In November 2025, Marshfield Clinic Health System announced a data breach that occurred in late August. The organization detected unusual activity in employee email accounts around August 27, 2025, and a subsequent investigation revealed unauthorized ...
In February 2024, Laurentian University in Sudbury, Ontario, experienced a significant cyber incident that severely impacted its IT systems and resulted in a data breach. The incident, which was first detected on February 18, caused widespread disrupt...
In October 2025, Orthopedics Rhode Island (Ortho RI) agreed to a $2.9 million settlement to resolve a class action lawsuit resulting from a 2024 ransomware attack. Ortho RI detected the ransomware attack on September 7, 2024, and a subsequent forensic...
In October 2025, Pacific Seafood, a seafood wholesale distributor based in Oregon, announced a cybersecurity incident that compromised the personal information of over 40,000 individuals. The breach involved an unauthorized party gaining access to rec...
In April 2025, Sentinel Security Life Insurance Company detected unauthorized activity within its systems, leading to the discovery of a data breach that occurred between April 7 and April 15, 2025. An unauthorized actor gained access to the company's...
In October 2025, The Daily Sentinel newspaper experienced a disruption in its operations due to a cyber attack. The newspaper itself was not directly targeted, but rather a third-party company responsible for building and laying out the print and e-Ed...
In October 2025, Partners in Pediatrics (PIP), a pediatric healthcare provider, disclosed a cybersecurity incident where an unauthorized individual accessed records containing sensitive personal information. The breach compromised the personally ident...
In October 2025, KFC Venezuela allegedly suffered a significant data breach, resulting in the exposure of over one million customer records. A threat actor advertised the sale of a 405 MB CSV file on a dark web forum, claiming it contained 1,067,291 r...
In October 2025, AppFolio, Inc., a Santa Barbara-based tech company specializing in cloud-based property management software, experienced a data breach that compromised the personal information of an undisclosed number of individuals. The breach stemm...
In October 2025, electronics distributor Avnet confirmed they experienced a data breach after unauthorized actors gained access to a database hosted on an external service. This database contained information related to the company's operations in the...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: