Live disclosure tracker · updated continuously

Technology & Software Data Breaches

SaaS platforms, cloud providers, developer tooling, and app-layer infrastructure are concentrated attack surfaces. One tech vendor breach can expose thousands of downstream customers. Below is every tech-sector breach LeakTrace has indexed.

98B+
Records Exposed
1333
Incidents
94+
Countries
+104%
Breach Velocity YoY
Browse by sector
All breaches Healthcare Finance Government Technology Retail Education Legal
Browse by year
2024 2025 2026 ★ Worst of 2026

Technology & Software Data Breaches (1333 indexed)

high · tech · Apr 13, 2026

Fortinet FortiClient EMS

Fortinet SQL Injection Vulnerability — Fortinet FortiClient EMS contains a SQL injection vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP req

View incident → Original disclosure Indexed 2 months, 3 weeks ago
high · tech · Apr 13, 2026

Microsoft Exchange Server

Microsoft Exchange Server Deserialization of Untrusted Data Vulnerability — Microsoft Exchange Server contains a deserialization of untrusted data that allows an authenticated attacker to achieve remote code execution.

View incident → Original disclosure Indexed 2 months, 3 weeks ago
medium · tech · Apr 13, 2026

GTA-maker Rockstar Games

Joe Tidy reports: Grand Theft Auto developer Rockstar Games has been targeted for a second time in three years by hackers. The data breach affecting the gaming giant was reported by cybersecurity news outlets on Saturday

View incident → Original disclosure Indexed 2 months, 3 weeks ago
medium · tech · Apr 10, 2026

CPUID

Hackers gained access to an API for the CPUID project and changed the download links on the official website to serve malicious executables for the popular CPU-Z and HWMonitor tools. [...]

View incident → Original disclosure Indexed 2 months, 3 weeks ago
high · tech · Apr 6, 2026

Fortinet FortiClient EMS

Fortinet FortiClient EMS Improper Access Control Vulnerability — Fortinet FortiClient EMS contains an improper access control vulnerability that may allow an unauthenticated attacker to execute unauthorized code or comma

View incident → Original disclosure Indexed 2 months, 4 weeks ago
high · tech · Apr 2, 2026

TrueConf Client

TrueConf Client Download of Code Without Integrity Check Vulnerability — TrueConf Client contains a download of code without integrity check vulnerability. An attacker who is able to influence the update delivery path ca

high · tech · Apr 1, 2026

Google Dawn

Google Dawn Use-After-Free Vulnerability — Google Dawn contains an use-after-free vulnerability that could allow a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML pag

high · tech · Mar 30, 2026

Citrix NetScaler

Citrix NetScaler Out-of-Bounds Read Vulnerability — Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability wh

critical · tech · Mar 27, 2026

Telus Digital

1 petabyte data theft affecting 28 companies via multi-month breach by ShinyHunters

View incident → Indexed 3 months, 1 week ago
critical · tech · Mar 27, 2026

TELUS Digital

1 petabyte stolen by ShinyHunters including call records, FBI data

View incident → Indexed 3 months, 1 week ago