T-Mobile (Salt Typhoon)
Chinese Salt Typhoon hackers accessed customer wiretap data at carrier
Latest Disclosures
Massachusetts Registry of Motor Vehicles
1.1M records compromised
Switch
5,397 records exposed — Email addresses, Job applications, Names, Social media profiles
Qatar National Bank
560K customer records exposed in credential leak
Fortescue Metals
340K employee and contractor records stolen
Erste Group (Austria)
670K banking records stolen
BBVA
890K customer records stolen via compromised API
Pacific Premier Trust
500K retirement account holders — self-directed IRA records including alternative investments
Salt Typhoon / US telecom wiretap
Chinese hackers accessed US lawful intercept systems at major carriers
University of Edinburgh
340K student and staff records stolen
Vitalite Health (New Brunswick)
190K patient records exposed
Reliance Jio (India)
1.8M subscriber records compromised
Verizon (Salt Typhoon)
Chinese hackers accessed wiretap request data at Verizon
Heritage Valley Health System (Pennsylvania)
847K patient records compromised via unpatched Citrix NetScaler vulnerability
Volvo Cars
340K vehicle owner records exposed in contractor breach
Fidelity Investments (Oct)
28K additional customer records exposed in second incident
Fiverr Marketplace
900K seller records exposed — portfolio data, earnings history, and client communications
American Water Works
Largest US water utility disconnected systems after cyberattack
Figma
320K design file metadata and account data compromised
BudTrader
2,721,185 records exposed — Email addresses, Passwords, Usernames
Rheinmetall (Germany)
340K defense records stolen
Goodmans LLP (Canada)
150K client records exposed in phishing
Scattered Spider / Star Health India
31M customer records and 5.8M insurance claims leaked via Telegram bot
Synchrony Financial
890K credit card records exposed