Infutor (US Data Broker)
676.8M US citizens' personal records including SSNs, names, addresses, birth dates
View incident → Indexed 1 month ago
Latest Disclosures
TELUS Digital
1 petabyte stolen by ShinyHunters including call records, FBI data
View incident → Indexed 1 month ago
Sears Home Services
3.7M chat logs and 1.4M audio files exposed containing PII from AI chatbot
View incident → Indexed 1 month ago
Children's Council of San Francisco
12.7K victims including names, SSNs from childcare organization
View incident → Indexed 1 month ago
Starbucks
889 employee accounts compromised exposing SSNs, financial data via Partner Central
View incident → Indexed 1 month ago
Ericsson Inc (US)
15K+ employee and customer records including SSNs via service provider hack
View incident → Indexed 1 month ago
Telus Digital (Canada BPO)
1 petabyte data theft affecting 28 companies, FBI checks, financial data
View incident → Indexed 1 month ago
TriZetto Provider Solutions
3.4M healthcare records including SSNs, DOB, health insurance data exposed
View incident → Indexed 1 month ago
Telus Digital
1 petabyte data theft affecting 28 companies via multi-month breach by ShinyHunters
View incident → Indexed 1 month ago
Ericsson Inc. (US)
15K+ employees/customers data including SSNs, driver's licenses
View incident → Indexed 1 month ago
European Commission
AWS cloud breach exposes hundreds of GB including databases from Europa.eu platform
View incident → Indexed 1 month ago
Scuf Gaming
128,683 records exposed — Display names, Email addresses, IP addresses, Passwords and 1 more
Aquasecurity Trivy
Aquasecurity Trivy Embedded Malicious Code Vulnerability — Aquasecurity Trivy contains an embedded malicious code vulnerability that could allow an attacker to gain access to everything in the CI/CD environment, includin
Sound Radix
292,993 records exposed — Email addresses, Names, Passwords
Northrop Grumman (Vendor)
Defense program documents and 180K employee records exposed via subcontractor email compromise
Langflow Langflow
Langflow Code Injection Vulnerability — Langflow contains a code injection vulnerability that could allow building public flows without requiring authentication.
CGI Group (Canada)
420K government contract records from Canadian IT services firm exposed in supply chain attack
‘CanisterWorm’ Springs Wiper Attack Targeting
A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wipes data on infected systems that use Ir
Trivy Supply Chain Attack Expands
New Trivy Docker images 0.69.5 and 0.69.6 compromised with TeamPCP infostealer, impacting CI/CD scans
RuneScape Boards
222,762 records exposed — Email addresses, IP addresses, Passwords, Usernames
Lululemon Athletica
340K customer records from loyalty program and online orders exposed via web app vulnerability
UK Ministry of Defence
272K armed forces personnel payroll records exposed via compromised third-party payroll system
SAP SE (Cloud)
1.6M enterprise customer records from S/4HANA Cloud exposed via authentication bypass
Province of Nova Scotia
580K citizen records from health and education systems exposed via MOVEit successor exploit