Personal details of 4,500 forum subscribers were obtained by hackers @ Check Point Technologies and ZoneAlarm

In November 2019, ZoneAlarm, an internet security software company owned by Check Point Technologies, experienced a data breach of their discussion forum. Hackers exploited a known vulnerability (CVE-2019-16759) in the outdated vBulletin forum softwa...

Theft of patients' health information from legacy server @ Oracle Corporation and Oracle Health

In March 2025, it was reported that Oracle Health, a subsidiary of Oracle Corporation, experienced a data breach. The breach, which was discovered by Oracle on February 20, 2025, involved unauthorized access to legacy Cerner data migration servers. Th...

Data breach of 517000 current and former members' personal information @ Pennsylvania State Education Association

In July 2024, the Pennsylvania State Education Association (PSEA) experienced a significant cybersecurity breach impacting over 500,000 individuals. The breach, attributed to the Rhysida ransomware gang, resulted in the theft of sensitive personal inf...

Cyber attack caused downtime and delayed processing and deliveries @ Astral Foods

Astral Foods, a South African poultry producer, suffered a cyber security incident on March 16, 2025, impacting its poultry division. The incident caused downtime in processing and delayed customer deliveries, leading to revenue losses and increased e...

Data security incident impacted confidential information belonging to AutoNation customers @ CrossCheck, Inc.

A data breach occurred at CrossCheck, Inc., a payment processing company, potentially affecting AutoNation customers' confidential information. On March 4, 2025, CrossCheck disclosed a data breach impacting AutoNation customer data to the Vermont Atto...

Unauthorised access to computer network for ten day period @ The Longleaf Network, LLC

The Longleaf Network, LLC, an IT services provider, experienced a data breach in May 2024. The breach occurred over a ten-day period, from May 19th to May 29th, during which an unauthorized party gained access to the company's computer network. The br...

Cyberattack impacted theatre, public library and several departments @ Town of Orangeville

The Town of Orangeville, Canada experienced a cyberattack on February 27, 2025. The attack impacted multiple town departments, including Theatre Orangeville, the Orangeville Public Library, and services such as online building permits, recreation prog...

Unauthorised third party accessed network and accessed certain individuals’ personal and sensitive information @ Bay Cove Human Services

Bay Cove Human Services, Inc., a private non-profit organization based in Massachusetts, recently experienced a data breach. The organization, which provides a variety of services to individuals in Greater Boston and Southeastern Massachusetts, discov...

Unauthorised access to two email accounts @ OU Medicine, Inc.

On October 18, 2024, OU Medicine, Inc. (“OU Health”) experienced unauthorized access to two email accounts. Following the incident, OU Health immediately launched an investigation. The investigation determined that an unauthorized third party gained a...

Unauthorised access to employee's business email account @ CPS Solutions LLC

A data breach occurred at Three Rivers Hospital impacting patients who used CPS Solutions, a company supporting pharmacy operations. On December 4, 2024, unauthorized access to an employee's business email account was discovered. While the account was...

Lead by example in cyber

Premier risk-driven analysis

All our analysis is overseen some of the leading members of the risk community and includes lessons learnt, controls environment and root cause analysis. Learn more...

High-quality structured cyber dataset

Key attributes of each case - such as threat actor, costs incurred, failed controls etc. - are captured through the Global Cyber Event Taxonomy Learn more...

Consulting & training services

Our case studies have provided us with unique insights into the challenges faced and strategies implemented by organisations countering cyber security threats. Learn more...