Recent Data Breaches — Live Disclosure Tracker

Latest Disclosures

medium · government · May 31, 2023

Department of Energy (contractor)

34K employee records exposed in MOVEit breach

View incident → Original disclosure Indexed 2 years, 11 months ago

medium · government · May 31, 2023

National Nuclear Security Administration

28K records exposed via contractor breach

View incident → Original disclosure Indexed 2 years, 11 months ago

critical · tech · May 30, 2023

Polish Credentials

1,204,870 records exposed — Email addresses, Passwords

View incident → Indexed 2 years, 11 months ago

critical · tech · May 28, 2023

Progress Software MOVEit (Czech)

Czech-developed file transfer tool exploited in largest mass-hack of 2023

View incident → Original disclosure Indexed 2 years, 11 months ago

high · education · May 28, 2023

University of Waterloo (Ontario)

47K student records exposed via compromised email system — co-op employer data included

View incident → Original disclosure Indexed 2 years, 11 months ago

critical · tech · May 27, 2023

Progress MOVEit (scope)

Cl0p gang exploited SQL injection affecting 95M+ individuals globally

View incident → Original disclosure Indexed 2 years, 11 months ago

high · healthcare · May 27, 2023

Shields Health Care Group

2.3M patient records across 60 imaging and surgical centers — unauthorized access

View incident → Original disclosure Indexed 2 years, 11 months ago

critical · finance · May 27, 2023

ABN AMRO Bank (Netherlands)

2.5M customer records exposed via Barracuda ESG vulnerability — mortgage data included

View incident → Original disclosure Indexed 2 years, 11 months ago

high · government · May 26, 2023

City of Philadelphia

35K resident records exposed after email compromise went undetected for 3 months

View incident → Original disclosure Indexed 2 years, 11 months ago

high · tech · May 23, 2023

Xplain

Swiss government data including US partnership records leaked

View incident → Original disclosure Indexed 2 years, 11 months ago

critical · tech · May 23, 2023

Barracuda Email Security Gateway

Chinese state-sponsored actors exploited zero-day — advised to replace all affected appliances

View incident → Original disclosure Indexed 2 years, 11 months ago

high · healthcare · May 22, 2023

Murfreesboro Medical Clinic

559K patient records exposed in data breach

View incident → Original disclosure Indexed 2 years, 11 months ago

critical · other · May 21, 2023

Air India

4.5M passenger records from SITA breach re-exposed on dark web — passport and payment data

View incident → Original disclosure Indexed 2 years, 11 months ago

high · government · May 21, 2023

City of Augusta GA

BlackByte ransomware encrypted city systems

View incident → Original disclosure Indexed 2 years, 11 months ago

high · tech · May 20, 2023

PyPI

Malicious packages uploaded to Python Package Index supply chain

View incident → Original disclosure Indexed 2 years, 11 months ago

critical · tech · May 19, 2023

Barracuda ESG

Chinese hackers exploited zero-day in email gateway, affected thousands

View incident → Original disclosure Indexed 2 years, 11 months ago

critical · government · May 19, 2023

Luxottica

77,093,812 records exposed — Dates of birth, Email addresses, Genders, Names and 2 more

View incident → Original disclosure Indexed 2 years, 11 months ago

medium · retail · May 19, 2023

Bose Corporation

280K customer records exposed — product registration data and warranty claims stolen

View incident → Original disclosure Indexed 2 years, 11 months ago

medium · education · May 16, 2023

Victor Central Schools (NY)

4K student records exposed in ransomware

View incident → Original disclosure Indexed 2 years, 11 months ago

high · finance · May 15, 2023

Equiniti Group (UK Pensions)

Capita sub-processor exposed pension fund records of major UK employers

View incident → Original disclosure Indexed 2 years, 11 months ago

medium · other · May 15, 2023

General Motors (Credential Stuffing)

78K customer accounts compromised — OnStar and reward points accessed via reused passwords

View incident → Original disclosure Indexed 2 years, 11 months ago

medium · tech · May 12, 2023

Discord Messaging Platform

Support agent account compromised — user email addresses and support tickets exposed

View incident → Original disclosure Indexed 2 years, 11 months ago

critical · other · May 12, 2023

Toyota Connected (Cloud Exposure)

2.15M vehicle records exposed for 10 years due to misconfigured cloud database

View incident → Original disclosure Indexed 2 years, 11 months ago

high · tech · May 12, 2023

Toyota Financial

215K customer records exposed

View incident → Original disclosure Indexed 2 years, 11 months ago

Recent Data Breach Disclosures

Latest Disclosures