Technology Sector Data Breaches — SaaS, Cloud & Software Compromises

Technology & Software Data Breaches (1150 indexed)

critical · tech · Oct 6, 2023

23andMe

6.9M user genetic ancestry profiles stolen via credential stuffing

View incident → Original disclosure Indexed 2 years, 6 months ago

critical · tech · Oct 6, 2023

23andMe (lawsuit)

6.4M users affected in credential stuffing — company bankrupt by 2025

View incident → Original disclosure Indexed 2 years, 6 months ago

medium · tech · Oct 3, 2023

Activision

16,006 records exposed — Email addresses, Geographic locations, Job titles, Names and 1 more

View incident → Original disclosure Indexed 2 years, 7 months ago

high · tech · Sep 27, 2023

Progress WS_FTP

Critical vulnerability in another Progress Software file transfer product

View incident → Original disclosure Indexed 2 years, 7 months ago

high · tech · Sep 23, 2023

Johnson Controls International

Dark Angels ransomware encrypted 27TB of corporate data — $51M ransom demanded

View incident → Original disclosure Indexed 2 years, 7 months ago

critical · tech · Sep 22, 2023

Optus Telecommunications (Australia)

9.8M customer records including passport numbers exposed via unauthenticated API

View incident → Original disclosure Indexed 2 years, 7 months ago

high · tech · Sep 20, 2023

dBforums

363,468 records exposed — Dates of birth, Email addresses, IP addresses, Passwords and 1 more

View incident → Original disclosure Indexed 2 years, 7 months ago

critical · tech · Sep 19, 2023

JetBrains (TeamCity)

Critical auth bypass vulnerability led to supply chain compromises

View incident → Original disclosure Indexed 2 years, 7 months ago

high · tech · Sep 13, 2023

Retool (SaaS Platform)

27 crypto customer accounts breached via AI-powered deepfake voice phishing attack

View incident → Original disclosure Indexed 2 years, 7 months ago

high · tech · Sep 13, 2023

Retool

27 crypto customers compromised via Google Authenticator sync phishing

View incident → Original disclosure Indexed 2 years, 7 months ago

critical · tech · Sep 12, 2023

IFX Networks (Colombia)

Ransomware disrupted 700+ companies across Latin America through Colombian cloud provider

View incident → Original disclosure Indexed 2 years, 7 months ago

medium · tech · Sep 7, 2023

Hershey Company

2,214 employee records exposed in phishing

View incident → Original disclosure Indexed 2 years, 7 months ago

high · tech · Aug 31, 2023

Phished Data via CERT Poland

67,943 records exposed — Email addresses, Passwords

View incident → Indexed 2 years, 8 months ago

critical · tech · Aug 31, 2023

PlayCyberGames

3,681,753 records exposed — Email addresses, Passwords, Usernames

View incident → Original disclosure Indexed 2 years, 8 months ago

high · tech · Aug 24, 2023

Plex Media Server

15M user accounts compromised — emails, usernames, and encrypted passwords stolen

View incident → Original disclosure Indexed 2 years, 8 months ago

high · tech · Aug 22, 2023

Atmeltomo

580,177 records exposed — Email addresses, IP addresses, Passwords, Usernames

View incident → Original disclosure Indexed 2 years, 8 months ago

high · tech · Aug 21, 2023

ECCIE

536,923 records exposed — Dates of birth, Email addresses, IP addresses, Passwords and 1 more

View incident → Original disclosure Indexed 2 years, 8 months ago

critical · tech · Aug 18, 2023

Caesars Entertainment (Loyalty)

Social engineering attack via IT help desk compromised rewards database of 65M members

View incident → Original disclosure Indexed 2 years, 8 months ago

high · tech · Aug 18, 2023

T-Mobile Czech Republic

1.5M customer records accessed through unauthorized API endpoint

View incident → Original disclosure Indexed 2 years, 8 months ago

high · tech · Aug 17, 2023

iMenu360

3,425,860 records exposed — Email addresses, Names, Phone numbers, Physical addresses

View incident → Original disclosure Indexed 2 years, 8 months ago

medium · tech · Aug 14, 2023

Discord.io

760K user records exposed — emails, billing addresses, salted passwords leaked

View incident → Original disclosure Indexed 2 years, 8 months ago

high · tech · Aug 14, 2023

Clorox

Significant operational disruption from cyberattack affecting production

View incident → Original disclosure Indexed 2 years, 8 months ago

critical · tech · Aug 8, 2023

CraftRise

2,532,527 records exposed — Email addresses, Geographic locations, Passwords, Usernames

View incident → Original disclosure Indexed 2 years, 8 months ago

critical · tech · Aug 3, 2023

Prospect Medical Holdings (tech)

1.3M patient records exposed across 16 hospitals in Rhysida ransomware

View incident → Original disclosure Indexed 2 years, 9 months ago