In December 2024, Decisely Insurance Services, a benefits brokerage and HR services firm, experienced a cybersecurity incident involving unauthorized access to its cloud storage platform. The company detected suspicious activity on December 17, 2024, ...
In June 2025, Green County officials announced a data breach that occurred earlier in the year, potentially compromising the personal information of county residents. The breach, which took place between February 2 and February 4, 2025, involved unaut...
Smile Solutions of Goodlettsville recently announced a data breach stemming from a security incident at NRS, a debt recovery vendor they had used for 23 years. The breach, which occurred in July 2024, involved unauthorized access to protected account ...
In June 2025, Numa, a Berlin-based accommodation provider, experienced a significant data breach that exposed extensive customer identification information. A member of the Chaos Computer Club (CCC) discovered the vulnerability while attempting to boo...
In June 2025, the UK's Financial Conduct Authority (FCA) disciplined four staff members for data security breaches that occurred between 2022 and 2023. The breaches involved employees sending FCA data to their personal email accounts, a violation of t...
In December 2024, Veradigm LLC, a healthcare technology company, experienced a significant data breach that compromised the sensitive personal information of over 2 million patients. The breach, discovered around July 1, 2025, involved unauthorized ac...
In June 2025, Edelson Lechtzin LLP announced an investigation into a data breach at EmCentrix, an HR and payroll solutions company based in Olympia, Washington. The breach occurred around August 14, 2024, when EmCentrix experienced a network disruptio...
In October 2024, Central Kentucky Radiology (CKR), a radiology services provider, experienced a cybersecurity breach that compromised the personal information of approximately 166,953 individuals. The breach occurred between October 16 and October 18,...
In May 2025, Covenant Health, a Catholic healthcare system operating in New England and parts of Pennsylvania, experienced a significant cyberattack that compromised the personal and health information of 478,188 individuals. The breach was initially ...
Rumpke, a waste and recycling company, experienced a cyber security incident. The company assures that customer data and payment systems remain unaffected. The incident, potentially a ransomware attack first reported on October 11, 2024, temporarily ...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: