Zoom Communications (2026)
780K enterprise meeting recordings and transcripts accessed via compromised admin portal
Latest Disclosures
Province of British Columbia
1.4M citizen records from provincial health and education systems compromised
Odido (Dutch Telecom)
6.2M customer records including passport and bank account numbers leaked by ShinyHunters
Brookfield Asset Management
480K investor records from Canadian asset manager exposed via compromised fund admin portal
BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA)
BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) OS Command Injection Vulnerability — BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA)contain an OS command injection vulnerability. Suc
Lockheed Martin (Subcontractor)
Defense subcontractor breach exposes classified program metadata and personnel clearance records
Fake AI Assistants in Google
Hundreds of thousands of users have downloaded malicious AI extensions masquerading as ChatGPT, Gemini, Grok and others, warn cybersecurity researchers at LayerX
World Leaks Ransomware Group Adds
Accenture Cybersecurity warns over difficult to detect, “sophisticated toolset” being deployed as part of extortion campaigns
State of Ohio Unemployment System
890K unemployment claimant records exposed via compromised benefits administration portal
Delta Air Lines
870K SkyMiles member records and passport data exposed via compromised CrowdStrike integration
Lyft Inc.
290K driver and rider records exposed via compromised third-party background check vendor
Cerner / Oracle Health
5.9M patient records exposed after legacy Cerner migration database left unsecured on Oracle Cloud
SolarWinds Web Help Desk
SolarWinds Web Help Desk Security Control Bypass Vulnerability — SolarWinds Web Help Desk contains a security control bypass vulnerability that could allow an unauthenticated attacker to gain access to certain restricted
Apple Multiple Products
Apple Multiple Buffer Overflow Vulnerability — Apple iOS, macOS, tvOS, watchOS, and visionOS contain an improper restriction of operations within the bounds of a memory buffer vulnerability that could allow an attacker w
Microsoft Configuration Manager
Microsoft Configuration Manager SQL Injection Vulnerability — Microsoft Configuration Manager contains an SQL injection vulnerability. An unauthenticated attacker could exploit this vulnerability by sending specially cra
Notepad++ Notepad++
Notepad++ Download of Code Without Integrity Check Vulnerability — Notepad++ when using the WinGUp updater, contains a download of code without integrity check vulnerability that could allow an attacker to intercept or r
Walgreens Boots Alliance
2.1M pharmacy patient records exposed via compromised health services vendor
North Korean Hackers Use Deepfake
Campaign combines stolen Telegram accounts, fake Zoom calls and ClickFix attacks to deploy infostealer malware
Mastercard (EU Processing)
680K European cardholder records exposed via compromised transaction processing node
Oman Ministry of Health
280K patient records exposed
Jean Coutu (Pharmacy)
450K patient records exposed in POS breach
Gowling WLG
210K client records compromised via vendor
KU Leuven (Belgium)
190K student records exposed
SaskPower (Canada)
340K customer utility records exposed via compromised billing system vendor