Government Data Breaches — Federal, State & Municipal Disclosures

Government Data Breaches (565 indexed)

high · government · Aug 14, 2024

City of Flint MI

Ransomware disrupted city services and billing

View incident → Original disclosure Indexed 1 year, 7 months ago

high · government · Aug 12, 2024

Oklahoma Department of Education

620K student and educator records exposed via compromised certification tracking system

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Aug 12, 2024

Missouri Department of Social Services

740K Medicaid recipients notified after IBM MOVEit vulnerability exposed personal data

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Aug 5, 2024

US Social Security Administration

295K beneficiary records accessed via compromised mySSA portal accounts

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Aug 1, 2024

Oregon DMV

780K driver license records exposed

View incident → Original disclosure Indexed 1 year, 8 months ago

critical · government · Jul 18, 2024

City of Columbus, Ohio

500K resident records stolen in Rhysida ransomware attack — SSNs and bank details exposed

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Jul 18, 2024

City of Columbus OH

500K resident records stolen in Rhysida ransomware

View incident → Original disclosure Indexed 1 year, 8 months ago

critical · government · Jul 18, 2024

City of Columbus (Ohio)

500K resident records stolen — Rhysida ransomware published data after city denied breach

View incident → Original disclosure Indexed 1 year, 8 months ago

critical · government · Jul 15, 2024

Connecticut State IT Systems

890K resident records from multiple agencies exposed via shared cloud platform compromise

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Jul 15, 2024

BC Government Employee Records

560K employee records stolen

View incident → Original disclosure Indexed 1 year, 8 months ago

critical · government · Jul 12, 2024

National Security Agency (NSA)

NSA employee data exposed via AT&T telecom breach — metadata and communication records

View incident → Original disclosure Indexed 1 year, 9 months ago

high · government · Jul 10, 2024

BAE Systems (UK)

780K defense contractor records exposed in supply chain attack

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · government · Jul 8, 2024

State of Nevada DMV

1.1M driver license records exposed via vendor compromise — photos and biometric data

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · government · Jul 1, 2024

New Mexico MVD

1.2M driver license records exposed in vendor breach

View incident → Original disclosure Indexed 1 year, 9 months ago

high · government · Jun 14, 2024

Calgary Transit

126K rider accounts exposed via compromised fare payment system — names, emails, partial card data

View incident → Original disclosure Indexed 1 year, 9 months ago

high · government · Jun 10, 2024

City of Atlanta (2024)

340K resident records compromised in follow-up attack

View incident → Original disclosure Indexed 1 year, 10 months ago

high · government · Jun 10, 2024

City of Cleveland OH

Ransomware shut down city hall operations

View incident → Original disclosure Indexed 1 year, 10 months ago

high · government · Jun 8, 2024

Pennsylvania Department of Health

430K vaccination records exposed via compromised health information exchange system

View incident → Original disclosure Indexed 1 year, 10 months ago

critical · government · Jun 1, 2024

Los Angeles Unified School District

Snowflake-linked breach exposed student and parent records at nation's second largest district

View incident → Original disclosure Indexed 1 year, 10 months ago

critical · government · May 31, 2024

State of Maine (MOVEit)

1.3M residents affected by MOVEit Transfer vulnerability — SSNs and drivers license data

View incident → Original disclosure Indexed 1 year, 10 months ago

critical · government · May 20, 2024

US Department of Education (FAFSA)

1.2M student financial aid records exposed via vulnerability in FAFSA processing system

View incident → Original disclosure Indexed 1 year, 10 months ago

high · government · May 15, 2024

City of San Jose (California)

420K resident records compromised via ransomware on municipal court filing system

View incident → Original disclosure Indexed 1 year, 10 months ago

high · government · May 12, 2024

TransAlta Corporation (Alberta)

Critical infrastructure utility breach — operational technology systems at risk

View incident → Original disclosure Indexed 1 year, 11 months ago

high · government · May 12, 2024

Hawaii Health Department

340K immunization records compromised

View incident → Original disclosure Indexed 1 year, 11 months ago