Live disclosure tracker · updated continuously

Recent Data Breach Disclosures

Every confirmed data breach we've indexed across 5493+ incidents from healthcare, finance, technology, government, retail, and education. Sourced from Verizon DBIR, public disclosure feeds, and major security news outlets. Updated automatically.

98B+
Records Exposed
5493
Incidents
94+
Countries
+104%
Breach Velocity YoY
Browse by sector
All breaches Healthcare Finance Government Technology Retail Education Legal
Browse by year
2024 2025 2026 ★ Worst of 2026

Latest Disclosures

high · tech · Apr 16, 2026

Apache ActiveMQ

Apache ActiveMQ Improper Input Validation Vulnerability — Apache ActiveMQ contains an improper input validation vulnerability that allows for code injection.

View incident → Original disclosure Indexed 2 months, 2 weeks ago
medium · other · Apr 16, 2026

Sweden

Sweden says a pro-Russian group attacked a heating plant in 2025. The failed cyberattack highlights growing threats to Europe’s energy infrastructure. Sweden has blamed a pro-Russian group linked to Russian intelligence

View incident → Original disclosure Indexed 2 months, 2 weeks ago
medium · government · Apr 16, 2026

Defendant Sentenced To Prison For

Not everyone complies with the conditions of pre-sentencing release. After pleading guilty to a credential stuffing attack, this defendant reopened his online criminal shop and advertised what he was doing. Unsurprisingl

View incident → Original disclosure Indexed 2 months, 2 weeks ago
critical · government · Apr 16, 2026

Double trouble

Kenna Hughes-Castleberry reports: Nine Mexican government agencies were hacked in an artificial intelligence (AI)-driven cyber campaign between December 2025 and mid-February 2026 in what researchers have said should &#8

View incident → Original disclosure Indexed 2 months, 2 weeks ago
medium · other · Apr 15, 2026

100 Chrome Extensions Steal User

Published through five accounts, the extensions appear part of a coordinated campaign based on shared C&C infrastructure. The post 100 Chrome Extensions Steal User Data, Create Backdoor appeared first on SecurityWee

View incident → Original disclosure Indexed 2 months, 2 weeks ago
critical · other · Apr 15, 2026

Educational company McGraw Hill

The data breach emerged this weekend when the ShinyHunters cybercriminal organization claimed to have stolen 45 million Salesforce records and threatened to leak the information by April 14 if a ransom was not paid.

View incident → Original disclosure Indexed 2 months, 2 weeks ago
critical · finance · Apr 15, 2026

The deepfake dilemma

Deepfake technology has crossed a critical threshold. What was impossible 10 years ago and required specific expertise only a few years ago is now cheap and accessible. Worse, it’s now good enough to fool a wide range of

View incident → Original disclosure Indexed 2 months, 2 weeks ago
medium · government · Apr 15, 2026

Sweden Blames Pro-Russian Group for

In what was Sweden’s first public mention of the attack, the country’s minister for civil defense said it targeted a heating plant in western Sweden. The post Sweden Blames Pro-Russian Group for Cyberattack Last Year on

View incident → Original disclosure Indexed 2 months, 2 weeks ago
medium · finance · Apr 14, 2026

The AI inflection point: What

AI is no longer a speculative topic for security leaders. It has moved from experimentation to implementation, and increasingly, to measurable production impact. Over the past year, my conversations with CISOs have sh

View incident → Original disclosure Indexed 2 months, 3 weeks ago
high · tech · Apr 14, 2026

Microsoft SharePoint Server

Microsoft SharePoint Server Improper Input Validation Vulnerability — Microsoft SharePoint Server contains an improper input validation vulnerability that allows an unauthorized attacker to perform spoofing over a networ

View incident → Original disclosure Indexed 2 months, 3 weeks ago
high · tech · Apr 14, 2026

Microsoft Office

Microsoft Office Remote Code Execution — Microsoft Office Excel contains a remote code execution vulnerability that could allow an attacker to take complete control of an affected system if a user opens a specially craft

View incident → Original disclosure Indexed 2 months, 3 weeks ago
medium · other · Apr 14, 2026

ShinyHunters claim the hack of

Leak of 8.1GB data tied to Rockstar Games includes anti-cheat code, game data, analytics and more, reportedly exposed by ShinyHunters. An 8.1GB data leak reportedly linked to Rockstar Games has surfaced, with files share

View incident → Original disclosure Indexed 2 months, 3 weeks ago
medium · education · Apr 14, 2026

McGraw-Hill

Education company McGraw-Hill has confirmed in a statement to BleepingComputer that hackers exploited a Salesforce misconfiguration and accessed its internal data. [...]

View incident → Original disclosure Indexed 2 months, 3 weeks ago