Data Breaches 2024-2026

Home security provider breach exposed names, phone numbers, and addresses; ShinyHunters claimed more than 10 million records while Have I Been Pwned measured the leaked dataset at 5.5 million people.

ShinyHunters claimed theft of up to 9 million records from the medical device maker's corporate systems, part of the group's wider Salesforce-linked extortion campaign targeting enterprise CRM data.

France's national ID document agency confirmed 11.7 million citizen accounts exposed—names, emails, birthdates, and addresses—after attackers accessed its online portal; a teenage suspect was later detained.

Education publisher breach via a misconfigured Salesforce environment exposed names, emails, addresses, and phone numbers of roughly 13.5 million customers.

Threat actor 'Mr. Raccoon' claimed access to 13 million support tickets, 15,000 employee records, and internal documents after compromising a third-party BPO vendor handling Adobe customer support.

The largest US public health system breach of the year exposed medical records, government IDs, geolocation data, and fingerprint and palm-print biometrics of 1.8 million patients and staff via a third-party vendor; attackers had access for roughly 11 weeks.

Hackers uploaded 23 million records to a cybercrime forum, prompting the airline to notify customers that names, contact details, and loyalty program data may have been exposed.

A vishing campaign targeting single sign-on access compromised the parent of Hinge, Match, and OkCupid, exposing user IDs, emails, and transaction data for an estimated 10 million-plus accounts.

ShinyHunters published corporate documents and roughly 2 million customer records after extortion demands tied to the Salesforce supply-chain campaign went unpaid.

The Everest ransomware gang leveraged a November 2025 intrusion to leak roughly 72 million customer records including names, emails, birthdates, and purchase history.

Texas hospital hacking incident exposed the personal and protected health information of more than 2.5 million individuals.

Employee benefits administrator breach between December 2025 and January 2026 exposed names, SSNs, dates of birth, and benefits data of over 2.1 million people.

The Crimson Collective claimed theft of broadband customer data—names, emails, phone numbers, and billing details—affecting more than 1 million subscribers of the telecom provider.

Unauthorized access to an ancillary service dashboard exposed the email addresses of more than 28 million users of the music streaming platform.

An unpatched SonicWall firewall vulnerability let attackers reach the automotive credit-services provider's systems, exposing names, SSNs, dates of birth, and addresses of about 5.6 million dealership customers.

A compromised vendor account at the hospice care provider exposed medical information, SSNs, and next-of-kin details of more than 300,000 patients.

South Korea's largest online retailer disclosed that a former employee used unrevoked cryptographic signing keys to access names, phone numbers, emails, and addresses of 33.7 million members; Coupang pledged $1.17 billion in customer compensation.

Attackers stole OAuth tokens from Salesloft's Drift integration to query roughly 1.5 billion records across 760 Salesforce customer organizations—including Google, Cloudflare, Workday, and dozens of security vendors—in one of the largest SaaS supply-chain breaches on record.

Connecticut's largest healthcare provider suffered a network intrusion exposing patient names, SSNs, medical record numbers, and demographic information for over 5.5 million individuals.

Hertz customer data including driver's licenses and SSNs were stolen via Cleo file transfer vulnerabilities exploited by Cl0p ransomware gang between October-December 2024.