In February 2023, Munster Technological University (MTU) in Ireland experienced a significant cybersecurity incident, resulting in the closure of its Cork campuses for several days. The incident was identified as a ransomware attack, with a group call...
In August 2025, the Office of the Registrar-General (ORG), formerly the Registrar General Department, in Jamaica was targeted by a cyber attack. The ORG is the government agency responsible for maintaining official records of births, marriages, stillb...
In August 2025, the Russian investment and analytics platform, Investment Projects, confirmed it was the victim of a cyberattack perpetrated by a pro-Ukrainian hacker group known as Cyber Anarchy Squad. The platform's website was taken offline as a re...
In August 2025, a potential cyber security event involving PayPal surfaced when a dataset allegedly containing 15.8 million user credentials was posted on a data leak forum. The hackers claimed the data, which included login emails, plaintext password...
In August 2025, the South Korean ticketing platform and bookseller, Yes24, experienced a cyberattack that forced the platform to shut down. This incident occurred just two months after the company suffered a major ransomware attack in June. Yes24 conf...
In August 2025, the Pennsylvania Office of Attorney General (OAG) experienced a significant cyberattack that disrupted its operations, including taking down its website, email, and phone systems. Attorney General Dave Sunday confirmed that the inciden...
GameStop has reached a $4.5 million settlement in a class action lawsuit alleging the company violated the Video Privacy Protection Act (VPPA) by sharing customer data with Facebook without permission. The lawsuit claims that GameStop collected data f...
In December 2022, Heartland Alliance, a Chicago-based anti-poverty organization, disclosed a data security incident stemming from unauthorized network access that began on January 26, 2022. The breach, which affected 46,694 individuals, involved the c...
In August 2025, Baptist Health South Florida reported a data breach affecting patients who received care within their system. The breach occurred through Oracle Health, an electronic health record vendor formerly known as Cerner, impacting the persona...
In August 2025, Woodlawn Hospital publicly announced a network data security event that may have compromised the information of certain individuals. The hospital detected suspicious activity on its computer network on June 30, 2025. Upon discovering t...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: