Regulator reporting tool hacked possibly for insider trading purposes @ U.S. Securities and Exchange Commission

In September 2017, the top US markets regulator disclosed that hackers had infiltrated its database that stores company financial filings which potentially allowed hackers to trade on inside information. The hackers exploited a software vulnerability...

Hackers accessed computers with sensitive records of 4.5 million people @ The University of California, Los Angeles and UCLA

In July 2015, the university disclosed a bad actor had accessed parts of their network that contained the personal information of 4.5 million individuals. At that time it was the fourth-biggest healthcare data breach of all time. There were "indicati...

45 million users affected by breach on more than 1,100 websites @ VerticalScope Inc.

In June 2016, the company disclosed a security issue that was being investigated by their internal security team. At that time, it was one of the largest data breaches ever ranking sixth according to security researcher Troy Hunt. In February 2016...

Unauthorised access to employee’s email account @ Ambry Genetics

In April 2020, the company published a notice on its website explaining that their security team had discovered unauthorised access to one of their employee's email accounts between 22nd to 24th January. Although the company stated that they had f...

Details of 113,000 employees accessed and encrypted in cyber attack @ Interserve and lnterserve Group Limited

In May 2020, the company disclosed a cyber attack which took place from late March to early May 2020 and affected the confidentiality and availability of up to 113,000 current and former employees' personal data after bad actors exploited "negligent s...

Let us do the analysis so you can make the decisions

Premier risk-driven analysis

All our analysis is overseen some of the leading members of the risk community and includes lessons learnt, controls environment and root cause analysis. Learn more...

High-quality structured cyber dataset

Key attributes of each case - such as bad actor, costs incurred, failed controls etc. - are captured through the Global Cyber Event Taxonomy Learn more...

Consulting & training services

Our case studies have provided us with unique insights into the challenges faced and strategies implemented by organisations countering cyber security threats. Learn more...