Live disclosure tracker · updated continuously

Government Data Breaches

Federal agencies, state governments, municipalities, and public-sector contractors have become priority targets for nation-state actors and ransomware groups. Below is every government-sector breach LeakTrace has indexed.

98B+
Records Exposed
655
Incidents
94+
Countries
+104%
Breach Velocity YoY
Browse by sector
All breaches Healthcare Finance Government Technology Retail Education Legal
Browse by year
2024 2025 2026 ★ Worst of 2026

Government Data Breaches (655 indexed)

medium · government · Jul 1, 2026

DHS

The Department of Homeland Security is investigating a cyberattack that compromised the Homeland Security Information Network (HSIN), a sensitive information-sharing platform used by federal, state, local, and private-se

View incident → Original disclosure Indexed 2 days, 2 hours ago
critical · government · Jun 29, 2026

SSU and FBI Uncover Russian

Ukraine’s SSU and the FBI Just Confirmed Russian Intelligence Has Been Systematically Hacking Messenger Accounts for Years. The Security Service of Ukraine (SSU), working jointly with the FBI, has formally exposed

View incident → Original disclosure Indexed 4 days, 2 hours ago
medium · government · Jun 29, 2026

MOVEit Breach Defendants Lose 2nd

Christopher Brown reports: Bellwether defendants in multi-district litigation over a massive data breach of Progress Software’s MOVEit file-transfer application failed to convince a federal court to toss negligence claim

View incident → Original disclosure Indexed 4 days, 2 hours ago
critical · government · Jun 26, 2026

Proposed US law would make

US lawmakers on Thursday introduced a bill that would require developers of advanced AI models to report major safety and security incidents to the Commerce Department, establishing a federal oversight framework for high

medium · government · Jun 26, 2026

Mythos is a signal, not

When a new AI capability starts making headlines, I see the same pattern play out in boardrooms and executive staff meetings. The technology is introduced as a looming breakthrough for attackers. The conversation quickly

critical · government · Jun 25, 2026

GRC is broken. FedRAMP 20x

We are auditing a curated version of history. I’ve worked in security long enough now to know something most of us don’t really say out loud. A lot of compliance is theatre. Not all of it, and not all auditors or fram

View incident → Original disclosure Indexed 1 week, 1 day ago
medium · government · Jun 21, 2026

Brazil’s Civil Defense suffers a

This is the kind of cyberattack that can put lives at risk and makes me want to wring some necks if I wasn’t so old and feeble. Demócrata reports: Brazil’s Civil Defense has reported this Saturday that its of

View incident → Original disclosure Indexed 1 week, 5 days ago
medium · government · Jun 20, 2026

CISA Warns of Active Exploitation

FortiBleed exposed credentials for 74,000 Fortinet devices, with attackers actively exploiting the leak to target systems worldwide. On June 18, CISA issued an emergency alert after reports surfaced that credentials for

View incident → Original disclosure Indexed 1 week, 6 days ago
medium · government · Jun 19, 2026

CISA

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) urged Fortinet customers to secure their devices after nearly 74,000 firewall and VPN credentials were exposed in a data leak dubbed "FortiBleed." [...]

critical · government · Jun 18, 2026

Telegram

India's government has told the Delhi High Court that Telegram was warned about two weeks before it was blocked, and that the platform admitted it could not proactively detect the channels selling leaked exam papers. Tel

View incident → Original disclosure Indexed 2 weeks, 1 day ago
critical · government · Jun 15, 2026

Cyberattack on Russian tech firm

According to customer complaints, the disruption affected a range of services used by businesses, leading to interruptions in cash register operations, difficulties selling certain regulated goods, loss of access to cust

View incident → Original disclosure Indexed 2 weeks, 4 days ago
critical · government · Jun 10, 2026

CISA tells agencies to patch

Security teams’ patching practices have come under intense pressure over the past year, as active exploitation is up, time-to-exploit windows are accelerating, and vulnerabilities have become attackers’ top initial acces

View incident → Original disclosure Indexed 3 weeks, 2 days ago
critical · government · Jun 10, 2026

67 million Thais exposed in

Pattaya Mail reports: A civil society group has petitioned a parliamentary committee to investigate a massive data breach after a government agency leaked the national ID numbers and healthcare details of approximately 6

View incident → Original disclosure Indexed 3 weeks, 2 days ago