Hamilton County Healthcare System
December 4, 2024
•[ data leak, healthcare, PII ]
Unauthorized actor breached Hamilton County Healthcare System servers in Dec 2024, stealing tens of thousands of patient records; breach verified through Maine AG notification and HIPAA disclosure.
Racine Unified School District
December 3, 2024
•[ data leak ]
Security breach of RUSD internal network; forensic probe said staff data may have been accessed; student data hosted externally unaffected.
Hertz Global Holdings
December 1, 2024
•[ data leak, supply chain attack, vulnerability exploit ]
Hertz confirmed that customer personal data was stolen through exploitation of zero-day vulnerabilities in its vendor Cleo Communications managed file transfer platform between October and December 2024. The company completed analysis on April 2 2025 and disclosed the breach publicly on April 10 2025. The compromised data included names, contact information, drivers license numbers, and limited payment and identification information. No encryption or operational disruption was reported.
Check Point Software Technologies
December 1, 2024
•[ data leak ]
On March 30 2025, hacker CoreInjection advertised alleged Check Point internal data for sale on BreachForums for 5 BTC. Check Point confirmed a past, limited incident with no customer impact and no encryption or disruption. Scope and amount of data remain unverified.
Alder Hey Children’s Hospital
November 28, 2024
•[ ransomware, data leak, healthcare ]
Alder Hey Childrens Hospital says it is investigating claims that its systems may have been breached and that patient records and other information was stolen, after the ransomware group INC Ransom adds Alder Hey to its leak site.
Fourlis Group (IKEA franchise operator)
November 27, 2024
•[ ransomware, data leak ]
A ransomware attack on November 27 2024 disrupted Fourlis Groups IT infrastructure supporting IKEA operations in Greece and other regional markets. The company reported that forensic investigators did not prove the leakage of personal data, confirming no verified exfiltration. The attack caused significant operational disruption, with reported recovery costs of approximately 20 million ( US $23 million) but no ransom payment.
University Diagnostic Medical Imaging (UDMI)
November 26, 2024
•[ data leak ]
On November 26 2024, University Diagnostic Medical Imaging in New York detected unauthorized access to its systems that exposed patient information including names, addresses, dates of birth, referring physicians, and treatment data. The breach affected 138,080 individuals and was disclosed publicly in February 2025.
Douglasville-Douglas County Water & Sewer Authority
November 26, 2024
•[ ransomware, data leak ]
The DouglasvilleDouglas County Water & Sewer Authority was targeted by the Lynx ransomware group on November 26 2024. Attackers claimed responsibility on a leak site on January 14 2025, later removed. The authority rebuilt and restored its systems with minimal data loss and reported no evidence of customer or employee data theft. Data exfiltration remains unconfirmed.
Pinnacle Holdings
November 25, 2024
•[ network disruption, protected health information, data leak ]
Pinnacle Holdings reported a November 25, 2024 network disruption that affected certain IT systems and exposed protected health information belonging to about 19,000 Corewell Health patients.
Hazleton Anesthesia Services
November 21, 2024
•[ data leak ]
On Nov 21, 2024, Somnia (management company) identified suspicious activity in its email environment and later confirmed unauthorized access to a limited number of accounts that included Hazleton Anesthesia Services. Review completed Mar 10, 2025; public substitute notice issued Mar 31, 2025. No encryption or operational disruption reported.
Concord Orthopaedics
November 21, 2024
•[ data leak, third-party breach ]
Vendor breach exposed patient Pii/phi; notifications sent months after discovery.
Southeast Series Of Lockton Companies LLC
November 20, 2024
•[ data leak ]
Insurance brokerage reported unauthorized access to files on an employee computer
Converse University
November 20, 2024
•[ data leak ]
Class action alleges delayed notice following a late-2024 data breach.
Behavioral Health Resources
November 20, 2024
•[ data breach, data leak ]
Unauthorized actor accessed Behavioral Health Resources network in Nov 2024, exfiltrating client PII and medical records; organization confirmed breach via Maine AG filing and began notifications in Apr 2025.
Erickson Companies
November 18, 2024
•[ data leak ]
Company notified individuals after data breach potentially exposing Social Security numbers.
Systematic Financial Management
November 16, 2024
•[ data leak ]
Intrusion confirmed; files with PII may have been accessed; discovery Nov 16, 2024; PII confirmed Jan 10, 2025.
Pound Road Medical Centre
November 13, 2024
•[ ransomware, data leak ]
On November 13, 2024, PRMC reported a cyber incident and later Anubis publicly claimed it as a victim, alleging patient data may have been accessed and taken. No public confirmation of encryption or operational disruption was made.
Legends International
November 9, 2024
•[ data leak ]
On November 9 2024, Legends International detected unauthorized access to its internal systems. The investigation confirmed that an external actor exfiltrated files containing sensitive personal and financial data of employees and customers. No ransomware, encryption, or operational disruption was reported.
Hixson Holdings, Inc
November 5, 2024
•[ data leak ]
Hixson Holdings Inc., a Cincinnati-based architecture, engineering and project management firm, detected suspicious activity on its network on November 5, 2024. A forensic investigation later determined that an Undetermined intruder may have accessed sensitive data on Hixson's systems from that date through October 9, 2025, before the review concluded. Exposed information includes names, contact details, Social Security numbers and medical or insurance identifiers, highlighting that the firm handled protected health information for some clients. Hixson filed notice with the Massachusetts Attorney General and began mailing breach letters on October 31, 2025, while law firms and regulators assess potential legal and remediation obligations.
VeraCore (Advantive)
November 5, 2024
•[ data leak, vulnerability, web shell ]
The Vietnamese-linked cybercriminal group XE Group exploited two zero-day vulnerabilities (CVE-2024-57968, CVE-2025-25181) in the U.S. software vendor VeraCores warehouse management and fulfillment platform. Attackers uploaded web shells, maintained persistent access since 2020, exfiltrated configuration and system data, and executed commands on compromised servers, potentially exposing data from client organizations using VeraCore for logistics operations.
