Live disclosure tracker · updated continuously

Recent Data Breach Disclosures

Every confirmed data breach we've indexed across 5488+ incidents from healthcare, finance, technology, government, retail, and education. Sourced from Verizon DBIR, public disclosure feeds, and major security news outlets. Updated automatically.

98B+
Records Exposed
5488
Incidents
94+
Countries
+104%
Breach Velocity YoY
Browse by sector
All breaches Healthcare Finance Government Technology Retail Education Legal
Browse by year
2024 2025 2026 ★ Worst of 2026

Latest Disclosures

medium · tech · Jun 13, 2026

Arch Linux AUR Packages Hijacked

Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any machine that built them. The malware is a Rust binary built t

View incident → Original disclosure Indexed 2 weeks, 6 days ago
critical · other · Jun 12, 2026

South Korea

The penalty is the largest ever issued by the commission for a personal data breach, surpassing the record 134.8 billion won ($88.8 million) fine levied against SK Telecom earlier this year.

medium · other · Jun 11, 2026

Maine breach portal abused to

In an unusual misinformation campaign, fraudulent data breach disclosures were submitted to Maine's official breach portal and publicly posted before their legitimacy could be verified, prompting companies to deny the cl

View incident → Original disclosure Indexed 3 weeks, 1 day ago
medium · tech · Jun 11, 2026

ThreatsDay Bulletin

It's been one of those weeks. You expect the usual noise: recycled malware, sloppy attacks, another easy target getting hit. Instead, there's a supply chain attack kit in a public repo, a $5,000-a-month RAT that clones b

View incident → Original disclosure Indexed 3 weeks, 1 day ago
critical · retail · Jun 11, 2026

Coupang

​​The Personal Information Protection Commission (PIPC), South Korea's data protection regulator, has fined e-commerce giant Coupang a record 624.6 billion won (roughly $409 million) following a massive data breach affec

View incident → Original disclosure Indexed 3 weeks, 1 day ago
high · tech · Jun 11, 2026

Ivanti Sentry

Ivanti Sentry OS Command Injection Vulnerability — Ivanti Sentry (formerly known as MobileIron Sentry) contains an OS command injection vulnerability which could allow a remote unauthenticated user to achieve root-level

View incident → Original disclosure Indexed 3 weeks, 1 day ago
critical · government · Jun 10, 2026

67 million Thais exposed in

Pattaya Mail reports: A civil society group has petitioned a parliamentary committee to investigate a massive data breach after a government agency leaked the national ID numbers and healthcare details of approximately 6

View incident → Original disclosure Indexed 3 weeks, 2 days ago
critical · finance · Jun 10, 2026

Power company in Japan fears

Buranond Kijwatanachai reports: Private personal information of nearly 11 million people may have been leaked after a Kyushu power company lost a storage drive earlier this year. According to Asahi Shimbun, the storage d

View incident → Original disclosure Indexed 3 weeks, 2 days ago