Detailed cybersecurity breach reports with severity analysis, attack vectors, and records affected.
A ransomware attack on AZ Monica hospital in Antwerp forced cancellation of 70+ surgeries, patient transfers, and revealed a broader breach affecting five Belgian hospitals through a shared software supplier.
Blue Shield of California disclosed that a Google Analytics misconfiguration shared protected health information of 4.7 million members with Google Ads over nearly three years.
The TridentLocker ransomware group breached Sedgwick Government Solutions, a federal contractor subsidiary providing claims management to DHS, ICE, and CISA, exfiltrating 3.39 GB of data.
A threat actor breached ESA's external Bitbucket and Jira servers, claiming 200 GB of source code, API tokens, credentials, and confidential mission documents. A second breach followed within weeks.
The ALPHV/BlackCat ransomware attack on Change Healthcare caused the most significant disruption to the US healthcare system from a cyberattack, affecting claims processing for months and exposing data of approximately 100 million individuals.
A credential theft campaign targeting Snowflake customer accounts without MFA resulted in data theft from over 165 organizations including Ticketmaster, AT&T, Santander, and Advance Auto Parts.
The Salt Typhoon campaign by Chinese state-sponsored actors compromised major US telecom providers including AT&T, Verizon, and T-Mobile, accessing lawful intercept systems and call metadata in what officials called the worst telecom hack in US history.
A Qilin ransomware attack on pathology provider Synnovis disrupted blood testing and transfusion services across major London NHS hospitals for months, forcing cancellation of thousands of operations and appointments.
Data broker National Public Data suffered a massive breach exposing 2.9 billion records including Social Security numbers, leading to class-action lawsuits and the company's bankruptcy filing.
AT&T disclosed that hackers stole call and text metadata for nearly all of its wireless customers — approximately 110 million people — from a Snowflake cloud environment.
The Cl0p ransomware group exploited a zero-day vulnerability in Progress Software's MOVEit Transfer, compromising over 2,700 organizations and exposing data of 95+ million individuals in one of the largest mass exploitation events ever.
Hackers stole personal and payment data of approximately 560 million Ticketmaster customers from a Snowflake cloud environment, in one of the largest consumer data breaches of 2024.