Microsoft Windows
Microsoft Windows Shell Protection Mechanism Failure Vulnerability — Microsoft Windows Shell contains a protection mechanism failure vulnerability that could allow an unauthorized attacker to bypass a security feature ov
Latest Disclosures
Weston Foods (George Weston)
340K employee and supply records exposed
Microsoft Windows
Microsoft Windows Improper Privilege Management Vulnerability — Microsoft Windows Remote Desktop Services contains an improper privilege management vulnerability that could allow an authorized attacker to elevate privile
Microsoft Windows
Microsoft MSHTML Framework Protection Mechanism Failure Vulnerability — Microsoft MSHTML Framework contains a protection mechanism failure vulnerability that could allow an unauthorized attacker to bypass a security feat
Jean Coutu (Pharmacy)
450K patient records exposed in POS breach
Emirates Airlines
640K Skywards member records including travel history and contact data compromised
Thales Group (France)
340K defense and aerospace employee records exposed via LockBit 3.0 ransomware
Robinhood Markets (2026)
2.8M customer trading records and SSNs exposed via social engineering attack on support staff
BridgePay Confirms Ransomware Attack, No
The services of Florida-based payments platform BridgePay are offline due to a ransomware attack
Researchers Find 40,000+ Exposed OpenClaw
SecurityScorecard has identified over 40,000 OpenClaw deployments exposed to potential attack
Cathay Pacific Airways
9.4M passenger records re-exposed as 2018 breach data reappears on new dark web marketplace
Instacart Grocery Delivery
680K shopper and customer records exposed via third-party payment processor compromise
ServiceNow ITSM Platform
620K enterprise workflow configurations exposed via compromised instance admin accounts
ATO Australia (Tax)
1.1M taxpayer records exposed via zero-day in myGov authentication system
Baystate Health
440K patient records exposed in spear-phishing attack on Massachusetts health system
CVS Health / Aetna
3.4M patient pharmacy and insurance records exposed via compromised prescription gateway
University of Toronto
380K student and staff records compromised in targeted phishing campaign
BridgePay Network Solutions
Payment gateway ransomware attack causes widespread merchant and municipal outages
Fortinet (Security Vendor)
440K customer records from FortiGate management portal exposed via zero-day authentication bypass
Substack Confirms Data Breach, "Limited
Substack did not specify the number of users affected by the data breach
Goldman Sachs (Contractor)
180K client portfolio records accessed by compromised contractor with elevated privileges
Substack
697K subscriber records exposed — email addresses, phone numbers, internal metadata
Capital One (2025)
3.2M credit card applicant records exposed via new cloud misconfiguration — second incident
Swiss Re (Insurance)
340K reinsurance policyholder records from global operations exposed in targeted attack