Computer developer carried out a cyber-attack on his former employer @ Experience Engine Limited

In October 2017, Evan Strukoff, Head of IT at Experience Engine, was dismissed after five years with the company. Nine days later, Strukoff launched a cyberattack against the company. He illegally accessed the company's systems and deleted data. He...

Breach allegedly exposed sensitive legal data of over 13,000 records @ Supreme Court of the Philippines

On August 28, 2024, allegations of a security breach at the Supreme Court of the Philippines surfaced on social media. The alleged breach on August 27, 2024, purportedly exposed sensitive legal data, including names, case details, and payment informat...

Data breach involved up to 3m customers @ Tokio Marine & Nichido Fire Insurance Co., Sompo Japan Insurance Inc.

A significant data breach has impacted Japan's four largest non-life insurance providers: Tokio Marine & Nichido Fire Insurance, Sompo Japan Insurance, Mitsui Sumitomo Insurance, and Aioi Nissay Dowa Insurance. The breach exposed sensitive policyhold...

Substantial amount of sensitive information leaked @ Korea Defense Intelligence Command

A significant data breach has occurred within South Korea's Korea Defense Intelligence Command (KDIC), potentially jeopardizing the safety of undercover agents and compromising sensitive intelligence operations. The leaked information, which reportedl...

Security flaw allowed attackers to bypass authentication on vulnerable servers using default credentials @ Acronis International GmbH

A critical security vulnerability, tracked as CVE-2023-45249, has been found in Acronis Cyber Protect (ACI), a platform used by over 20,000 service providers to protect over 750,000 businesses globally. This vulnerability allows attackers to bypass au...

Unauthorised third party accessed network and obtained certain files @ U.S. Merchants Financial Group, Inc.

U.S. Merchants Financial Group, Inc., a company based in Beverly Hills, California, experienced a data breach that was discovered around February 13, 2024. An unauthorized third party accessed the company’s network and obtained files containing custom...

IT network infected which left schools with limited access to systems @ Fylde Coast Academy Trust

A ransomware attack has impacted the Fylde Coast Academy Trust (FCAT), affecting all ten of its academies in Blackpool and Lancashire. The attack, discovered on a Monday morning, has crippled the IT infrastructure, limiting access to essential systems...

Allegation of data breach went viral on social media @ Bank Rakyat Indonesia

Bank Rakyat, a financial institution, faced a potential data breach that raised concerns about the security of its banking system. The bank addressed the situation publicly, assuring customers that their interests are paramount and that the banking sy...

Unauthorised access to certain files on IT network @ Shamrock Trading Corporation

Shamrock Trading Corporation, a group of companies in the transportation, finance, and technology industries, recently announced a data breach that occurred in May 2024. The breach was discovered on May 6, 2024, when the company identified suspicious ...

Patients' information stolen @ Illinois Bone & Joint Institute

Two healthcare organizations, Illinois Bone & Joint Institute (IBJI) and Access Sports Medicine & Orthopedics (Access Sports), recently experienced data breaches, impacting a significant number of individuals. IBJI, operating over 100 clinics in the C...

Lead by example in cyber

Premier risk-driven analysis

All our analysis is overseen some of the leading members of the risk community and includes lessons learnt, controls environment and root cause analysis. Learn more...

High-quality structured cyber dataset

Key attributes of each case - such as threat actor, costs incurred, failed controls etc. - are captured through the Global Cyber Event Taxonomy Learn more...

Consulting & training services

Our case studies have provided us with unique insights into the challenges faced and strategies implemented by organisations countering cyber security threats. Learn more...