Full List

Search

Search Results (data leak)

• WestJet Airlines June 13, 2025 • [ data leak ] On June 13 2025, WestJet experienced unauthorized access causing internal system and app disruption. A subsequent investigation confirmed that a sophisticated criminal actor exfiltrated passenger and employee data, including contact and travel records, though flight operations were unaffected. The company disclosed the data theft on September 29 2025.
• The Washington Post June 13, 2025 • [ data leak, espionage, email compromise ] A targeted intrusion discovered on June 13 2025 compromised a limited number of Washington Post journalist email accounts, exposing internal correspondence and attachments. The publication stated no subscriber or HR data was affected. Investigation remains ongoing with indications of potential state-sponsored activity.
• Chain IQ Group AG June 12, 2025 • [ data leak ] Chain IQ reported data contained employee business contact details but no client customer data.
• Disneyland Paris (via third-party contractor) June 12, 2025 • [ ransomware, data leak ] Anubis ransomware group claimed to have stolen 64 GB (approximately 39,000 files) of engineering and renovation data from a Disneyland Paris third-party contractor and listed the victim on its leak site; no confirmation of intrusion method or verification from Disneyland Paris.
• Aflac June 12, 2025 • [ social engineering, data leak ] Threat actor Scattered Spider (UNC3944/0ktapus) used social-engineering to gain access to Aflacs U.S. network, accessing internal application servers that stored personal and claims data; no ransomware deployed and scope of exfiltration undetermined.
• Cardiovascular Medicine Associates, PA (MyCardiologist) June 12, 2025 • [ data leak, healthcare, email compromise ] Hackers accessed MyCardiologists email environment between May 30 and June 12 2025, exfiltrating patient information including medical and insurance details; no encryption or quantitative data reported.
• City of Thomasville (Municipal Government) June 11, 2025 • [ ransomware, data leak ] Cyberattack on the City of Thomasville, North Carolina discovered June 11 2025; INC ransomware group claimed responsibility and alleged theft of 260 GB of city data; municipal systems taken offline for containment; no encryption or customer data exposure reported.
• NKS Super Speciality Hospital June 10, 2025 • [ data leak ] Hackers gained unauthorized access to servers of NKS Super Speciality Hospital in North Delhi around June 1011 2025, compromising patient and administrative records; hospital filed FIR; no encryption or ransom confirmed.
• Sant Parmanand Hospital June 10, 2025 • [ data leak, hacked ] Hackers accessed servers of Sant Parmanand Hospital in North Delhi around June 1011 2025, compromising patient, financial, and administrative files; police registered FIR under Indias IT Act; no encryption or ransom confirmed.
• Dairy Farmers of America June 10, 2025 • [ ransomware, data leak ] Ransomware hit multiple plants; data exfiltrated and 4,546 notified per filings
• Asefa Seguros June 9, 2025 • [ ransomware, data leak ] The Spanish subsidiary of a French insurance group (Asefa Seguros) confirmed a cyberattack after the Qilin ransomware gang claimed to have stolen about 210 GB of internal corporate and client data, including passports and an insurance plan for FC Barcelonas Camp Nou stadium.
• Zoomcar Holdings, Inc. June 9, 2025 • [ data leak ] Unauthorized third-party access discovered on June 9 2025 exposed personal data of approximately 8.4 million Zoomcar users. The company confirmed no financial or password data was affected and reported no service disruption. No actor has claimed responsibility, and investigation is ongoing.
• Oxford City Council June 7, 2025 • [ data leak ] On June 7 2025, Oxford City Council discovered unauthorized access to legacy IT systems containing historic data from election administration records (20012022). The council confirmed that core services were unaffected and found no evidence of large-scale data extraction or leaks. The attackers have not been identified.
• Government of Paraguay (employee workstation compromise) June 7, 2025 • [ data leak, infostealer, credential theft ] Infostealer malware installed on a Paraguayan government employees computer harvested credentials and tokens, enabling attackers to exfiltrate databases containing personal information on effectively the entire national population. Security researchers confirmed millions of identity recordsincluding names, national IDs, and contact detailswere leaked online in early June 2025. The Record verified the exposure and found no evidence of ransomware or system disruption.
• Erie Insurance June 7, 2025 • [ data leak, ransomware ] Erie Insurance detected unauthorized network activity on June 7 2025, prompting containment measures and temporary isolation of systems. The insurer reported the incident to regulators and stated there was no evidence of ransomware or confirmed data theft, though review of potential personal-information exposure remained ongoing.
• DealMed Medical Supplies LLC June 7, 2025 • [ ransomware, data leak ] DealMed Medical Supplies LLC reported that an unauthorized party accessed its network on or around June 7, 2025, viewing or obtaining files containing protected health information, including names and Social Security numbers. DealMed confirmed the exposure on October 31, 2025. The DragonForce ransomware group listed DealMed on its leak site and claimed to have exfiltrated nearly 106 GB of data. Notification letters have been issued to affected individuals.
• HM Revenue and Customs (HMRC) June 5, 2025 • [ data leak, compromised credentials, fraud ] Compromised credentials and personal data from 100,000 taxpayer accounts used in fraudulent refund claims totaling 47 million.
• Surmodics, Inc. June 5, 2025 • [ data leak ] Surmodics shut down parts of its IT systems after detecting unauthorized access on June 5; SEC filing notes restoration ongoing and potential data theft being analyzed.
• Rajkot Municipal Corporation (GIS Website) June 3, 2025 • [ data leak ] Cyberattack on the Rajkot Municipal Corporations GIS website in India resulted in exfiltration of roughly 400 GB of civic and citizen data; systems taken offline for investigation; no ransomware or encryption reported; attacker identity unconfirmed.
• Tupolev June 3, 2025 • [ data leak, website defacement, state-sponsored ] Ukrainian intelligence (GUR) compromised Tupolevs internal servers and exfiltrated 4.4 GB of files including personnel records, procurement documents, internal memos, and meeting minutes. The companys website was briefly defaced following the breach.