In November 2019, ZoneAlarm, an internet security software company owned by Check Point Technologies, experienced a data breach of their discussion forum. Hackers exploited a known vulnerability (CVE-2019-16759) in the outdated vBulletin forum softwa...
In March 2025, it was reported that Oracle Health, a subsidiary of Oracle Corporation, experienced a data breach. The breach, which was discovered by Oracle on February 20, 2025, involved unauthorized access to legacy Cerner data migration servers. Th...
In July 2024, the Pennsylvania State Education Association (PSEA) experienced a significant cybersecurity breach impacting over 500,000 individuals. The breach, attributed to the Rhysida ransomware gang, resulted in the theft of sensitive personal inf...
Astral Foods, a South African poultry producer, suffered a cyber security incident on March 16, 2025, impacting its poultry division. The incident caused downtime in processing and delayed customer deliveries, leading to revenue losses and increased e...
A data breach occurred at CrossCheck, Inc., a payment processing company, potentially affecting AutoNation customers' confidential information. On March 4, 2025, CrossCheck disclosed a data breach impacting AutoNation customer data to the Vermont Atto...
The Longleaf Network, LLC, an IT services provider, experienced a data breach in May 2024. The breach occurred over a ten-day period, from May 19th to May 29th, during which an unauthorized party gained access to the company's computer network. The br...
The Town of Orangeville, Canada experienced a cyberattack on February 27, 2025. The attack impacted multiple town departments, including Theatre Orangeville, the Orangeville Public Library, and services such as online building permits, recreation prog...
Bay Cove Human Services, Inc., a private non-profit organization based in Massachusetts, recently experienced a data breach. The organization, which provides a variety of services to individuals in Greater Boston and Southeastern Massachusetts, discov...
On October 18, 2024, OU Medicine, Inc. (“OU Health”) experienced unauthorized access to two email accounts. Following the incident, OU Health immediately launched an investigation. The investigation determined that an unauthorized third party gained a...
A data breach occurred at Three Rivers Hospital impacting patients who used CPS Solutions, a company supporting pharmacy operations. On December 4, 2024, unauthorized access to an employee's business email account was discovered. While the account was...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: