Technology Sector Data Breaches — SaaS, Cloud & Software Compromises

Technology & Software Data Breaches (1150 indexed)

critical · tech · Jan 19, 2023

T-Mobile

37M customer records stolen — names, billing addresses, emails, phone numbers, dates of birth

View incident → Original disclosure Indexed 3 years, 3 months ago

high · tech · Jan 15, 2023

Twitch (Amazon)

7.5TB of source code and creator payout data re-leaked on torrent sites from 2021 breach

View incident → Original disclosure Indexed 3 years, 3 months ago

high · tech · Jan 13, 2023

NortonLifeLock (2023)

6,450 customer password manager vaults potentially accessed

View incident → Original disclosure Indexed 3 years, 3 months ago

high · tech · Jan 11, 2023

Mailchimp

133 customer accounts compromised in social engineering

View incident → Original disclosure Indexed 3 years, 3 months ago

medium · tech · Jan 11, 2023

Mailchimp (Intuit)

133 customer accounts accessed via social engineering — third breach in 12 months

View incident → Original disclosure Indexed 3 years, 3 months ago

high · tech · Jan 10, 2023

LG Uplus (Korea)

290,000 customer records stolen — national IDs, IMEI numbers, contact info

View incident → Original disclosure Indexed 3 years, 3 months ago

critical · tech · Jan 5, 2023

Twitter (200M)

211,524,284 records exposed — Email addresses, Names, Social media profiles, Usernames

View incident → Original disclosure Indexed 3 years, 4 months ago

critical · tech · Jan 4, 2023

Twitter / X (Scraped Data)

200M+ email addresses and profile data compiled from API vulnerability

View incident → Original disclosure Indexed 3 years, 4 months ago

critical · tech · Jan 4, 2023

CircleCI

All customer secrets and tokens potentially compromised in platform breach

View incident → Original disclosure Indexed 3 years, 4 months ago

critical · tech · Jan 4, 2023

CircleCI CI/CD Platform

Engineer laptop malware led to customer secret theft — all secrets needed rotation

View incident → Original disclosure Indexed 3 years, 4 months ago

critical · tech · Jan 4, 2023

Twitter / X (200M)

200M email-to-username mappings leaked on dark web

View incident → Original disclosure Indexed 3 years, 4 months ago

high · tech · Dec 27, 2022

Slack / GitHub (2022)

Employee tokens stolen, private code repositories accessed

View incident → Original disclosure Indexed 3 years, 4 months ago

critical · tech · Dec 22, 2022

LastPass

Encrypted password vaults and customer metadata stolen via compromised developer account

View incident → Original disclosure Indexed 3 years, 4 months ago

high · tech · Dec 13, 2022

TPG Telecom (Australia)

15,000 email accounts compromised — business customer data accessed

View incident → Original disclosure Indexed 3 years, 4 months ago

high · tech · Dec 12, 2022

Norton LifeLock / Gen Digital

925K customer password manager vaults potentially compromised

View incident → Original disclosure Indexed 3 years, 4 months ago

high · tech · Dec 12, 2022

Norton LifeLock (Gen Digital)

6,450 customer password vaults potentially accessed via credential-stuffing campaign

View incident → Original disclosure Indexed 3 years, 4 months ago

high · tech · Dec 7, 2022

Abandonia (2022)

919,790 records exposed — Email addresses, IP addresses, Passwords, Usernames

View incident → Original disclosure Indexed 3 years, 4 months ago

critical · tech · Dec 5, 2022

Wyze

2.4M smart home camera user records exposed

View incident → Original disclosure Indexed 3 years, 5 months ago

critical · tech · Dec 2, 2022

Rackspace

Hosted Exchange environment taken down by Play ransomware

View incident → Original disclosure Indexed 3 years, 5 months ago

high · tech · Dec 2, 2022

Rackspace Technology

Play ransomware encrypted Exchange email servers — customer hosted email disrupted

View incident → Original disclosure Indexed 3 years, 5 months ago

high · tech · Dec 1, 2022

GoDaddy

Multi-year breach — source code stolen, malware installed on hosting servers

View incident → Original disclosure Indexed 3 years, 5 months ago

critical · tech · Nov 30, 2022

GoTo / LastPass parent

Encrypted backups stolen, including Hamachi, Central, Pro settings

View incident → Original disclosure Indexed 3 years, 5 months ago

high · tech · Nov 30, 2022

Mercury IT (New Zealand)

14,500 patient records leaked from major NZ IT services provider — Rhysida ransomware

View incident → Original disclosure Indexed 3 years, 5 months ago

high · tech · Nov 28, 2022

Eufy / Anker

Security cameras streamed to wrong users, stored unencrypted

View incident → Original disclosure Indexed 3 years, 5 months ago