In September 2024, SAG-AFTRA Health Plan, a health insurance provider for media professionals, experienced a data breach due to a phishing attack. An unauthorized party gained access to an employee's email account, exposing the personal information of...
In December 2024, Rhode Island experienced a significant cybersecurity breach impacting its RIBridges system, an online platform managing the state's social and health benefits. The attack, attributed to the Brain Cipher ransomware group, resulted in ...
EMS LINQ, a prominent data management firm serving K-12 school districts, state agencies, and various educational stakeholders including educators and parents, recently reached a settlement agreement following a class-action lawsuit related to a signi...
FMC Services LLC, which operates a network of primary care clinics in Amarillo and Canyon, Texas, recently reached a $2.15 million settlement to resolve a class action lawsuit stemming from a significant cyberattack and data breach. The security incid...
Spain’s data protection agency, the Agencia Española de Protección de Datos, has issued a record eighteen million euro fine against Amadeus IT Group, a prominent IT service provider for the aviation sector. This enforcement action stems from a pilot p...
The Office of the Australian Information Commissioner recently finalized a significant determination against American Express following a multi-year investigation into a serious privacy breach. The case originated from a complaint by a customer, refer...
The Township of Centre Wellington has issued a formal update concerning the temporary suspension of the paid parking system located in downtown Elora. This operational disruption has led to the complete deactivation of the system while an internal rev...
In early 2026, a sophisticated cyber security breach resulted in the theft of $17.3 million from the escrow account of Rabideau Klein, a prominent real estate law firm based in Palm Beach. The incident, which occurred during the early morning hours of...
Huntsville Hospital Health System recently disclosed a significant data breach involving its third-party electronic health record vendor, Cerner, which is now a subsidiary of Oracle Health. The security incident originated on Cerner’s legacy systems a...
On June 10, 2026, the Centre for East European and International Studies, known as ZOiS, identified a significant IT security incident involving a cyberattack on its file servers. Forensic investigations indicate that unauthorized actors gained access...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: