Los Angeles County (2025)
1.5M resident records stolen in third-party vendor breach
2025 Data Breaches (637 indexed)
Vodacom (South Africa)
1.3M subscriber records exposed
HashiCorp
210K infrastructure secrets and deployment records compromised
Guy's and St Thomas' NHS Trust
780K patient records compromised
USAA
890K member records compromised in targeted attack
Kakao Corp
670K messaging records exposed in data exfiltration
CAA (Canadian Auto Association)
1.2M member records exposed
TU Delft
150K student records exposed in targeted attack
Best Buy Electronics
620K customer records exposed via credential stuffing on My Best Buy rewards program
Chime Financial (Neobank)
950K customer records exposed via compromised partner banking infrastructure
Emory Healthcare (Atlanta)
720K patient records exposed via compromised patient portal API — lab results leaked
Kotak Mahindra Bank
780K customer records exposed in phishing campaign
Northwell Health (New York)
1.5M patient records compromised
Swiss International Air Lines
280K passenger records compromised
Spotify (EU data)
1.1M EU user records exposed in credential dump
Artists&Clients
95,351 records exposed — Email addresses, IP addresses, Passwords, Usernames
HashiCorp Vault
85K enterprise secret management configurations exposed via Codecov supply chain attack
HomeRefill
187,457 records exposed — Dates of birth, Email addresses, Names, Passwords and 1 more
Latest Pilot Jobs
118,864 records exposed — Email addresses, Names, Passwords, Usernames
Cognizant TriZetto Provider Solutions
3.4M patient health records exposed via insurance eligibility verification portal
Porter Airlines
280K passenger records compromised in credential stuffing
Baxter International
340K medical records exposed
700Credit
5.8M consumer records stolen via compromised third-party API at auto lending provider
Telus (2025)
1.3M subscriber records stolen in targeted attack