City of Nitro, West Virginia
July 26, 2025
•[ data leak ]
Following a data breach, Nitro city employees faced uncertainty over tax withholdings and filings; investigation ongoing and guidance pending.
Everglades Correctional Institution (Florida Department of Corrections)
July 26, 2025
•[ data leak, exposed PII ]
Personal contact information from visitor applications at Everglades Correctional Institution was exposed to all inmates at the facility after a breach reported the prior weekend.
Tea App
July 25, 2025
•[ data leak, misconfiguration ]
Tea, a women-focused dating and safety app, suffered a breach via a misconfigured Firebase storage bucket, exposing ~72,000 images and up to 1.1M private DMs, later leaked on 4chan; users who signed up before Feb 2024 were affected.
Sotheby’s
July 24, 2025
•[ data leak ]
Breach detected July 24; investigation found SSNs and financial details impacted employees
Naval Group
July 23, 2025
•[ data leak, extortion ]
Threat actor leaked 1TB of alleged Naval Group data after an extortion attempt. Naval Group says no intrusion confirmed and operations unaffected.
AMEOS Group
July 22, 2025
•[ data leak ]
AMEOS disclosed a security incident and took IT systems offline while investigating possible data exposure of patient, employee, and partner data.
UK Ministry of Defence (Special Air Service personnel)
July 21, 2025
•[ data leak ]
Army ordered an immediate review after media reports that identities of at least 20 SAS soldiers were publicly available online; follows earlier MoD ARAP leak revelations.
Waveny LifeCare
July 20, 2025
•[ data leak ]
A cyber intrusion in July 2025 exposed resident and patient data from Waveny LifeCares network; no encryption or quantitative data reported, actor unconfirmed.
Toptal
July 20, 2025
•[ data leak, source code leak, supply chain attack ]
73 repositories made available, exposing private projects and source code. Attackers hijacked Toptals GitHub organization and published 10 malicious npm packages before takedown. Later updates indicated minimal impact to external users.
National Institutes of Health; National Nuclear Security Administration
July 20, 2025
•[ data leak, vulnerability ]
NIH and the National Nuclear Security Administration were impacted in a global Microsoft SharePoint breach; no classified information reported compromised; scope and severity under investigation.
UK Ministry of Defence (ARAP applicants)
July 19, 2025
•[ data leak ]
Article discusses government response to the previous ARAP data breach; thousands at risk; records of 18,714 applicants exposed; coding reflects exposure context.
Neblio Technologies Pvt Ltd
July 19, 2025
•[ insider threat, data leak ]
Company reported approximately Rs 384 crore (~$44M) in cryptocurrency transferred from a company wallet around 2:37 am on July 19 to six accounts; internal probe suggested an employee laptop compromise and potential insider involvement.
Claro Argentina
July 17, 2025
•[ data leak ]
Local outlet reports a claim that Claro Argentinas database was hacked and is for sale on the dark web.
Allianz Life Insurance Company of North America
July 16, 2025
•[ data leak ]
Allianz Life confirmed that a threat actor accessed a third-party cloud CRM on July 16, exposing PII for most of its 1.4M customers.
Aunt Martha’s Health and Wellness
July 15, 2025
•[ data leak ]
Attackers accessed patient and employee information in July 2025; data exfiltrated but no encryption, actor attribution, or quantity of records reported.
Albemarle County, Virginia
July 15, 2025
•[ ransomware, data leak ]
Albemarle County said a specific ransomware group was responsible for a July attack that disrupted services and potentially accessed internal records.
The TEAM Companies
July 15, 2025
•[ data leak ]
TTC reported a security incident on its internal network and an investigation found that an unauthorized third party accessed internal systems during the window 07/15/202507/26/2025. TTC later began sending notification letters to affected individuals. The incident involved exposure of personal information and protected health information as described in the notice summary.
Crenshaw Community Hospital
July 14, 2025
•[ ransomware, data leak ]
Ransomware group PayoutsKing claimed responsibility for a July 14 2025 attack on Crenshaw Community Hospital, exfiltrating approximately 53 GB of data; encryption was not confirmed.
France Travail (French public employment service)
July 12, 2025
•[ data leak ]
France Travail reported unauthorized access to personal data, discovered July 12; employment portal was closed for analysis; at least 340,000 job seekers impacted, third such incident in <2 years.
Healthcare Interactive Inc. (HCIactive)
July 12, 2025
•[ data leak, unauthorized access ]
Healthcare Interactive Inc. (HCIactive), a benefits and insurance administration technology provider, disclosed that an unauthorized actor accessed its network and copied certain files between July 8 and July 12, 2025. Suspicious activity was detected on July 22, triggering a forensic investigation that confirmed a data breach affecting at least 501 individuals, with exposed information including names, addresses, dates of birth, Social Security numbers, contact details, and health insurance enrollment data. The company notified regulators and consumers beginning in September 2025, offered credit monitoring, and stated that it had implemented additional technical safeguards. There is no indication of significant operational disruption, but the confidentiality impact for affected individuals is substantial.
