after breach; online systems restored after several days.
New York University
March 22, 2025
•[ data leak ]
Data reportedly leaked on nyu website exposing millions of applicants.
Lovit
March 22, 2025
•[ ddos, hacktivism ]
Ukrainian It Army claimed sustained ddos disrupting Russian Isp Lovit services.
Fundamental Administrative Services, LLC
March 21, 2025
•[ hack, healthcare ]
On March 21, 2025, Fundamental Administrative Services, a healthcare management company based in Maryland, confirmed a data breach after discovering unauthorized access. Sensitive PII and PHI belonging to 56,235 patients was stolen, including SSNs, medical, and insurance data. No encryption or service disruption was reported.
National Iranian Tanker Company
March 21, 2025
•[ hacktivism, sabotage ]
Hacktivists Claimed Cyber Sabotage Targeting Vsat Systems On 116 Iranian Ships.
Soco System
March 21, 2025
•[ ransomware ]
Danish production firm reported ransomware linked to a Russian gang
Presidency Of Costa Rica (YouTube Account)
March 21, 2025
•[ account takeover, cryptocurrency scam ]
Costa Rica presidencys YouTube account was hijacked and posted crypto content.
Delta Dental of Virginia
March 21, 2025
•[ phishing, data leak ]
An unauthorized actor accessed a Delta Dental of Virginia employee email account between March 21 and April 23, 2025, viewing or acquiring emails and attachments containing personal, financial, and protected health information for 145,918 individuals. Notification letters were issued on November 21, 2025.
Cuties AI
March 21, 2025
•[ data breach, data leak, PII ]
In March 2026, the NSFW AI companion platform Cuties AI suffered a data breach that was subsequently published to a public hacking forum. The incident exposed 144k unique email addresses along with display names, avatars, prompts and descriptions used to generate AI adult images, as well as URLs to the generated content. The data also included the account that created the content and a stated "preference" of either female or trans.
Coastal Carolina Health Care
March 21, 2025
•[ unauthorized access, data breach, Social Security numbers ]
Coastal Carolina Health Care identified suspicious activity that disrupted access to some systems and later determined that an unauthorized actor accessed and acquired information from its network between March 21 and March 27, 2025. The exposed information included names and Social Security numbers for approximately 110,000 individuals.
StreamElements
March 20, 2025
•[ phishing, data leak ]
StreamElements confirmed that one of its former third-party service providers experienced a data breach, which led to the exposure of customer information including names, addresses, phone numbers and email addresses. The breach is believed to relate to the period between 2020 and 2024. Although StreamElements stated its own servers were not compromised, it is actively contacting affected customers and warning of increased phishing risk.
Pam Golding Properties
March 20, 2025
•[ data leak ]
South African real-estate firm investigated data leak after reports of compromise.
Sunnking Sustainable Solutions
March 20, 2025
•[ data leak ]
Unauthorized actor accessed Sunnking Sustainable Solutions internal servers in Rochester, New York and exfiltrated about 35,000 employee and client records. Breach detected March 20 2025 and disclosed April 2 2025. No encryption or service disruption occurred.
Meigs Ems
March 20, 2025
•[ data leak, medical ]
Ambulance service asked patients to be vigilant after discovering a cyber breach.
Central Maine Healthcare
March 19, 2025
•[ hack, healthcare ]
An unauthorized actor accessed Central Maine Healthcares IT environment between March 19 and June 1, 2025, compromising sensitive patient data; systems were secured immediately and patient notifications began in late July 2025
Bank Indonesia
March 19, 2025
•[ ddos ]
DDoS activity briefly disrupted the Smart Rupiah exchange booking system, officials said.
James Pascoe Group
March 19, 2025
•[ data leak ]
Owner of Farmers and Whitcoulls notified regulator of a data breach.
Office of the State’s Attorney for Baltimore City
March 19, 2025
•[ ransomware, data leak ]
Following a March 2025 intrusion, the Kairos ransomware group stole internal legal and police records from the Baltimore City States Attorneys Office and later published portions online; the office reported no service disruption but confirmed investigation of unauthorized access.
