Cisco SD-WAN
Cisco SD-WAN Path Traversal Vulnerability — Cisco SD-WAN CLI contains a path traversal vulnerability that could allow an authenticated local attacker to gain elevated privileges via improper access controls on commands w
2026 Data Breaches Year-to-Date (645 indexed)
VIQ Solutions (Court Transcripts)
Legal transcription vendor breach — sensitive court proceedings compromised via subcontractor
State of California (DMV Vendor)
2.4M drivers license records exposed via compromised address verification contractor
Canadian Tire
1.1M customer loyalty records exposed in platform breach
Bell Canada (2026)
2.2M customer records exposed via compromised residential internet provisioning system
Soliton Systems K.K FileZen
Soliton Systems K.K FileZen OS Command Injection Vulnerability — Soliton Systems K.K FileZen contains an OS command injection vulnerability when an user logs-in to the affected product and sends a specially crafted HTTP
Raytheon Technologies
430K defense contractor employee records and clearance data compromised via vendor
University of Mississippi Medical Center
University of Mississippi Medical Center is still scrambling to respond to a ransomware attack last Thursday
Leading Semiconductor Supplier Advantest Hit
Advantest, a Japanese specialist in testing computer chips for major semiconductor manufacturers, has deployed incident response protocols following a cybersecurity incident
Sun Life Financial (Canada)
890K group benefits records compromised via ransomware at claims administrator
PwC (Global)
380K audit client records exposed via compromised file transfer platform
CarGurus
12,461,887 records exposed — Email addresses, IP addresses, Names, Phone numbers and 1 more
Deloitte (Client Data)
240K audit client records from 12 countries exposed via compromised GlobalProtect VPN
Roundcube Webmail
RoundCube Webmail Deserialization of Untrusted Data Vulnerability — RoundCube Webmail contains a deserialization of untrusted data vulnerability that allows remote code execution by authenticated users because the _from
Atlassian Confluence Cloud
4.8M wiki pages from enterprise customers exposed via critical authentication bypass
VIQ Solutions (Canada)
Sensitive court transcripts compromised after Indian subcontractor breach — ignored warnings
Province of Quebec (Revenu)
670K taxpayer records exposed via compromised e-filing integration at provincial revenue agency
CarMax
431,371 records exposed — Email addresses, Names, Phone numbers, Physical addresses
Roundcube Webmail
RoundCube Webmail Cross-site Scripting Vulnerability — RoundCube Webmail contains a cross-site scripting vulnerability via the animate tag in an SVG document.
Hydro-Quebec (Canada)
640K customer billing records exposed via compromised metering data system
University of Sydney (Australia)
340K student records including visa and financial information exposed in targeted attack
Canada Health Infoway
3.2M patient health records from interprovincial data exchange compromised
Figure
967,178 records exposed — Dates of birth, Email addresses, Names, Phone numbers and 1 more
Hogan Lovells International LLP
510K cross-border dispute records exposed via compromised document review platform