Government Data Breaches — Federal, State & Municipal Disclosures

Government Data Breaches (565 indexed)

high · government · Apr 1, 2025

City of Vancouver (2025)

450K resident records exposed in vendor breach

View incident → Original disclosure Indexed 1 year ago

high · government · Mar 18, 2025

City of Milwaukee (Wisconsin)

195K resident records exposed — property tax, permit, and assessment data compromised

View incident → Original disclosure Indexed 1 year ago

high · government · Mar 12, 2025

Police Scotland

198K records including officer and witness personal data exposed via third-party print vendor

View incident → Original disclosure Indexed 1 year, 1 month ago

critical · government · Mar 8, 2025

CISA (Internal Systems)

CISA confirmed breach of two internal systems — Ivanti Connect Secure vulnerability exploited

View incident → Original disclosure Indexed 1 year, 1 month ago

medium · government · Mar 5, 2025

City of Regina

150K resident and utility records compromised

View incident → Original disclosure Indexed 1 year, 1 month ago

critical · government · Mar 1, 2025

US OPM / DOGE Data Exposure

Unauthorized DOGE associates accessed sensitive federal personnel records without clearance

View incident → Original disclosure Indexed 1 year, 1 month ago

high · government · Mar 1, 2025

City of Oakland

600GB of city data published by Play ransomware group — employee records, financial data

View incident → Original disclosure Indexed 1 year, 1 month ago

high · government · Feb 10, 2025

Wisconsin Department of Health

670K patient records exposed

View incident → Original disclosure Indexed 1 year, 2 months ago

critical · government · Feb 10, 2025

Florida Department of Revenue

1.8M taxpayer records exposed via SQL injection on online tax filing portal

View incident → Original disclosure Indexed 1 year, 2 months ago

high · government · Feb 10, 2025

City of Calgary (2025)

670K utility records compromised

View incident → Original disclosure Indexed 1 year, 2 months ago

high · government · Feb 10, 2025

Singapore Government Technology Agency (GovTech)

450K citizen records compromised in vendor platform breach

View incident → Original disclosure Indexed 1 year, 2 months ago

critical · government · Feb 1, 2025

RCMP (Royal Canadian Mounted Police)

Supply chain attack compromised federal law enforcement data systems

View incident → Original disclosure Indexed 1 year, 2 months ago

medium · government · Jan 28, 2025

Doxbin Scrape

435,784 records exposed — Email addresses

View incident → Original disclosure Indexed 1 year, 2 months ago

medium · government · Jan 22, 2025

Frame & Optic

15,678 records exposed — Email addresses, Geographic locations, Names, Phone numbers

View incident → Original disclosure Indexed 1 year, 2 months ago

medium · government · Jan 17, 2025

MSI

249,990 records exposed — Email addresses, Names, Phone numbers, Physical addresses and 1 more

View incident → Original disclosure Indexed 1 year, 2 months ago

high · government · Jan 10, 2025

Tokyo Metropolitan Government

670K citizen records compromised in targeted attack

View incident → Original disclosure Indexed 1 year, 3 months ago

medium · government · Jan 10, 2025

City of Saskatoon

120K resident records exposed in ransomware attack

View incident → Original disclosure Indexed 1 year, 3 months ago

high · government · Jan 8, 2025

Harris County (Houston) Tax Office

1.4M taxpayer records exposed including property valuations and payment history

View incident → Original disclosure Indexed 1 year, 3 months ago

high · government · Jan 5, 2025

Federal Aviation Administration

340K pilot certificate records compromised

View incident → Original disclosure Indexed 1 year, 3 months ago

high · government · Jan 5, 2025

Leonardo DRS (US)

450K defense electronics records compromised

View incident → Original disclosure Indexed 1 year, 3 months ago

critical · government · Jan 2, 2025

US Treasury (China-Linked)

State-sponsored actors accessed Treasury workstations via compromised BeyondTrust API key

View incident → Original disclosure Indexed 1 year, 3 months ago

critical · government · Dec 30, 2024

US Dept of Treasury (BeyondTrust)

Chinese state-sponsored hackers accessed Treasury workstations via BeyondTrust zero-day

View incident → Original disclosure Indexed 1 year, 3 months ago

critical · government · Dec 8, 2024

US Treasury (2024)

Chinese state hackers breached Treasury via BeyondTrust vulnerability

View incident → Original disclosure Indexed 1 year, 4 months ago

critical · government · Dec 8, 2024

US Department of the Treasury

Chinese state hackers accessed unclassified systems via BeyondTrust API key compromise

View incident → Original disclosure Indexed 1 year, 4 months ago