In November 2023, Idaho National Laboratory (INL), a prominent U.S. Department of Energy research facility specializing in nuclear energy and cybersecurity, experienced a significant data breach. The breach affected the laboratory's Oracle Human Capit...
In February 2026, CarGurus, an online vehicle marketplace, reportedly suffered a significant data breach, with the ShinyHunters cybercrime group claiming responsibility. Initially, ShinyHunters claimed to have stolen 1.7 million records, but later lea...
In January 2026, ManoMano, a European e-commerce platform specializing in DIY and home improvement products, experienced a significant data breach affecting approximately 38 million customers across multiple European countries. The breach originated f...
In February 2026, Wynn Resorts, a luxury hotel and casino company, confirmed it was the victim of a cyberattack by the ShinyHunters hacking group. The attackers claimed to have stolen over 800,000 records containing personally identifiable information...
In February 2026, Deutsche Bahn (DB), Germany's national railway operator, was targeted by a large-scale distributed denial-of-service (DDoS) cyberattack. The attack, which occurred in waves, began on February 17th and continued into February 18th, ca...
In February 2026, PayPal disclosed a data breach stemming from a software error within its PayPal Working Capital (PPWC) loan application. This error exposed the personally identifiable information (PII) of approximately 100 customers between July 1, ...
In November 2025, BOK Financial, an Oklahoma-based financial services company, reported a data breach affecting over 2,800 individuals. The incident stemmed from a cybersecurity event experienced by Linedata Services Inc., a vendor providing services ...
Optus Mobile has been penalized $826,320 by the Australian Communications and Media Authority (ACMA) for violating anti-scam regulations on 44 separate occasions. These breaches, which occurred in September and October of 2024 while Optus was operatin...
In November 2025, Thomas Safran & Associates, a California-based rental property management company, reported a data breach involving the sensitive personal information of an undetermined number of individuals. Strauss Borrelli PLLC, a data breach law...
Strauss Borrelli PLLC is investigating a data breach involving Heritage Holdings LP, a business associate of Heritage Communities, Orchard Pointe, and OnCare Health, a senior living company based in Nebraska that operates 18 resident communities acros...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: