In October 2017, Evan Strukoff, Head of IT at Experience Engine, was dismissed after five years with the company. Nine days later, Strukoff launched a cyberattack against the company. He illegally accessed the company's systems and deleted data. He...
On August 28, 2024, allegations of a security breach at the Supreme Court of the Philippines surfaced on social media. The alleged breach on August 27, 2024, purportedly exposed sensitive legal data, including names, case details, and payment informat...
A significant data breach has impacted Japan's four largest non-life insurance providers: Tokio Marine & Nichido Fire Insurance, Sompo Japan Insurance, Mitsui Sumitomo Insurance, and Aioi Nissay Dowa Insurance. The breach exposed sensitive policyhold...
A significant data breach has occurred within South Korea's Korea Defense Intelligence Command (KDIC), potentially jeopardizing the safety of undercover agents and compromising sensitive intelligence operations. The leaked information, which reportedl...
A critical security vulnerability, tracked as CVE-2023-45249, has been found in Acronis Cyber Protect (ACI), a platform used by over 20,000 service providers to protect over 750,000 businesses globally. This vulnerability allows attackers to bypass au...
U.S. Merchants Financial Group, Inc., a company based in Beverly Hills, California, experienced a data breach that was discovered around February 13, 2024. An unauthorized third party accessed the company’s network and obtained files containing custom...
A ransomware attack has impacted the Fylde Coast Academy Trust (FCAT), affecting all ten of its academies in Blackpool and Lancashire. The attack, discovered on a Monday morning, has crippled the IT infrastructure, limiting access to essential systems...
Bank Rakyat, a financial institution, faced a potential data breach that raised concerns about the security of its banking system. The bank addressed the situation publicly, assuring customers that their interests are paramount and that the banking sy...
Shamrock Trading Corporation, a group of companies in the transportation, finance, and technology industries, recently announced a data breach that occurred in May 2024. The breach was discovered on May 6, 2024, when the company identified suspicious ...
Two healthcare organizations, Illinois Bone & Joint Institute (IBJI) and Access Sports Medicine & Orthopedics (Access Sports), recently experienced data breaches, impacting a significant number of individuals. IBJI, operating over 100 clinics in the C...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: