Cyber attack exposed customer data via third-party vendor @ Pandora and Salesforce.com

In August 2025, Pandora, the global jewelry brand, confirmed it experienced a cyber security attack where customer data was accessed through a third-party platform, identified as Salesforce. The company notified customers via email, assuring them that...

Intruders accessed 6.4 million customer accounts' personal information @ Bouygues Telecom

In August 2025, Bouygues Telecom, the third-largest telecommunications company in France, confirmed a significant cyberattack resulting in a data breach that compromised the personal information of 6.4 million customers. The breach, detected on August...

Cyberattack on its IT infrastructure thwarted @ Pakistan Petroleum Limited

In August 2025, Pakistan Petroleum Limited (PPL) was targeted in a cyberattack involving ransomware, which disrupted the company's IT systems, particularly those related to oil and gas sales. The attackers, identifying themselves as "Blue Locker," dem...

Breach detected after threat actors gained access via third-party service provider @ Chanel and Salesforce.com

In August 2025, Chanel Inc. disclosed a data breach affecting a U.S. client care database hosted by a third-party service provider, later identified as Salesforce. The breach, detected on July 25, exposed limited personal details of individuals who co...

Personal data belonging to customers exposed @ Chanel

In August 2021, Chanel Korea, the South Korean branch of the French luxury brand Chanel, experienced a cybersecurity breach. Hackers targeted the company's customer database for its Fragrance and Beauty division, resulting in the unauthorized access a...

Afghans resettled in UK hit by second data breach @ The Jet Centre

In August 2025, a data breach at Inflite The Jet Centre Ltd, a sub-contractor to a Ministry of Defence (MoD) supplier, has potentially exposed the personal details of up to 3,700 individuals, including Afghans resettled in the UK, British troops, civi...

Threat actor reportedly stole employee information in cyberattack @ House of Commons of Canada

In August 2025, the Canadian House of Commons experienced a significant data breach after a cyberattack exploited a recent Microsoft vulnerability. The breach, which occurred on Friday, August 9th, was discovered and reported to employees on Monday, A...

City services disrupted and state of emergency declared after cyber attack @ City of St. Paul

In July 2025, the city of St. Paul, Minnesota, was hit by a significant cyberattack that led to the activation of the Minnesota National Guard and the declaration of a state of emergency in Ramsey County. The attack forced the shutdown of many interne...

Unauthorised third party accessed files from systems @ Kokomo 24/7 and Kokomo Solutions, Inc.

In December 2024, Kokomo Solutions, Inc., an Illinois-based education technology company also known as Kokomo 24/7, experienced a data breach that compromised the sensitive information of Los Angeles Unified School District (LAUSD) students. The breac...

Sensitive data of 485,000 individuals exfiltrated who participated in cancer screening program @ Clinical Diagnostics NL

In July 2025, Clinical Diagnostics, a Dutch laboratory, experienced a significant data breach where hackers stole data from approximately 485,000 participants in a cervical cancer screening program. The stolen data included names, addresses, dates of ...

Lead by example in cyber

Premier risk-driven analysis

All our analysis is overseen some of the leading members of the risk community and includes lessons learnt, controls environment and root cause analysis. Learn more...

High-quality structured cyber dataset

Key attributes of each case - such as threat actor, costs incurred, failed controls etc. - are captured through the Global Cyber Event Taxonomy Learn more...

Consulting & training services

Our case studies have provided us with unique insights into the challenges faced and strategies implemented by organisations countering cyber security threats. Learn more...