Live disclosure tracker · updated continuously

2026 Data Breaches Year-to-Date

2026 continues the year-over-year growth trend in confirmed disclosures. The list below updates as new breaches are reported by Verizon DBIR partners and major security news outlets.

98B+
Records Exposed
1181
Incidents
94+
Countries
+104%
Breach Velocity YoY
Browse by sector
All breaches Healthcare Finance Government Technology Retail Education Legal
Browse by year
2024 2025 2026 ★ Worst of 2026

2026 Data Breaches Year-to-Date (1181 indexed)

critical · government · Jun 10, 2026

67 million Thais exposed in

Pattaya Mail reports: A civil society group has petitioned a parliamentary committee to investigate a massive data breach after a government agency leaked the national ID numbers and healthcare details of approximately 6

View incident → Original disclosure Indexed 3 weeks, 2 days ago
critical · government · Jun 10, 2026

CISA tells agencies to patch

Security teams’ patching practices have come under intense pressure over the past year, as active exploitation is up, time-to-exploit windows are accelerating, and vulnerabilities have become attackers’ top initial acces

View incident → Original disclosure Indexed 3 weeks, 2 days ago
critical · finance · Jun 10, 2026

AI red teaming comes of

When Ram Shankar Siva Kumar launched Microsoft’s AI red team in 2019, the discipline barely existed. “The running joke used to be that people who used to work in AI red teaming, you can round them up in a 14-foot cata

View incident → Original disclosure Indexed 3 weeks, 2 days ago
medium · legal · Jun 10, 2026

LA: St. George fire district

Deon Guillory reports: St. George Fire Protection District No. 2 filed a lawsuit against its former IT security provider, alleging the company’s failures led to a cyberattack that compromised the fire district’s network.

View incident → Original disclosure Indexed 3 weeks, 2 days ago
critical · tech · Jun 10, 2026

Autonomous AI agents duped into

AI agents given access to corporate email and business applications could become a new phishing target for attackers, according to cybersecurity researchers, after a test agent built on OpenClaw was tricked into sharing

View incident → Original disclosure Indexed 3 weeks, 2 days ago
critical · finance · Jun 10, 2026

Power company in Japan fears

Buranond Kijwatanachai reports: Private personal information of nearly 11 million people may have been leaked after a Kyushu power company lost a storage drive earlier this year. According to Asahi Shimbun, the storage d

View incident → Original disclosure Indexed 3 weeks, 2 days ago
medium · tech · Jun 9, 2026

ServiceNow

ServiceNow is warning about a security incident after attackers exploited an unauthenticated access flaw through a vulnerable API endpoint, allowing them to query data from customer instances. [...]

View incident → Original disclosure Indexed 3 weeks, 3 days ago
high · tech · Jun 9, 2026

Google Chromium V8

Google Chromium V8 Out-of-Bounds Read and Write Vulnerability — Google Chromium V8 out-of-bounds read and write vulnerability that could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HT

View incident → Original disclosure Indexed 3 weeks, 3 days ago
high · tech · Jun 9, 2026

Cisco Catalyst SD-WAN Manager

Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability — Cisco Catalyst SD-WAN Manager formerly SD-WAN vManage contains an improper encoding or escaping of output vulnerability. This vulnerab

View incident → Original disclosure Indexed 3 weeks, 3 days ago
critical · healthcare · Jun 8, 2026

JP: Hokkaido hospitals data leak

NHK News reports: Japan’s National Hospital Organization says hard drives from two hospitals in Hokkaido were listed on auction sites, resulting in a leak of personal information from at least 180,000 patients and

View incident → Original disclosure Indexed 3 weeks, 4 days ago