Live disclosure tracker · updated continuously

Government Data Breaches

Federal agencies, state governments, municipalities, and public-sector contractors have become priority targets for nation-state actors and ransomware groups. Below is every government-sector breach LeakTrace has indexed.

98B+

Records Exposed

585

Incidents

94+

Countries

+104%

Breach Velocity YoY

View Live Map → Run Free Exposure Scan RSS

Browse by sector

All breaches Healthcare Finance Government Technology Retail Education Legal

Browse by year

Government Data Breaches (585 indexed)

critical · government · Mar 2, 2021

Microsoft Exchange / US federal agencies

Multiple federal agencies breached via Hafnium Exchange zero-days

View incident → Original disclosure Indexed 5 years, 2 months ago

high · government · Feb 17, 2021

CityBee

110,156 records exposed — Email addresses, Government issued IDs, Names, Passwords

View incident → Original disclosure Indexed 5 years, 2 months ago

critical · government · Feb 8, 2021

City of Oldsmar FL (water)

Hacker remotely raised lye levels in drinking water treatment

View incident → Original disclosure Indexed 5 years, 2 months ago

critical · government · Feb 5, 2021

Oldsmar FL water treatment

Remote access intruder raised sodium hydroxide to dangerous levels

View incident → Original disclosure Indexed 5 years, 3 months ago

high · government · Jan 28, 2021

City of Sparks NV

Ransomware attacked city government systems

View incident → Original disclosure Indexed 5 years, 3 months ago

medium · government · Jan 28, 2021

Florida Dept of Veterans Affairs

8K veteran records exposed in email breach

View incident → Original disclosure Indexed 5 years, 3 months ago

high · government · Jan 25, 2021

NSW Government (Accellion)

Health and transport data compromised via Accellion FTA vulnerability

View incident → Original disclosure Indexed 5 years, 3 months ago

critical · government · Jan 25, 2021

Washington State Auditor

1.47M unemployment claim records exposed in Accellion breach

View incident → Original disclosure Indexed 5 years, 3 months ago

high · government · Dec 28, 2020

Finnish Parliament (Eduskunta)

State-sponsored APT compromised MP email accounts — Chinese APT31 attributed

View incident → Original disclosure Indexed 5 years, 4 months ago

high · government · Dec 24, 2020

Scottish Environment Protection Agency

Conti ransomware stole 1.2GB of data — published 4,000+ files

View incident → Original disclosure Indexed 5 years, 4 months ago

high · government · Dec 15, 2020

City of Gary IN

Ransomware encrypted city systems for weeks

View incident → Original disclosure Indexed 5 years, 4 months ago

critical · government · Dec 13, 2020

SolarWinds / US Dept of Energy

DOE and NNSA networks compromised via SolarWinds

View incident → Original disclosure Indexed 5 years, 4 months ago

critical · government · Dec 13, 2020

SolarWinds / US Treasury

Russian SVR accessed US Treasury email systems via SolarWinds

View incident → Original disclosure Indexed 5 years, 4 months ago

critical · government · Dec 13, 2020

SolarWinds / US Dept of Commerce

NTIA email systems compromised in SolarWinds supply chain

View incident → Original disclosure Indexed 5 years, 4 months ago

critical · government · Dec 13, 2020

SolarWinds / CISA

Cybersecurity agency itself compromised in SolarWinds attack

View incident → Original disclosure Indexed 5 years, 4 months ago

critical · government · Dec 13, 2020

SolarWinds / US Dept of Justice

DOJ email accounts accessed including 3,000+ employees

View incident → Original disclosure Indexed 5 years, 4 months ago

critical · government · Dec 13, 2020

SolarWinds / US Dept of Homeland Security

DHS email accounts accessed by Russian intelligence

View incident → Original disclosure Indexed 5 years, 4 months ago

critical · government · Dec 13, 2020

SolarWinds / US Dept of State

State Dept email systems compromised in supply chain attack

View incident → Original disclosure Indexed 5 years, 4 months ago

high · government · Dec 7, 2020

City of Pensacola FL

Maze ransomware encrypted city systems

View incident → Original disclosure Indexed 5 years, 4 months ago

medium · government · Nov 13, 2020

City of Saint John (NB)

Ransomware attack disrupted municipal operations — IT systems offline for extended period

View incident → Original disclosure Indexed 5 years, 5 months ago

critical · government · Nov 5, 2020

James

1,541,284 records exposed — Email addresses, Geographic locations, Passwords

View incident → Original disclosure Indexed 5 years, 6 months ago

critical · government · Nov 3, 2020

Brazilian Superior Court of Justice

RansomEXX encrypted entire court system — backups also targeted

View incident → Original disclosure Indexed 5 years, 6 months ago

high · government · Oct 28, 2020

Chatham County NC

DoppelPaymer ransomware encrypted county systems

View incident → Original disclosure Indexed 5 years, 6 months ago

high · government · Oct 15, 2020

Lebanon Ministry of Finance

Lebanese government systems compromised — 31 million documents exfiltrated

View incident → Original disclosure Indexed 5 years, 6 months ago