Spyic
875,999 records exposed — Email addresses
2025 Data Breaches (637 indexed)
T-Mobile (2025 Incident)
37M customer records accessed via compromised API — second major breach in two years
Party City
540K customer records exposed in cyberattack during bankruptcy proceedings
Elligence Health (Maryland)
550K Medicare Advantage patient records exposed via third-party data processor
Storenvy
11,052,071 records exposed — Dates of birth, Email addresses, Genders, Geographic locations and 3 more
Barclays UK
1.4M customer records compromised in credential harvesting campaign
Genea Fertility (Australia)
Patient reproductive health data and IVF records compromised in targeted attack
Medibank (Continued Impact)
9.7M customer records from 2024 breach continue to surface on dark web — regulatory action ongoing
Sanford Health
1.5M patient records compromised in ransomware attack on Midwestern health system
Doxbin (TOoDA)
136,461 records exposed — Email addresses, Usernames
Zacks (2024)
11,994,223 records exposed — Email addresses, IP addresses, Names, Passwords and 3 more
GitLab DevOps Platform
350K developer accounts affected by session hijacking via XSS in CI/CD pipeline configs
Royal Mail (UK)
44M customer shipping records exposed in LockBit ransomware attack — addresses, tracking data
LandAirSea
337,373 records exposed — Email addresses, Names, Partial credit card data, Passwords and 2 more
Danske Bank
670K customer records exposed via API vulnerability
Questrade
670K trading account records compromised in targeted attack
Ashurst LLP
180K client records stolen in targeted attack
City of Calgary (2025)
670K utility records compromised
OpenText (Waterloo)
670K enterprise client records compromised
University of Auckland (New Zealand)
210K student records compromised
iA Financial Group
560K insurance records stolen
KLM Royal Dutch Airlines
450K passenger records exposed
Wisconsin Department of Health
670K patient records exposed
Raymond James Financial
670K client records exposed in phishing attack