Unauthorised access to consumers’ sensitive information @ Hyper Ice, Inc.

In late 2024, Hyperice, Inc., a sports technology company specializing in fitness recovery products, disclosed a data breach that occurred in June 2024. The incident, which involved a network disruption on or around June 25, 2024, led to the unauthori...

Third party experienced data breach @ Peel District School Board

In January 2025, the Peel District School Board (PDSB) issued a notice regarding a data security incident affecting PowerSchool, an application used by PDSB and numerous other school boards in North America for storing student and limited staff inform...

Network ‘destroyed’ following attack @ Nodex

In January 2025, the Russian internet service provider (ISP) Nodex reported that its network infrastructure was "destroyed" in a cyberattack, which they suspect originated from Ukraine. The company, based in St. Petersburg, stated that the attack was ...

360,000 individuals' personal and other types of information compromised @ Medusind

In December 2023, Medusind, Inc., a revenue cycle management and healthcare solutions provider, detected suspicious activity on its computer network, leading to the discovery of a significant data breach. An investigation revealed that unauthorized ac...

357,000 individual's personal and health information compromised @ Excelsior Orthopaedics

In June 2024, Excelsior Orthopaedics, a New York-based orthopaedic healthcare provider, detected unauthorized access to its computer network. An investigation revealed that a cybercriminal had stolen files containing the personally identifiable inform...

Unauthorised access to one employee’s email account resulted in data breach @ Mercer County State Bank

In January 2025, Mercer County State Bank reported a data breach affecting fewer than 100 customers at its Meadville-area office. The breach stemmed from unauthorized access to a single employee's email account. According to the bank's chief operating...

Departments temporarily closed as precautionary measure after cyber attack @ Geodesy, Cartography, and Cadastre Office

In January 2025, Slovakia's Geodesy, Cartography, and Cadastre Office (UGKK), responsible for managing land and property data, was targeted by a large-scale cyber-attack, described as the biggest in the country's history. The attack led to the shutdow...

Unauthorised access to company’s employee’s system @ American Trust Company and AT Retirement Services, LLC

In late December 2024, American Trust Retirement Services and American Trust Company ("American Trust") notified affected individuals and the Massachusetts Attorney General of a data breach stemming from unauthorized access to the company's email syst...

Unauthorised access to consumers’ sensitive information @ Georgetown Behavioral Health Institute

In January 2025, Georgetown Behavioral Health Institute (GBHI), a mental health and substance use treatment facility in Georgetown, Texas, reported a data breach to the Attorney General of Texas. The breach involved unauthorized access to confidential...

Sensitive client financial statements exposed and sold on underground hacking forums @ City Bank

In early January 2025, City Bank PLC experienced a cybersecurity breach that resulted in the exposure and sale of sensitive client financial statements on underground hacking forums. The Bangladesh Cyber Security Intelligence (BCSI) confirmed the inci...

Lead by example in cyber

Premier risk-driven analysis

All our analysis is overseen some of the leading members of the risk community and includes lessons learnt, controls environment and root cause analysis. Learn more...

High-quality structured cyber dataset

Key attributes of each case - such as threat actor, costs incurred, failed controls etc. - are captured through the Global Cyber Event Taxonomy Learn more...

Consulting & training services

Our case studies have provided us with unique insights into the challenges faced and strategies implemented by organisations countering cyber security threats. Learn more...