In January 2025, Fort Thomas Independent Schools announced a data breach that exposed the sensitive personal information of 910 students and parents. The breach resulted from a phishing attack identified in December 2024 by the Kentucky Department of ...
Tecta America Corp., a large commercial roofing contractor in the United States, experienced a data breach that exposed the personal information of at least 39,965 current and former employees. The breach occurred between September 20 and October 2, 2...
Blacon High School in Cheshire, England experienced a ransomware attack on January 17, 2025. The cyberattack forced the school to close on January 20th and 21st while a cybersecurity firm investigates the incident and scans devices. It is not yet kn...
In late 2023, the law firm Napthens experienced a significant cyber attack that originated from a third-party IT provider. This attack, which lasted from November 23 to December 20, disrupted the firm's operations for almost a month, leading to a redu...
In October 2023, the Alphv/BlackCat ransomware group claimed to have stolen 5 TB of data from Morrison Community Hospital in Illinois. The group threatened to release the data if the hospital did not pay a ransom. The hospital initially downplayed the...
The Business Registration Services (BRS) in Kenya experienced a major cybersecurity breach on January 31st, 2025. Sensitive information about privately held companies was compromised and is reportedly being sold on the dark web. Although the investig...
A technical issue impacted Barclays bank customers starting on Friday, February 28, 2025, causing disruptions to payments, transfers, and account balances. The outage, lasting three days, led to thousands of customers facing difficulties with mobile a...
TalkTalk, a UK telecom provider, is investigating a potential data breach involving a third-party supplier, CSG Ascendon. The incident came to light after a threat actor, using the alias "b0nd," claimed to be selling data allegedly stolen in January 2...
The Mayor of Dover, Robin Christiansen, declared a state of emergency in response to a potential cybersecurity breach that was reported by a cybersecurity entity in Kent County. The potential breach was first reported on January 20, 2025, and a state ...
In November 2024, British supermarket chain Morrisons experienced a cyberattack that significantly impacted its sales during the 2024 Christmas season. The attack targeted their technology provider, Blue Yonder, resulting in the shutdown of Morrisons'...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: