Live disclosure tracker · updated continuously

2026 Data Breaches Year-to-Date

2026 continues the year-over-year growth trend in confirmed disclosures. The list below updates as new breaches are reported by Verizon DBIR partners and major security news outlets.

98B+
Records Exposed
1186
Incidents
94+
Countries
+104%
Breach Velocity YoY
Browse by sector
All breaches Healthcare Finance Government Technology Retail Education Legal
Browse by year
2024 2025 2026 ★ Worst of 2026

2026 Data Breaches Year-to-Date (1186 indexed)

high · tech · Mar 11, 2026

n8n n8n

n8n Improper Control of Dynamically-Managed Code Resources Vulnerability — n8n contains an improper control of dynamically managed code resources vulnerability in its workflow expression evaluation system that allows for

View incident → Original disclosure Indexed 3 months, 3 weeks ago
high · tech · Mar 9, 2026

Omnissa Workspace One UEM

Omnissa Workspace ONE Server-Side Request Forgery — Omnissa Workspace One UEM formerly known as VMware Workspace One UEM contains a server-side request forgery (SSRF) vulnerability that could allow a malicious actor with

View incident → Original disclosure Indexed 3 months, 3 weeks ago
high · tech · Mar 9, 2026

Ivanti Endpoint Manager (EPM)

Ivanti Endpoint Manager (EPM) Authentication Bypass Vulnerability — Ivanti Endpoint Manager (EPM) contains an authentication bypass using an alternate path or channel vulnerability that could allow a remote unauthenticat

View incident → Original disclosure Indexed 3 months, 3 weeks ago
high · tech · Mar 9, 2026

SolarWinds Web Help Desk

SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability — SolarWinds Web Help Desk contain a deserialization of untrusted data vulnerability in AjaxProxy that could allow an attacker to run commands on t

View incident → Original disclosure Indexed 3 months, 3 weeks ago
high · tech · Mar 5, 2026

Hikvision Multiple Products

Hikvision Multiple Products Improper Authentication Vulnerability — Multiple Hikvision products contain an improper authentication vulnerability that could allow a malicious user to escalate privileges on the system and

high · tech · Mar 5, 2026

Rockwell Multiple Products

Rockwell Multiple Products Insufficient Protected Credentials Vulnerability — Multiple Rockwell products contain an insufficient protected credentials vulnerability. Studio 5000 Logix Designer software may allow a key to