Technology Sector Data Breaches — SaaS, Cloud & Software Compromises

Technology & Software Data Breaches (1150 indexed)

high · tech · Apr 15, 2022

Heroku / Salesforce

OAuth token theft affected multiple customer repositories

View incident → Original disclosure Indexed 4 years ago

high · tech · Apr 15, 2022

GitHub (2022)

OAuth tokens stolen from Heroku and Travis CI integrations

View incident → Original disclosure Indexed 4 years ago

critical · tech · Apr 4, 2022

Block (Cash App)

8.2M user records exposed by former employee

View incident → Original disclosure Indexed 4 years, 1 month ago

high · tech · Mar 31, 2022

Royal Enfield

420,873 records exposed — Dates of birth, Email addresses, Genders, Names and 5 more

View incident → Original disclosure Indexed 4 years, 1 month ago

high · tech · Mar 30, 2022

Lapsus$ / Globant

70GB of source code stolen from IT consultancy

View incident → Original disclosure Indexed 4 years, 1 month ago

critical · tech · Mar 28, 2022

Shields Health Care (tech)

2.3M patient records exposed via technology vendor breach

View incident → Original disclosure Indexed 4 years, 1 month ago

critical · tech · Mar 22, 2022

Microsoft (Lapsus$ Global Impact)

Lapsus$ stole 37GB of Bing, Cortana, and Bing Maps source code

View incident → Original disclosure Indexed 4 years, 1 month ago

high · tech · Mar 22, 2022

Okta (2022)

LAPSUS$ breached via third-party vendor Sitel, 366 customer tenants affected

View incident → Original disclosure Indexed 4 years, 1 month ago

critical · tech · Mar 22, 2022

Microsoft (LAPSUS$)

37GB of source code including Bing and Cortana stolen

View incident → Original disclosure Indexed 4 years, 1 month ago

high · tech · Mar 19, 2022

ZAP-Hosting

746,682 records exposed — Browser user agent details, Chat logs, Email addresses, IP addresses and 4 more

View incident → Original disclosure Indexed 4 years, 1 month ago

medium · tech · Mar 15, 2022

MapleSoft (Waterloo)

Conti ransomware compromised customer data for popular math software company

View incident → Original disclosure Indexed 4 years, 1 month ago

high · tech · Mar 10, 2022

Vodafone (Lapsus$ Portugal)

Lapsus$ breached Vodafone Portugal — 200GB of source code claimed

View incident → Original disclosure Indexed 4 years, 1 month ago

critical · tech · Mar 4, 2022

Samsung (LAPSUS$)

190GB of source code including Galaxy device secrets stolen

View incident → Original disclosure Indexed 4 years, 2 months ago

critical · tech · Mar 4, 2022

Samsung Electronics (Korea)

Lapsus$ stole 190GB of source code — Galaxy device encryption algorithms exposed

View incident → Original disclosure Indexed 4 years, 2 months ago

high · tech · Mar 2, 2022

NVIDIA

71,335 records exposed — Email addresses, Passwords

View incident → Original disclosure Indexed 4 years, 2 months ago

critical · tech · Feb 28, 2022

Nvidia (Global Impact)

Lapsus$ stole 1TB including proprietary GPU driver source code

View incident → Original disclosure Indexed 4 years, 2 months ago

critical · tech · Feb 23, 2022

Nvidia

LAPSUS$ stole 1TB including employee credentials and proprietary data

View incident → Original disclosure Indexed 4 years, 2 months ago

medium · tech · Feb 15, 2022

GiveSendGo

89,966 records exposed — Email addresses, Geographic locations, Names, Purchases

View incident → Original disclosure Indexed 4 years, 2 months ago

critical · tech · Feb 7, 2022

Vodafone Portugal

Cyberattack disrupted 4G/5G, TV, and SMS services for millions of customers

View incident → Original disclosure Indexed 4 years, 2 months ago

high · tech · Feb 5, 2022

Civicom

100K video interview recordings exposed in S3 misconfiguration

View incident → Original disclosure Indexed 4 years, 3 months ago

high · tech · Feb 4, 2022

News Corp

Chinese espionage compromised journalist email accounts

View incident → Original disclosure Indexed 4 years, 3 months ago

high · tech · Feb 1, 2022

Marquard & Bahls

BlackCat ransomware disrupted energy trading company

View incident → Original disclosure Indexed 4 years, 3 months ago

high · tech · Jan 20, 2022

ShockGore

73,944 records exposed — Email addresses, Genders, IP addresses, Passwords and 2 more

View incident → Original disclosure Indexed 4 years, 3 months ago

critical · tech · Jan 20, 2022

Okta (Lapsus$ Breach)

Lapsus$ compromised Okta support engineer — 366 enterprise customers impacted

View incident → Original disclosure Indexed 4 years, 3 months ago