Live disclosure tracker · updated continuously

Technology & Software Data Breaches

SaaS platforms, cloud providers, developer tooling, and app-layer infrastructure are concentrated attack surfaces. One tech vendor breach can expose thousands of downstream customers. Below is every tech-sector breach LeakTrace has indexed.

98B+
Records Exposed
1333
Incidents
94+
Countries
+104%
Breach Velocity YoY
Browse by sector
All breaches Healthcare Finance Government Technology Retail Education Legal
Browse by year
2024 2025 2026 ★ Worst of 2026

Technology & Software Data Breaches (1333 indexed)

high · tech · Apr 22, 2026

Microsoft Defender

Microsoft Defender Insufficient Granularity of Access Control Vulnerability — Microsoft Defender contains an insufficient granularity of access control vulnerability that could allow an authorized attacker to escalate pr

View incident → Original disclosure Indexed 2 months, 1 week ago
medium · tech · Apr 22, 2026

BlueLeaks 2.0

Overview and Background This is the first of what will likely be several updates to this site’s exclusive reporting on the “BlueLeaks 2.0” incident that exposed anonymous and sensitive tips by and about

View incident → Original disclosure Indexed 2 months, 1 week ago
high · tech · Apr 20, 2026

Cisco Catalyst SD-WAN Manager

Cisco Catalyst SD-WAN Manager Storing Passwords in a Recoverable Format Vulnerability — Cisco Catalyst SD-WAN Manager contains a storing passwords in a recoverable format vulnerability that allows an authenticated, local

View incident → Original disclosure Indexed 2 months, 2 weeks ago
medium · tech · Apr 20, 2026

France’s ANTS ID System website

A cyberattack hit France’s ANTS website, possibly exposing personal data from users applying for IDs, passports, and driver’s licenses. A cyberattack targeted France’s ANTS platform, which handles applications for passpo

View incident → Original disclosure Indexed 2 months, 2 weeks ago
high · tech · Apr 20, 2026

Cisco Catalyst SD-WAN Manger

Cisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability — Cisco Catalyst SD-WAN Manager contains an incorrect use of privileged APIs vulnerability due to improper file handling on the API interface o

View incident → Original disclosure Indexed 2 months, 2 weeks ago
high · tech · Apr 20, 2026

Cisco Catalyst SD-WAN Manager

Cisco Catalyst SD-WAN Manager Exposure of Sensitive Information to an Unauthorized Actor Vulnerability — Cisco Catalyst SD-WAN Manager contains an exposure of sensitive information to an unauthorized actor vulnerability

View incident → Original disclosure Indexed 2 months, 2 weeks ago
high · tech · Apr 20, 2026

JetBrains TeamCity

JetBrains TeamCity Relative Path Traversal Vulnerability — JetBrains TeamCity contains a relative path traversal vulnerability that could allow limited admin actions to be performed.

View incident → Original disclosure Indexed 2 months, 2 weeks ago
high · tech · Apr 20, 2026

PaperCut NG/MF

PaperCut NG/MF Improper Authentication Vulnerability — PaperCut NG/MF contains an improper authentication vulnerability that could allow remote attackers to bypass authentication on affected installations via the Securit

View incident → Original disclosure Indexed 2 months, 2 weeks ago
high · tech · Apr 20, 2026

Kentico Kentico Xperience

Kentico Xperience Path Traversal Vulnerability — Kentico Xperience contains a path traversal vulnerability that could allow an authenticated user's Staging Sync Server to upload arbitrary data to path relative locations.

View incident → Original disclosure Indexed 2 months, 2 weeks ago
medium · tech · Apr 19, 2026

Vercel

Cloud development platform Vercel has disclosed a security incident after threat actors claimed to have breached its systems and are attempting to sell stolen data. [...]

View incident → Original disclosure Indexed 2 months, 2 weeks ago
high · tech · Apr 16, 2026

Apache ActiveMQ

Apache ActiveMQ Improper Input Validation Vulnerability — Apache ActiveMQ contains an improper input validation vulnerability that allows for code injection.

View incident → Original disclosure Indexed 2 months, 2 weeks ago
high · tech · Apr 14, 2026

Microsoft Office

Microsoft Office Remote Code Execution — Microsoft Office Excel contains a remote code execution vulnerability that could allow an attacker to take complete control of an affected system if a user opens a specially craft

View incident → Original disclosure Indexed 2 months, 2 weeks ago
high · tech · Apr 14, 2026

Microsoft SharePoint Server

Microsoft SharePoint Server Improper Input Validation Vulnerability — Microsoft SharePoint Server contains an improper input validation vulnerability that allows an unauthorized attacker to perform spoofing over a networ

View incident → Original disclosure Indexed 2 months, 2 weeks ago
medium · tech · Apr 13, 2026

GTA-maker Rockstar Games

Joe Tidy reports: Grand Theft Auto developer Rockstar Games has been targeted for a second time in three years by hackers. The data breach affecting the gaming giant was reported by cybersecurity news outlets on Saturday

View incident → Original disclosure Indexed 2 months, 3 weeks ago