Microsoft Office
Microsoft Office Security Feature Bypass Vulnerability — Microsoft Office contains a security feature bypass vulnerability in which reliance on untrusted inputs in a security decision in Microsoft Office could allow an u
Technology & Software Data Breaches (1270 indexed)
Linux Kernel
Linux Kernel Integer Overflow Vulnerability — Linux Kernel contains an integer overflow vulnerability in the create_elf_tables() function which could allow an unprivileged local user with access to SUID (or otherwise pri
SmarterTools SmarterMail
SmarterTools SmarterMail Authentication Bypass Using an Alternate Path or Channel Vulnerability — SmarterTools SmarterMail contains an authentication bypass using an alternate path or channel vulnerability in the passwor
Telstra (Australia)
1.7M customer records exposed via compromised partner API in mobile services platform
Broadcom VMware vCenter Server
Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability — Broadcom VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. This could allow a malicious a
Vite Vitejs
Vite Vitejs Improper Access Control Vulnerability — Vite Vitejs contains an improper access control vulnerability that exposes content of non-allowed files using ?inline&import or ?raw?import. Only apps explicitly exposi
Versa Concerto
Versa Concerto Improper Authentication Vulnerability — Versa Concerto SD-WAN orchestration platform contains an improper authentication vulnerability in the Traefik reverse proxy configuration, allowing at attacker to ac
Prettier eslint-config-prettier
Prettier eslint-config-prettier Embedded Malicious Code Vulnerability — Prettier eslint-config-prettier contains an embedded malicious code vulnerability. Installing an affected package executes an install.js file that l
Shopify (Merchant Data)
860K merchant store records including revenue data exposed via compromised support tool
Synacor Zimbra Collaboration Suite (ZCS)
Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability — Synacor Zimbra Collaboration Suite (ZCS) contains a PHP remote file inclusion vulnerability that could allow for remote attackers to craf
Under Armour
72,742,892 records exposed — Dates of birth, Email addresses, Genders, Geographic locations and 2 more
Cisco Unified Communications Manager
Cisco Unified Communications Products Code Injection Vulnerability — Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unified Comm
Korea Telecom (South Korea)
8.7M customer records exposed via compromised customer portal at largest Korean telco
Crunchbase
Business intelligence platform breached — ShinyHunters claimed responsibility
Fujitsu (Japan)
1.2M customer records from government IT contracts exposed via compromised ProjectWEB portal
Salesforce (Data Cloud)
3.4M CRM records from multiple tenants exposed via privilege escalation in Data Cloud module
Optus (Australia 2026)
2.8M customer records stolen via API vulnerability in self-service portal
Match Group (Hinge / OkCupid)
10M+ dating records stolen by ShinyHunters via Okta SSO social engineering
Zscaler Cloud Security
150K enterprise zero-trust configurations exposed — test environment breach spread to prod
Amazon Web Services (Customer Data)
2.8M customer billing records and account metadata exposed via misconfigured internal tool
Microsoft Windows
Microsoft Windows Information Disclosure Vulnerability — Microsoft Windows Desktop Windows Manager contains an information disclosure vulnerability that allows an authorized attacker to disclose information locally.
Gogs Gogs
Gogs Path Traversal Vulnerability — Gogs contains a path traversal vulnerability affecting improper Symbolic link handling in the PutContents API that could allow for code execution.
Tesla Inc.
75K employee records leaked by former staff to German newspaper — payroll, SSNs, complaints
Datadog Inc.
APM and logging data from 340 enterprise customers exposed via compromised CI/CD pipeline