Deloitte (Client Data)
240K audit client records from 12 countries exposed via compromised GlobalProtect VPN
Every confirmed data breach we've indexed across 5494+ incidents from healthcare, finance, technology, government, retail, and education. Sourced from Verizon DBIR, public disclosure feeds, and major security news outlets. Updated automatically.
240K audit client records from 12 countries exposed via compromised GlobalProtect VPN
670K taxpayer records exposed via compromised e-filing integration at provincial revenue agency
431,371 records exposed — Email addresses, Names, Phone numbers, Physical addresses
4.8M wiki pages from enterprise customers exposed via critical authentication bypass
Sensitive court transcripts compromised after Indian subcontractor breach — ignored warnings
RoundCube Webmail Deserialization of Untrusted Data Vulnerability — RoundCube Webmail contains a deserialization of untrusted data vulnerability that allows remote code execution by authenticated users because the _from
RoundCube Webmail Cross-site Scripting Vulnerability — RoundCube Webmail contains a cross-site scripting vulnerability via the animate tag in an SVG document.
640K customer billing records exposed via compromised metering data system
340K student records including visa and financial information exposed in targeted attack
3.2M patient health records from interprovincial data exchange compromised
Searchlight Cyber reports a 30% annual increase in ransomware victim numbers in 2025
Dell RecoverPoint for Virtual Machines (RP4VMs) Use of Hard-coded Credentials Vulnerability — Dell RecoverPoint for Virtual Machines (RP4VMs) contains an use of hard-coded credentials vulnerability that could allow an un
1.2M customer records compromised via third-party mortgage processing vendor
815K customer records stolen from third-party licensing partner — second breach in a year
510K cross-border dispute records exposed via compromised document review platform
GitLab Server-Side Request Forgery (SSRF) Vulnerability — GitLab contains a server-side request forgery (SSRF) vulnerability when requests to the internal network for webhooks are enabled.
967,178 records exposed — Dates of birth, Email addresses, Names, Phone numbers and 1 more
280K employee and defense contract records from engine division exposed in supply chain attack
Hudson Rock has warned OpenClaw users that infostealers are targeting their configuration files
TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability — TeamT5 ThreatSonar Anti-Ransomware contains an unrestricted upload of file with dangerous type vulnerability. ThreatSonar
581,877 records exposed — Device information, Email addresses, IP addresses, Names and 4 more
Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability — Microsoft Windows Video ActiveX Control contains a remote code execution vulnerability. An attacker could exploit the vulnerability by constr
540K defense contractor employee records and project data accessed over multi-year intrusion
Unit 42 researchers observed a low-skilled threat actor using an LLM to script a professional extortion strategy, complete with deadlines and pressure tactics