Government Data Breaches — Federal, State & Municipal Disclosures

Government Data Breaches (565 indexed)

high · government · Dec 5, 2024

City of Tulsa (Oklahoma)

250K resident records exposed — water billing, court records, and police reports stolen

View incident → Original disclosure Indexed 1 year, 4 months ago

critical · government · Dec 1, 2024

Indian Railways (IRCTC)

3.1M passenger records compromised in credential leak

View incident → Original disclosure Indexed 1 year, 4 months ago

high · government · Dec 1, 2024

City of San Antonio

450K resident records stolen in ransomware

View incident → Original disclosure Indexed 1 year, 4 months ago

critical · government · Nov 8, 2024

German Federal Police (BKA)

Confidential investigator identities exposed via compromised witness protection database

View incident → Original disclosure Indexed 1 year, 5 months ago

high · government · Nov 5, 2024

Leonardo SpA

340K defense contractor records stolen

View incident → Original disclosure Indexed 1 year, 5 months ago

high · government · Nov 5, 2024

Manitoba Government

310K health card records exposed

View incident → Original disclosure Indexed 1 year, 5 months ago

high · government · Nov 3, 2024

City of Charlotte (North Carolina)

280K resident records exposed via compromised vendor managing water and sewer billing

View incident → Original disclosure Indexed 1 year, 5 months ago

critical · government · Nov 2, 2024

Illinois Secretary of State

880K voter registration records exposed via compromised election management system

View incident → Original disclosure Indexed 1 year, 5 months ago

high · government · Oct 20, 2024

Maricopa County (Arizona) Elections

320K voter records and election worker PII exposed via misconfigured file server

View incident → Original disclosure Indexed 1 year, 5 months ago

high · government · Oct 12, 2024

Los Angeles County Assessor

2.2M property records exposed via vulnerable GIS mapping application — owner data leaked

View incident → Original disclosure Indexed 1 year, 6 months ago

critical · government · Oct 5, 2024

Massachusetts Registry of Motor Vehicles

1.1M records compromised

View incident → Original disclosure Indexed 1 year, 6 months ago

critical · government · Oct 5, 2024

Salt Typhoon / US telecom wiretap

Chinese hackers accessed US lawful intercept systems at major carriers

View incident → Original disclosure Indexed 1 year, 6 months ago

high · government · Oct 1, 2024

Rheinmetall (Germany)

340K defense records stolen

View incident → Original disclosure Indexed 1 year, 6 months ago

critical · government · Sep 15, 2024

Swedish Social Insurance Agency (Forsakringskassan)

2.2M citizen records exposed via misconfigured benefits portal — SSN equivalents leaked

View incident → Original disclosure Indexed 1 year, 6 months ago

high · government · Sep 15, 2024

Virginia Department of Elections

65K voter registration records with SSN fragments exposed via misconfigured portal

View incident → Original disclosure Indexed 1 year, 6 months ago

high · government · Sep 9, 2024

City of Independence MO

Ransomware encrypted city government systems

View incident → Original disclosure Indexed 1 year, 7 months ago

high · government · Sep 8, 2024

Virginia State Corporation Commission

560K business entity records exposed via SQL injection on public filing search

View incident → Original disclosure Indexed 1 year, 7 months ago

medium · government · Sep 5, 2024

Welsh Government Digital Services

180K citizen records stolen in targeted attack

View incident → Original disclosure Indexed 1 year, 7 months ago

critical · government · Sep 3, 2024

Michigan Department of Health

2.6M Medicaid patient records exposed via compromised eligibility verification system

View incident → Original disclosure Indexed 1 year, 7 months ago

medium · government · Sep 1, 2024

Ontario Lottery and Gaming (Canada)

Employee records accessed in targeted cyberattack on provincial gaming corporation

View incident → Original disclosure Indexed 1 year, 7 months ago

high · government · Sep 1, 2024

City of Montreal (2024)

420K resident records compromised

View incident → Original disclosure Indexed 1 year, 7 months ago

high · government · Sep 1, 2024

Seattle-Tacoma International Airport

Rhysida ransomware disrupted airport systems for three days — passenger data accessed

View incident → Original disclosure Indexed 1 year, 7 months ago

high · government · Aug 22, 2024

City of Fort Worth (Texas)

500K resident records exposed via misconfigured public records portal — property data leaked

View incident → Original disclosure Indexed 1 year, 7 months ago

high · government · Aug 18, 2024

Georgia Department of Labor

450K unemployment claimant records exposed via compromised benefits portal

View incident → Original disclosure Indexed 1 year, 7 months ago