Indian Council of Medical Research
81M citizen health records from Aadhaar-linked database exposed via API vulnerability
The year's largest confirmed data breaches, ranked by records exposed. This list updates itself automatically as new disclosures go public.
81M citizen health records from Aadhaar-linked database exposed via API vulnerability
A flaw in EngageLab SDK exposed up to 50M Android users, including 30M crypto wallets, letting apps bypass security and access private data. Microsoft researchers found a critical flaw in EngageSDK that lets apps bypass
The data breach emerged this weekend when the ShinyHunters cybercriminal organization claimed to have stolen 45 million Salesforce records and threatened to leak the information by April 14 if a ransom was not paid.
The notorious ShinyHunters extortion group leaked over 42 million records allegedly stolen from Charter in April. The post Charter Communications Data Breach Could Impact Nearly 5 Million appeared first on SecurityWeek.
38M customer records including names, emails, phone numbers via third-party breach
James Whitmore reports: Data breach at Japanese telecoms operator KDDI may have exposed up to 14.22 million email addresses and passwords linked to ISP mail services, after attackers gained unauthorised access to a syste
Buranond Kijwatanachai reports: Private personal information of nearly 11 million people may have been leaked after a Kyushu power company lost a storage drive earlier this year. According to Asahi Shimbun, the storage d
Kyushu Electric Power Co., Inc. has disclosed a physical security incident that affects private data of more than 10 million customers. [...]
Customer service records, Email addresses, Names, Phone numbers and 1 more
9.4M passenger records re-exposed as 2018 breach data reappears on new dark web marketplace
The ShinyHunters cybercrime group claimed to have stolen 9 million records containing personal information from Medtronic. The post Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak appeared first on Securi
8.7M customer records exposed via compromised customer portal at largest Korean telco
Dates of birth, Email addresses, Genders, Geographic locations and 3 more
About 7 million customers of the genetics testing company had their data stolen by hackers starting in April 2023, and many had their information posted on the dark web.
6.5M client records from BPO division exposed via compromised McCamish Systems subsidiary
6.2M customer records including passport and bank account numbers leaked by ShinyHunters
6M records from 140K+ tenants allegedly accessed via authentication bypass in legacy systems
5.9M patient records exposed after legacy Cerner migration database left unsecured on Oracle Cloud
The ShinyHunters extortion group stole the personal information of 5.5 million individuals after breaching the systems of home security giant ADT earlier this month, according to data breach notification service Have I B
Most of the incidents above began with credentials and infrastructure that were exposed long before the breach. Run a free exposure assessment to see what an attacker can already find on your organization.
Check your exposure free →