In late 2024, Hyperice, Inc., a sports technology company specializing in fitness recovery products, disclosed a data breach that occurred in June 2024. The incident, which involved a network disruption on or around June 25, 2024, led to the unauthori...
In January 2025, the Peel District School Board (PDSB) issued a notice regarding a data security incident affecting PowerSchool, an application used by PDSB and numerous other school boards in North America for storing student and limited staff inform...
In January 2025, the Russian internet service provider (ISP) Nodex reported that its network infrastructure was "destroyed" in a cyberattack, which they suspect originated from Ukraine. The company, based in St. Petersburg, stated that the attack was ...
In December 2023, Medusind, Inc., a revenue cycle management and healthcare solutions provider, detected suspicious activity on its computer network, leading to the discovery of a significant data breach. An investigation revealed that unauthorized ac...
In June 2024, Excelsior Orthopaedics, a New York-based orthopaedic healthcare provider, detected unauthorized access to its computer network. An investigation revealed that a cybercriminal had stolen files containing the personally identifiable inform...
In January 2025, Mercer County State Bank reported a data breach affecting fewer than 100 customers at its Meadville-area office. The breach stemmed from unauthorized access to a single employee's email account. According to the bank's chief operating...
In January 2025, Slovakia's Geodesy, Cartography, and Cadastre Office (UGKK), responsible for managing land and property data, was targeted by a large-scale cyber-attack, described as the biggest in the country's history. The attack led to the shutdow...
In late December 2024, American Trust Retirement Services and American Trust Company ("American Trust") notified affected individuals and the Massachusetts Attorney General of a data breach stemming from unauthorized access to the company's email syst...
In January 2025, Georgetown Behavioral Health Institute (GBHI), a mental health and substance use treatment facility in Georgetown, Texas, reported a data breach to the Attorney General of Texas. The breach involved unauthorized access to confidential...
In early January 2025, City Bank PLC experienced a cybersecurity breach that resulted in the exposure and sale of sensitive client financial statements on underground hacking forums. The Bangladesh Cyber Security Intelligence (BCSI) confirmed the inci...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: