2024 Data Breaches — Complete Disclosure Tracker

2024 Data Breaches (863 indexed)

high · other · Jul 15, 2024

Manitoba Hydro

560K customer records stolen in credential harvesting attack

View incident → Original disclosure Indexed 1 year, 8 months ago

high · other · Jul 15, 2024

Turkish Airlines

670K passenger records exposed

View incident → Original disclosure Indexed 1 year, 8 months ago

critical · government · Jul 15, 2024

Connecticut State IT Systems

890K resident records from multiple agencies exposed via shared cloud platform compromise

View incident → Original disclosure Indexed 1 year, 8 months ago

high · healthcare · Jul 15, 2024

Advocat Health (North Carolina)

421K skilled nursing and rehabilitation patient records exposed via phishing

View incident → Original disclosure Indexed 1 year, 8 months ago

critical · healthcare · Jul 14, 2024

HealthEC LLC

4.5M patient records from 17 healthcare providers exposed via population health platform breach

View incident → Original disclosure Indexed 1 year, 8 months ago

high · tech · Jul 12, 2024

Squarespace DNS

Mass domain hijacking via OAuth registration flaw

View incident → Original disclosure Indexed 1 year, 9 months ago

high · tech · Jul 12, 2024

Disney (Slack Breach)

1.1TB of internal data stolen via compromised Slack workspace — NullBulge group

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · retail · Jul 12, 2024

Rite Aid

2.2M customer records including purchase history and ID data stolen in ransomware attack

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · tech · Jul 12, 2024

AT&T (Snowflake)

110M call and text metadata records stolen from Snowflake environment

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · government · Jul 12, 2024

National Security Agency (NSA)

NSA employee data exposed via AT&T telecom breach — metadata and communication records

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · tech · Jul 12, 2024

AT&T (Call Records)

109M customer call and text records stolen from Snowflake cloud environment

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · tech · Jul 12, 2024

Snowflake Customer Campaign (AT&T)

110M AT&T call and text metadata records — phone numbers, duration, cell tower locations

View incident → Original disclosure Indexed 1 year, 9 months ago

high · finance · Jul 11, 2024

mSpy (2024)

2,394,179 records exposed — Email addresses, IP addresses, Names, Photos

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · tech · Jul 10, 2024

KT Corporation (Korea Telecom)

1.1M subscriber records exposed

View incident → Original disclosure Indexed 1 year, 9 months ago

high · government · Jul 10, 2024

BAE Systems (UK)

780K defense contractor records exposed in supply chain attack

View incident → Original disclosure Indexed 1 year, 9 months ago

high · tech · Jul 10, 2024

PLDT Inc (Philippines)

890K subscriber records exposed

View incident → Original disclosure Indexed 1 year, 9 months ago

high · retail · Jul 10, 2024

The Heritage Foundation

72,004 records exposed — Email addresses, IP addresses, Names, Passwords and 1 more

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · tech · Jul 10, 2024

Rakuten Group (Japan)

4.3M e-commerce user records exposed via API misconfiguration on marketplace platform

View incident → Original disclosure Indexed 1 year, 9 months ago

high · healthcare · Jul 10, 2024

Astellas Pharma (Japan)

340K clinical trial records exposed

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · finance · Jul 10, 2024

Itau Unibanco (Brazil)

1.5M customer records compromised in vendor breach

View incident → Original disclosure Indexed 1 year, 9 months ago

high · retail · Jul 10, 2024

Ulta Beauty

770K customer records exposed via credential stuffing on loyalty program — Ultamate Rewards

View incident → Original disclosure Indexed 1 year, 9 months ago

high · retail · Jul 9, 2024

Neiman Marcus

31,152,842 records exposed — Dates of birth, Email addresses, IP addresses, Names and 4 more

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · government · Jul 8, 2024

State of Nevada DMV

1.1M driver license records exposed via vendor compromise — photos and biometric data

View incident → Original disclosure Indexed 1 year, 9 months ago

medium · finance · Jul 8, 2024

TD Bank (US)

62K customer records exposed

View incident → Original disclosure Indexed 1 year, 9 months ago