Government Data Breaches — Federal, State & Municipal Disclosures

Government Data Breaches (582 indexed)

critical · government · Nov 2, 2024

Illinois Secretary of State

880K voter registration records exposed via compromised election management system

View incident → Original disclosure Indexed 1 year, 6 months ago

high · government · Oct 20, 2024

Maricopa County (Arizona) Elections

320K voter records and election worker PII exposed via misconfigured file server

View incident → Original disclosure Indexed 1 year, 6 months ago

high · government · Oct 12, 2024

Los Angeles County Assessor

2.2M property records exposed via vulnerable GIS mapping application — owner data leaked

View incident → Original disclosure Indexed 1 year, 6 months ago

critical · government · Oct 5, 2024

Massachusetts Registry of Motor Vehicles

1.1M records compromised

View incident → Original disclosure Indexed 1 year, 6 months ago

critical · government · Oct 5, 2024

Salt Typhoon / US telecom wiretap

Chinese hackers accessed US lawful intercept systems at major carriers

View incident → Original disclosure Indexed 1 year, 6 months ago

high · government · Oct 1, 2024

Rheinmetall (Germany)

340K defense records stolen

View incident → Original disclosure Indexed 1 year, 7 months ago

critical · government · Sep 15, 2024

Swedish Social Insurance Agency (Forsakringskassan)

2.2M citizen records exposed via misconfigured benefits portal — SSN equivalents leaked

View incident → Original disclosure Indexed 1 year, 7 months ago

high · government · Sep 15, 2024

Virginia Department of Elections

65K voter registration records with SSN fragments exposed via misconfigured portal

View incident → Original disclosure Indexed 1 year, 7 months ago

high · government · Sep 9, 2024

City of Independence MO

Ransomware encrypted city government systems

View incident → Original disclosure Indexed 1 year, 7 months ago

high · government · Sep 8, 2024

Virginia State Corporation Commission

560K business entity records exposed via SQL injection on public filing search

View incident → Original disclosure Indexed 1 year, 7 months ago

medium · government · Sep 5, 2024

Welsh Government Digital Services

180K citizen records stolen in targeted attack

View incident → Original disclosure Indexed 1 year, 7 months ago

critical · government · Sep 3, 2024

Michigan Department of Health

2.6M Medicaid patient records exposed via compromised eligibility verification system

View incident → Original disclosure Indexed 1 year, 7 months ago

medium · government · Sep 1, 2024

Ontario Lottery and Gaming (Canada)

Employee records accessed in targeted cyberattack on provincial gaming corporation

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Sep 1, 2024

Seattle-Tacoma International Airport

Rhysida ransomware disrupted airport systems for three days — passenger data accessed

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Sep 1, 2024

City of Montreal (2024)

420K resident records compromised

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Aug 22, 2024

City of Fort Worth (Texas)

500K resident records exposed via misconfigured public records portal — property data leaked

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Aug 18, 2024

Georgia Department of Labor

450K unemployment claimant records exposed via compromised benefits portal

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Aug 14, 2024

City of Flint MI

Ransomware disrupted city services and billing

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Aug 12, 2024

Oklahoma Department of Education

620K student and educator records exposed via compromised certification tracking system

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Aug 12, 2024

Missouri Department of Social Services

740K Medicaid recipients notified after IBM MOVEit vulnerability exposed personal data

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Aug 5, 2024

US Social Security Administration

295K beneficiary records accessed via compromised mySSA portal accounts

View incident → Original disclosure Indexed 1 year, 8 months ago

high · government · Aug 1, 2024

Oregon DMV

780K driver license records exposed

View incident → Original disclosure Indexed 1 year, 9 months ago

critical · government · Jul 18, 2024

City of Columbus, Ohio

500K resident records stolen in Rhysida ransomware attack — SSNs and bank details exposed

View incident → Original disclosure Indexed 1 year, 9 months ago

high · government · Jul 18, 2024

City of Columbus OH

500K resident records stolen in Rhysida ransomware

View incident → Original disclosure Indexed 1 year, 9 months ago