Google Dawn
Google Dawn Use-After-Free Vulnerability — Google Dawn contains an use-after-free vulnerability that could allow a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML pag
Technology & Software Data Breaches (1270 indexed)
Citrix NetScaler
Citrix NetScaler Out-of-Bounds Read Vulnerability — Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability wh
Lloyds IT Glitch Exposed Data
Lloyds app glitch exposed up to 447,936 customers’ transactions and personal data during update
European Commission Confirms Cloud Data
The European Commission has revealed details of a data breach impacting its AWS infrastructure
BreachForums Version 5
339,778 records exposed — Email addresses, Passwords, Usernames
Telus Digital
1 petabyte data theft affecting 28 companies via multi-month breach by ShinyHunters
View incident → Indexed 2 months ago
TELUS Digital
1 petabyte stolen by ShinyHunters including call records, FBI data
View incident → Indexed 2 months ago
Aura Identity Protection
900K customer marketing contacts with names and email addresses exposed
View incident → Indexed 2 months ago
Cloud Imperium Games
User account metadata, contact details from January breach
View incident → Indexed 2 months ago
HungerRush
Restaurant POS system breach, customer emails exposed
View incident → Indexed 2 months ago
F5 BIG-IP
F5 BIG-IP Stack-Based Buffer Overflow Vulnerability — F5 BIG-IP APM contains a stack-based buffer overflow vulnerability that could allow a threat actor to achieve remote code execution.
Ericsson Inc. (US)
15K+ employees/customers data including SSNs, driver's licenses
View incident → Indexed 2 months ago
Ericsson Inc (US)
15K+ employee and customer records including SSNs via service provider hack
View incident → Indexed 2 months ago
Scuf Gaming
128,683 records exposed — Display names, Email addresses, IP addresses, Passwords and 1 more
Aquasecurity Trivy
Aquasecurity Trivy Embedded Malicious Code Vulnerability — Aquasecurity Trivy contains an embedded malicious code vulnerability that could allow an attacker to gain access to everything in the CI/CD environment, includin
Langflow Langflow
Langflow Code Injection Vulnerability — Langflow contains a code injection vulnerability that could allow building public flows without requiring authentication.
CGI Group (Canada)
420K government contract records from Canadian IT services firm exposed in supply chain attack
RuneScape Boards
222,762 records exposed — Email addresses, IP addresses, Passwords, Usernames
‘CanisterWorm’ Springs Wiper Attack Targeting
A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wipes data on infected systems that use Ir
SAP SE (Cloud)
1.6M enterprise customer records from S/4HANA Cloud exposed via authentication bypass
Oracle Cloud (Customer Tenants)
6M records from 140K+ tenants allegedly accessed via authentication bypass in legacy systems
Apple Multiple Products
Apple Multiple Products Improper Locking Vulnerability — Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain an improper locking vulnerability that could allow a malicious application to cause unexpected change
Apple Multiple Products
Apple Multiple Products Classic Buffer Overflow Vulnerability — Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain a classic buffer overflow vulnerability which could allow a malicious application to cause une
Apple Multiple Products
Apple Multiple Products Buffer Overflow Vulnerability — Apple Safari, iOS, watchOS, visionOS, iPadOS, macOS, and tvOS contain a buffer overflow vulnerability that could allow the processing of maliciously crafted web con