Government Data Breaches — Federal, State & Municipal Disclosures

Government Data Breaches (565 indexed)

critical · government · Feb 14, 2026

Province of British Columbia

1.4M citizen records from provincial health and education systems compromised

View incident → Original disclosure Indexed 1 month, 4 weeks ago

critical · government · Feb 13, 2026

Lockheed Martin (Subcontractor)

Defense subcontractor breach exposes classified program metadata and personnel clearance records

View incident → Original disclosure Indexed 1 month, 4 weeks ago

critical · government · Feb 12, 2026

State of Ohio Unemployment System

890K unemployment claimant records exposed via compromised benefits administration portal

View incident → Original disclosure Indexed 1 month, 4 weeks ago

high · government · Feb 10, 2026

SaskPower (Canada)

340K customer utility records exposed via compromised billing system vendor

View incident → Original disclosure Indexed 2 months ago

high · government · Feb 9, 2026

Thales Group (France)

340K defense and aerospace employee records exposed via LockBit 3.0 ransomware

View incident → Original disclosure Indexed 2 months ago

critical · government · Feb 8, 2026

ATO Australia (Tax)

1.1M taxpayer records exposed via zero-day in myGov authentication system

View incident → Original disclosure Indexed 2 months ago

high · government · Feb 1, 2026

City of Nashville

450K resident records compromised in vendor breach

View incident → Original disclosure Indexed 2 months, 1 week ago

critical · government · Feb 1, 2026

DISA Global Solutions

3.3M employee records — background screening provider

View incident → Indexed 2 months, 1 week ago

critical · government · Jan 29, 2026

Province of Ontario (ServiceOntario)

2.1M citizen records from drivers license and health card renewal system compromised

View incident → Original disclosure Indexed 2 months, 1 week ago

critical · government · Jan 25, 2026

US Department of Veterans Affairs

1.9M veteran health records exposed via compromised community care referral system

View incident → Original disclosure Indexed 2 months, 2 weeks ago

high · government · Jan 20, 2026

US Census Bureau

680K household survey response records exposed via misconfigured data sharing portal

View incident → Original disclosure Indexed 2 months, 3 weeks ago

critical · government · Jan 20, 2026

US Postal Service

2.3M package tracking records and sender data exposed via compromised Informed Delivery API

View incident → Original disclosure Indexed 2 months, 3 weeks ago

high · government · Jan 18, 2026

Pass'Sport

6,366,133 records exposed — Email addresses, Genders, Names, Phone numbers and 1 more

View incident → Original disclosure Indexed 2 months, 3 weeks ago

critical · government · Jan 15, 2026

Conduent (Government Contracts)

4.3M individuals affected via Fortune 500 contractor — multiple state governments impacted

View incident → Original disclosure Indexed 2 months, 3 weeks ago

high · government · Jan 12, 2026

New Zealand Ministry of Health

890K patient vaccination records exposed via misconfigured COVID-era data sharing portal

View incident → Original disclosure Indexed 2 months, 4 weeks ago

high · government · Jan 10, 2026

Utah Division of Technology

670K citizen records exposed

View incident → Original disclosure Indexed 3 months ago

high · government · Jan 10, 2026

City of Toronto (2026)

420K resident records stolen in targeted attack

View incident → Original disclosure Indexed 3 months ago

medium · government · Jan 10, 2026

Government of Prince Edward Island

78K health card records compromised

View incident → Original disclosure Indexed 3 months ago

high · government · Jan 10, 2026

City of Winnipeg (2026)

280K resident records compromised

View incident → Original disclosure Indexed 3 months ago

critical · government · Jan 9, 2026

Social Security Administration

3.6M beneficiary records exposed via compromised contractor with access to benefits system

View incident → Original disclosure Indexed 3 months ago

high · government · Jan 5, 2026

Minnesota State Government

Excessive internal access resulted in unauthorized personal data exposure

View incident → Original disclosure Indexed 3 months ago

critical · government · Jan 5, 2026

Illinois State Government

System failure exposed personal data of residents publicly for four years

View incident → Original disclosure Indexed 3 months ago

high · government · Jan 1, 2026

Conduent

Fortune 500 operational data — multiple state governments affected

View incident → Indexed 3 months, 1 week ago

high · government · Dec 26, 2025

Utair

401,400 records exposed — Dates of birth, Email addresses, Genders, Loyalty program details and 4 more

View incident → Original disclosure Indexed 3 months, 2 weeks ago