TrueConf Client
TrueConf Client Download of Code Without Integrity Check Vulnerability — TrueConf Client contains a download of code without integrity check vulnerability. An attacker who is able to influence the update delivery path ca
2026 Data Breaches Year-to-Date (460 indexed)
New 'Storm' Infostealer Remotely Decrypts
This modern infostealer adopted server-side decryption of stolen credentials to bypass security controls
Researchers Observe Sub-One-Hour Ransomware Attacks
Halcyon says Akira is now capable of carrying out an entire ransomware attack in less than an hour
Ransomware Will Hit Hospitals. Rehearsals
A chief medical information officer describes what hospitals face when they inevitably suffer a ransomware attack—whether it leads to short- or long-term outages.
Google Dawn
Google Dawn Use-After-Free Vulnerability — Google Dawn contains an use-after-free vulnerability that could allow a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML pag
SUCCESS
253,510 records exposed — Device information, Email addresses, IP addresses, Names and 4 more
Cuties AI
144,250 records exposed — Avatars, Display names, Email addresses
Phantom Project Bundles Infostealer, Crypter
Phantom Stealer .NET harvests browser credentials, cookies, cards, sessions, as stealer-as-a-service
Citrix NetScaler
Citrix NetScaler Out-of-Bounds Read Vulnerability — Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability wh
European Commission Confirms Cloud Data
The European Commission has revealed details of a data breach impacting its AWS infrastructure
Lloyds IT Glitch Exposed Data
Lloyds app glitch exposed up to 447,936 customers’ transactions and personal data during update
Starbucks
889 employee accounts compromised exposing SSNs, financial data via Partner Central
View incident → Indexed 2 weeks, 1 day ago
University of Mississippi Medical Center
Medusa ransomware forced 9-day shutdown, $800K demand
View incident → Indexed 2 weeks, 1 day ago
Ericsson Inc (US)
15K+ employee and customer records including SSNs via service provider hack
View incident → Indexed 2 weeks, 1 day ago
TriZetto Provider Solutions
3.4M healthcare records including SSNs, DOB, health insurance data exposed
View incident → Indexed 2 weeks, 1 day ago
TELUS Digital
1 petabyte stolen by ShinyHunters including call records, FBI data
View incident → Indexed 2 weeks, 1 day ago
Telus Digital
1 petabyte data theft affecting 28 companies via multi-month breach by ShinyHunters
View incident → Indexed 2 weeks, 1 day ago
University of Hawaii Cancer Center
1.2M individuals' data including SSNs, driver's licenses, voter registration
View incident → Indexed 2 weeks, 1 day ago
European Commission
AWS cloud breach exposes hundreds of GB including databases from Europa.eu platform
View incident → Indexed 2 weeks, 1 day ago
Children's Council of San Francisco
12.7K victims including names, SSNs from childcare organization
View incident → Indexed 2 weeks, 1 day ago
ManoMano (European DIY chain)
38M customer records including names, emails, phone numbers via third-party breach
View incident → Indexed 2 weeks, 1 day ago
BreachForums Version 5
339,778 records exposed — Email addresses, Passwords, Usernames
Wynn Resorts
800K employee records including SSNs and PII claimed by ShinyHunters
View incident → Indexed 2 weeks, 1 day ago
Telus Digital (Canada BPO)
1 petabyte data theft affecting 28 companies, FBI checks, financial data
View incident → Indexed 2 weeks, 1 day ago