Recent Data Breaches — Live Disclosure Tracker

Latest Disclosures

high · other · Jun 15, 2023

Royal Dutch Shell (MOVEit)

Employee data exposed through Accellion and MOVEit file transfer vulnerabilities

View incident → Original disclosure Indexed 2 years, 10 months ago

high · finance · Jun 15, 2023

Ontario Teachers' Pension Plan

MOVEit breach impacted OTPP

View incident → Original disclosure Indexed 2 years, 10 months ago

medium · government · Jun 14, 2023

TSA (vendor breach)

18K employee records exposed in third-party breach

View incident → Original disclosure Indexed 2 years, 10 months ago

high · healthcare · Jun 14, 2023

Humber River Hospital (Toronto)

Daixin Team ransomware targeted hospital systems — patient records at risk

View incident → Original disclosure Indexed 2 years, 10 months ago

high · government · Jun 14, 2023

JAXA (Japan Space Agency)

State-sponsored attackers compromised space agency network — research data at risk

View incident → Original disclosure Indexed 2 years, 10 months ago

medium · finance · Jun 14, 2023

Pentagon Federal Credit Union

24K member records exposed

View incident → Original disclosure Indexed 2 years, 10 months ago

high · education · Jun 14, 2023

Johns Hopkins University

310K student and employee records exposed via MOVEit Transfer vulnerability

View incident → Original disclosure Indexed 2 years, 10 months ago

medium · other · Jun 14, 2023

PostNL (Netherlands)

Ransomware disrupted Dutch postal service parcel processing

View incident → Original disclosure Indexed 2 years, 10 months ago

medium · education · Jun 13, 2023

University of Massachusetts Lowell

18K student records exposed

View incident → Original disclosure Indexed 2 years, 10 months ago

medium · retail · Jun 13, 2023

Levi Strauss & Co.

72K customer accounts compromised via credential stuffing on online store

View incident → Original disclosure Indexed 2 years, 10 months ago

high · other · Jun 13, 2023

Brunswick Corporation (Marine)

$85M loss from ransomware — boat manufacturing and dealer systems disrupted for 9 days

View incident → Original disclosure Indexed 2 years, 10 months ago

medium · retail · Jun 13, 2023

Levi Strauss

72K customer accounts compromised in credential stuffing

View incident → Original disclosure Indexed 2 years, 10 months ago

high · tech · Jun 12, 2023

Tata Consultancy Services (Global)

Cybersecurity incident impacted IT systems — client project data at risk

View incident → Original disclosure Indexed 2 years, 10 months ago

medium · other · Jun 12, 2023

Fortescue Metals (Australia)

Data breach at iron ore mining giant — employee and contractor data accessed

View incident → Original disclosure Indexed 2 years, 10 months ago

medium · government · Jun 12, 2023

Dorchester County SC

28K records exposed in cyberattack

View incident → Original disclosure Indexed 2 years, 10 months ago

critical · government · Jun 12, 2023

State of Oregon DMV

3.5M driver records exposed via MOVEit vulnerability — 90% of state license holders

View incident → Original disclosure Indexed 2 years, 10 months ago

medium · finance · Jun 12, 2023

Swiss Post / PostFinance

DDoS and credential attacks targeted Swiss postal and banking services

View incident → Original disclosure Indexed 2 years, 10 months ago

high · finance · Jun 12, 2023

HOOPP (Healthcare of Ontario Pension Plan)

MOVEit breach exposed pension data

View incident → Original disclosure Indexed 2 years, 10 months ago

critical · tech · Jun 12, 2023

CoWIN (India)

1B COVID vaccination records exposed — some US residents affected

View incident → Original disclosure Indexed 2 years, 10 months ago

medium · retail · Jun 12, 2023

REI Co-op

54K customer records exposed

View incident → Original disclosure Indexed 2 years, 10 months ago

critical · healthcare · Jun 12, 2023

CoWIN Portal (India)

150M citizen vaccination records allegedly leaked from India's COVID platform

View incident → Original disclosure Indexed 2 years, 10 months ago

critical · finance · Jun 12, 2023

Citizens Bank

1.6M customer records exposed via MOVEit vulnerability — loan documents and SSNs

View incident → Original disclosure Indexed 2 years, 10 months ago

high · healthcare · Jun 12, 2023

Monument / Tempest Telehealth

2.6M addiction recovery patients — therapy session data shared with advertisers

View incident → Original disclosure Indexed 2 years, 10 months ago

high · government · Jun 12, 2023

Ofcom (MOVEit)

UK communications regulator hit by MOVEit vulnerability — confidential company data exposed

View incident → Original disclosure Indexed 2 years, 10 months ago

Recent Data Breach Disclosures

Latest Disclosures