Live disclosure tracker · updated continuously

2026 Data Breaches Year-to-Date

2026 continues the year-over-year growth trend in confirmed disclosures. The list below updates as new breaches are reported by Verizon DBIR partners and major security news outlets.

98B+
Records Exposed
997
Incidents
94+
Countries
+104%
Breach Velocity YoY
Browse by sector
All breaches Healthcare Finance Government Technology Retail Education Legal
Browse by year
2024 2025 2026 2026 Index

2026 Data Breaches Year-to-Date (997 indexed)

high · tech · Jun 15, 2026

Cisco Catalyst SD-WAN Manager

Cisco Catalyst SD-WAN Manager Directory or Path Traversal Vulnerability — Cisco Catalyst SD-WAN Manager contains a directory or path traversal vulnerability that could allow an authenticated, remote attacker to create a

high · tech · Jun 11, 2026

Ivanti Sentry

Ivanti Sentry OS Command Injection Vulnerability — Ivanti Sentry (formerly known as MobileIron Sentry) contains an OS command injection vulnerability which could allow a remote unauthenticated user to achieve root-level

high · finance · Jun 10, 2026

University of Nottingham

454,635 records exposed — Academic records, Citizenship statuses, Dates of birth, Disabilities and 11 more

View incident → Indexed 1 month ago
high · tech · Jun 9, 2026

Google Chromium V8

Google Chromium V8 Out-of-Bounds Read and Write Vulnerability — Google Chromium V8 out-of-bounds read and write vulnerability that could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HT

View incident → Original disclosure Indexed 1 month, 1 week ago
high · tech · Jun 9, 2026

Cisco Catalyst SD-WAN Manager

Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability — Cisco Catalyst SD-WAN Manager formerly SD-WAN vManage contains an improper encoding or escaping of output vulnerability. This vulnerab

View incident → Original disclosure Indexed 1 month, 1 week ago
critical · tech · Jun 8, 2026

Check Point Security Gateway

Check Point Security Gateway Improper Authentication Vulnerability — Check Point Security Gateway contains an improper authentication vulnerability in IKEv1 key exchange that could allow an unauthenticated remote attacke

View incident → Original disclosure Indexed 1 month, 1 week ago
high · tech · Jun 8, 2026

BerriAI LiteLLM

BerriAI LiteLLM Command Injection Vulnerability — BerriAI LiteLLM contains a command injection vulnerability that could allow any authenticated user, including holders of low-privilege internal-user keys, to run arbitrar

View incident → Original disclosure Indexed 1 month, 1 week ago
medium · retail · Jun 7, 2026

Baker Distributing

102,935 records exposed — Email addresses, Names, Phone numbers, Physical addresses and 1 more

View incident → Indexed 1 month, 1 week ago
medium · retail · Jun 5, 2026

BCD Travel

396,313 records exposed — Email addresses, Employers, Job titles, Names and 3 more

View incident → Indexed 1 month, 1 week ago
high · tech · Jun 5, 2026

SolarWinds Serv-U

SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability — SolarWinds Serv-U contains an uncontrolled resource consumption vulnerability that allows specially crafted POST requests using the Content-Encoding: de

View incident → Original disclosure Indexed 1 month, 1 week ago
high · tech · Jun 2, 2026

Android Framework

Android Framework Integer Overflow Vulnerability — Android Framework contains an integer overflow vulnerability that allows for code execution that could allow for local privilege escalation.

View incident → Original disclosure Indexed 1 month, 2 weeks ago
high · tech · Jun 2, 2026

Linux Kernel

Linux Kernel Improper Authentication Vulnerability — Linux Kernel contains an improper authentication vulnerability which could allow for privilege escalation via the cgroups v1 release_agent feature.

View incident → Original disclosure Indexed 1 month, 2 weeks ago
high · tech · Jun 1, 2026

Oracle WebLogic Server

Oracle WebLogic Server Unspecified Vulnerability — Oracle WebLogic contains an unspecified vulnerability that could allow an unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server.

View incident → Original disclosure Indexed 1 month, 2 weeks ago
high · retail · Jun 1, 2026

Edmunds

177,860 records exposed — Device information, Email addresses, IP addresses, Passwords and 2 more

View incident → Indexed 1 month, 2 weeks ago
high · retail · May 30, 2026

Atlas Menu

63,926 records exposed — Email addresses, IP addresses, Passwords, Support tickets and 1 more

View incident → Indexed 1 month, 2 weeks ago
high · tech · May 29, 2026

Palo Alto Networks PAN-OS

Palo Alto Networks PAN-OS Authentication Bypass Vulnerability — Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that allows attackers to bypass security restrictions and establish an unauthorize

View incident → Original disclosure Indexed 1 month, 2 weeks ago
high · government · May 28, 2026

Charter

4,851,517 records exposed — Email addresses, Job titles, Names, Phone numbers and 1 more

View incident → Indexed 1 month, 2 weeks ago
medium · finance · May 28, 2026

Kemper

269,299 records exposed — Email addresses, Names, Partial credit card data, Phone numbers and 2 more

View incident → Indexed 1 month, 2 weeks ago