In February 2024, the City of Hamilton experienced a significant cybersecurity incident that severely impacted its phone and email systems. This incident, later confirmed to be a ransomware attack, crippled numerous public services, leading to widespr...
A Colorado-based fertility clinic, Conceptions Reproductive Associates Inc., is at the center of a proposed class action lawsuit for an alleged breach of sensitive personal information belonging to approximately 80,000 patients. The lawsuit stems from...
Nikki-Universal Co. Ltd., a major chemical manufacturer, experienced a ransomware attack on December 22, 2024. The ransomware group, Hunters International, encrypted data on some of the company's servers and claim to have stolen 761.8 GB of data acros...
In April 2025, the Illinois Department of Human Services (IDHS) fell victim to a phishing campaign that exposed the personal data of over one million individuals. The attackers, using compromised employee accounts, gained access to files containing So...
Crown Mortgage Company, a lending company based in Oak Lawn, Illinois, experienced a data breach that resulted in the exposure of sensitive customer information. On December 20, 2024, the company discovered unauthorized access to its systems, potentia...
In January 2025, the educational publisher Scholastic suffered a data breach impacting an estimated 8 million customers. A hacker, using the alias "Parasocial," infiltrated Scholastic's network, likely gaining access through an employee's compromised...
In July 2024, Hanwa Qcells, a German solar energy provider, experienced a cyberattack on their IT systems. The attackers, a cybercriminal group known as "Abyss", were able to access and steal customer and business partner data, potentially including n...
On December 26, 2024, the City of Winston-Salem, North Carolina experienced a cyber security event that caused a significant outage of city systems. City officials took numerous systems offline upon discovery of the event and are working with the FBI,...
## Summary of Cyber Security Event: Deepfake Business Email Compromise (BEC) Scam A sophisticated cybercrime incident has surfaced involving the use of deepfake technology in a Business Email Compromise (BEC) scam targeting a multinational firm. The ...
In a recent security breach, the California-based cannabis company Stiiizy had customer data compromised through a third-party vendor responsible for point-of-sale processing services. The breach occurred between October 10 and November 10, 2024, and ...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: