Apple Multiple Products
Apple Multiple products Use-After-Free Vulnerability — Apple macOS, iOS, iPadOS, and Safari 16.6 contain a use-after-free vulnerability due to the processing of maliciously crafted web content that may lead to memory cor
Technology & Software Data Breaches (1270 indexed)
Apple Multiple Products
Apple Multiple Products Integer Overflow or Wraparound Vulnerability — Apple tvOS, macOS, Safari, iPadOS and watchOS contain an integer overflow or wraparound vulnerability due to the processing of maliciously crafted we
Hikvision Multiple Products
Hikvision Multiple Products Improper Authentication Vulnerability — Multiple Hikvision products contain an improper authentication vulnerability that could allow a malicious user to escalate privileges on the system and
Infineon Technologies
280K semiconductor client records compromised
Apple iOS and iPadOS
Apple iOS and iPadOS Use-After-Free Vulnerability — Apple iOS and iPadOS contain a use-after-free vulnerability. An app may be able to execute arbitrary code with kernel privileges.
Qualcomm Multiple Chipsets
Qualcomm Multiple Chipsets Memory Corruption Vulnerability — Multiple Qualcomm chipsets contain a memory corruption vulnerability while using alignments for memory allocation.
Broadcom VMware Aria Operations
Broadcom VMware Aria Operations Command Injection Vulnerability — Broadcom VMware Aria Operations formerly known as vRealize Operations (vROps) contains a command injection vulnerability that allows an unauthenticated at
Provecho
712,904 records exposed — Email addresses, Usernames
KomikoAI
1,060,191 records exposed — AI prompts, Email addresses, Forum posts, Names
Slack (Salesforce)
2.1M workspace messages and uploaded files exfiltrated from compromised enterprise workspace
Lovora
495,556 records exposed — Display names, Email addresses, Profile photos
View incident → Indexed 2 months, 3 weeks ago
Quitbro
22,874 records exposed — Email addresses, Partial dates of birth, Usernames
Mazda (Thailand Operations)
Employee and partner data exposed in warehouse management system breach
LG Electronics
780K customer records compromised in supply chain attack
OVHcloud (France)
920K customer records and server configurations exposed via compromised management portal
Cisco Catalyst SD-WAN Controller and Manager
Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability — Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, contain an authenti
Cisco SD-WAN
Cisco SD-WAN Path Traversal Vulnerability — Cisco SD-WAN CLI contains a path traversal vulnerability that could allow an authenticated local attacker to gain elevated privileges via improper access controls on commands w
Bell Canada (2026)
2.2M customer records exposed via compromised residential internet provisioning system
Soliton Systems K.K FileZen
Soliton Systems K.K FileZen OS Command Injection Vulnerability — Soliton Systems K.K FileZen contains an OS command injection vulnerability when an user logs-in to the affected product and sends a specially crafted HTTP
CarGurus
12,461,887 records exposed — Email addresses, IP addresses, Names, Phone numbers and 1 more
Roundcube Webmail
RoundCube Webmail Deserialization of Untrusted Data Vulnerability — RoundCube Webmail contains a deserialization of untrusted data vulnerability that allows remote code execution by authenticated users because the _from
Atlassian Confluence Cloud
4.8M wiki pages from enterprise customers exposed via critical authentication bypass
Roundcube Webmail
RoundCube Webmail Cross-site Scripting Vulnerability — RoundCube Webmail contains a cross-site scripting vulnerability via the animate tag in an SVG document.
GitLab GitLab
GitLab Server-Side Request Forgery (SSRF) Vulnerability — GitLab contains a server-side request forgery (SSRF) vulnerability when requests to the internal network for webhooks are enabled.