Full List

Search

Recent Breaches

• Express Services December 4, 2024 • [ hack ] Express Services experiences a data breach when an unauthorized party accessed internal user accounts.
• Watsonville Community Hospital December 4, 2024 • [ hack, healthcare ] Watsonville Community Hospital continues operations amid ongoing investigation into a cyberattack.
• Multiple Organizations in the Cryptocurrency Space December 4, 2024 • [ financial, malware, finance ] The legitimate Solana JavaScript SDK is temporarily compromised in a supply chain attack, backdoored with code to steal cryptocurrency keys and drain wallets.
• Muswellbrook Shire Council December 4, 2024 • [ ransomware, data leak ] On December 4 2024, Muswellbrook Shire Council (NSW, Australia) detected a ransomware attack by the SafePay group. The attack encrypted portions of internal servers and resulted in theft and dark-web publication of sensitive employee and resident information. Council systems were progressively restored; investigation ongoing as of February 2025.
• Hamilton County Healthcare System December 4, 2024 • [ data leak, healthcare, PII ] Unauthorized actor breached Hamilton County Healthcare System servers in Dec 2024, stealing tens of thousands of patient records; breach verified through Maine AG notification and HIPAA disclosure.
• Chemonics December 3, 2024 • [ hack, government ] Chemonics, a large contractor for the U.S. government says a 2023 cyberattack exposed the critical personal information of more than 263,000 people.
• Kash Patel December 3, 2024 President-elect Donald Trumps FBI director pick, Kash Patel, is informed by the FBI itself that hed been targeted by Iranian threat actors.
• Racine Unified School District December 3, 2024 • [ data leak ] Security breach of RUSD internal network; forensic probe said staff data may have been accessed; student data hosted externally unaffected.
• Multiple e-commerce platforms December 2, 2024 • [ leak, retail ] At least 100,000 customers' personal information, including credit cards, is believed to have been stolen from 11 e-commerce websites from multiple organizations in Japan including the coffee chain Tully's Coffee Japan and the national federation of fisheries cooperatives (JF Zengyoren).
• Pembina Trails School Division December 2, 2024 • [ ransomware, financial, leak ] Canadian school division compromised by Rhysida ransomware Dec 2, 2024. Attack disrupted thousands of devices and exposed ~35,000+ student records and staff payroll/financial data. Group attempted $1.7M ransom before leaking stolen data on the dark web.
• Beacon Health Three Rivers December 2, 2024 • [ unauthorized access, third-party breach ] Vendor Cps Solutions reported unauthorized email access Dec 24; hospital notified patients.
• PIH Health December 1, 2024 • [ ransomware, malware, healthcare ] Threat actors claim they stole 17 million patient records from PIH Health, a southern California regional healthcare provider that is still struggling with IT and phone systems outages that have been disrupting patient care since the organization was hit by a ransomware attack on Dec. 1.
• AEAT (Spanish Tax Agency) December 1, 2024 The ransomware group Trinity claims it stole 560 gigabytes of data from the AEAT.
• Coinbase users December 1, 2024 • [ phishing, social engineering ] Between December 2024 and January 2025, criminal phishing campaigns impersonating Coinbase support stole approximately $65 million in cryptocurrency from hundreds of users worldwide. Attackers used fake login pages, wallet-draining scripts, and social-engineering messages to capture credentials and bypass two-factor authentication. Coinbase confirmed that its own systems were not breached.
• Sayanmoloko / Semyonishna Dairy Plant December 1, 2024 • [ ransomware ] The Sayanmoloko Semyonishna dairy plant in Khakassia, Russia, experienced a ransomware attack in December 2024 attributed to a LockBit variant. The attack encrypted labeling and tracking systems, hijacked printers to output anti-war leaflets, and disabled the company website while milk processing continued. Operations were restored within several days.
• Check Point Software Technologies December 1, 2024 • [ data leak ] On March 30 2025, hacker CoreInjection advertised alleged Check Point internal data for sale on BreachForums for 5 BTC. Check Point confirmed a past, limited incident with no customer impact and no encryption or disruption. Scope and amount of data remain unverified.
• Hertz Global Holdings December 1, 2024 • [ data leak, supply chain attack, vulnerability exploit ] Hertz confirmed that customer personal data was stolen through exploitation of zero-day vulnerabilities in its vendor Cleo Communications managed file transfer platform between October and December 2024. The company completed analysis on April 2 2025 and disclosed the breach publicly on April 10 2025. The compromised data included names, contact information, drivers license numbers, and limited payment and identification information. No encryption or operational disruption was reported.
• At least one undisclosed government or financial organization December 1, 2024 • [ malware, espionage, data theft ] Kaspersky tracks PassiveNeuron using bespoke Neursite and NeuralExecutor implants, often gaining RCE on exposed Windows servers (e.g., via MSSQL) and then staging modular plugins for stealthy collection through compromised internal servers. Campaign-level report without a single victim suitable for event coding.
• Port of Rijeka November 30, 2024 • [ ransomware, financial, leak ] The 8Base ransomware group hits Croatias Port of Rijeka, stealing sensitive data, including contracts and accounting info.
• Krispy Kreme November 29, 2024 • [ ransomware, malware, retail ] US doughnut chain Krispy Kreme reveals it suffered a cyberattack in November that impacted portions of its business operations, including placing online orders. The Play ransomware gang claims responsibility for the attack.