In August of 2025, TransUnion, a major credit bureau, disclosed a significant data breach that impacted over 4.4 million of its customers in the United States. The breach exposed a substantial amount of personal information, including Social Security ...
In December 2024, Forward Bank reached a settlement agreement of $1.185 million to resolve a class action lawsuit stemming from a data breach that occurred around September 6, 2023. The breach, which was publicly announced in November 2023, compromise...
In December 2024, DAP Health, along with its subsidiary Borrego Health, reported a data breach to the California Attorney General stemming from unauthorized access to its email system. The breach, detected on July 22, 2024, involved suspicious activit...
In January 2025, a cyber unit from the Main Intelligence Directorate (HUR) of Ukraine's Ministry of Defense launched a distributed denial-of-service (DDoS) attack against the digital infrastructure of Russian energy giants Gazprom and Gazpromneft. Thi...
On July 14, 2025, Novabev Group, the parent company of Beluga vodka, was targeted by a sophisticated ransomware attack that temporarily disrupted its IT infrastructure and operations, including those of its WineLab subsidiary. The company characterize...
In July 2025, Nottingham Trent University (NTU) experienced a cyber security incident that impacted a small number of its servers. As a precautionary measure, the university reset the passwords for all staff and student accounts. NTU reported that uni...
In July 2025, Bridges Experience Inc. ("Bridges EXP") disclosed a data breach that compromised the sensitive personal data of individuals, raising concerns about the security of personal and protected health information entrusted to the company. Bridg...
On June 13, 2025, Myrtue Medical Center detected suspicious activity within its computer systems, indicating a significant data breach. The hospital immediately took action to secure its systems and initiated an investigation with the assistance of a ...
On May 28, Estes Forwarding Worldwide (EFW), a subsidiary of Estes Express Lines, experienced a cyberattack. The company has notified its employees and customers of the event. According to CEO Scott Fisher, there was no significant disruption to the b...
In June 2025, a class action lawsuit was filed against Landmark Properties Inc. in Georgia federal court, alleging the real estate firm failed to adequately protect the sensitive information of its residents and employees, leading to a data breach in ...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: