In February 2026, Dutch telecommunications provider Odido suffered a cyberattack that compromised the personal data of approximately 6.2 million customers, including those of its subsidiary Ben. The breach occurred within a customer contact system, gr...
In March 2026, the open-source AI project LiteLLM, a Y Combinator graduate that provides developers easy access to numerous AI models, was hit by malware. The malware, discovered by FutureSearch research scientist Callum McMahon, infiltrated LiteLLM t...
In March 2026, HackerOne, a cybersecurity firm specializing in bug bounty programs, disclosed that a data breach at Navia Benefit Solutions, a third-party benefits administrator, had compromised the personal information of 287 of its employees. The br...
In March 2026, Retail Merchandising Services, Inc. (RMS), a visual merchandising and display company, reported a data breach affecting over 16,000 individuals. The breach involved unauthorized access to the company's email environment, which was first...
In March 2026, Mazda Motor Corporation disclosed a security incident that resulted in the exposure of personal information belonging to its employees and business partners. The breach, discovered in mid-December 2025, stemmed from unauthorized access ...
The LAPSUS$ hacking group has claimed responsibility for a data breach at AstraZeneca, a major pharmaceutical company. The group alleges to have stolen approximately 3GB of internal data, which they are offering for sale on the dark web rather than re...
In March 2026, Crunchyroll, a popular anime streaming service owned by Sony, was reportedly the target of a cyberattack. The breach allegedly occurred on March 12, 2026, when a threat actor gained access to Crunchyroll's systems through a compromised ...
In March 2026, Nephrology Associates Medical Group (NAMG), a kidney care provider in Southern California, announced a cybersecurity incident. The breach involved an unauthorized individual gaining access to NAMG's network, potentially compromising the...
In March 2026, US Mortgage Corporation (USMC), a New York-based home mortgage company, announced a data breach that occurred on May 14, 2025. The incident involved unauthorized access to USMC's network, potentially compromising the personal informatio...
In March 2026, Pinnacle Holdings, LTD, a healthcare consulting firm based in Colorado, announced a data breach that compromised the sensitive personal and protected health information of nearly 20,000 individuals. The breach occurred in November 2024,...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: