In February 2026, Flickr, the popular photo-sharing platform, disclosed a potential data breach stemming from a vulnerability within a third-party email service provider. The incident, detected on February 5th, prompted Flickr to immediately shut down...
In late January 2026, the European Commission experienced a cyberattack targeting its central mobile device management infrastructure. The intrusion, detected on January 30th, resulted in unauthorized access to staff names and mobile numbers. The Comm...
A $675,000 settlement has been reached to resolve a class-action lawsuit stemming from a 2023 data breach affecting patients of Dignity Health's St. Rose Dominican Hospital, Rosa de Lima Campus, in Henderson, Nevada, and its third-party vendor, R1 RCM...
A significant data exposure incident at Hello Gym, a technology service provider for the fitness industry, has compromised over 1.6 million audio files containing gym members' personal information. Cybersecurity researcher Jeremiah Fowler discovered t...
In August 2025, the City of Greenville, Texas, experienced a cyberattack that significantly disrupted its technology systems, impacting both police records and utility accounts. The Greenville Electric Utility System (GEUS) was particularly affected, ...
In September 2025, UI Community HomeCare (UICHC), a home infusion and medical equipment service provider linked to University of Iowa Health Care, disclosed a cybersecurity incident affecting the personal information of hundreds of thousands of indivi...
In September 2025, Loyola College, a Catholic secondary school in Watsonia, Melbourne, suffered a cyberattack that resulted in the potential compromise of sensitive student and staff data. A "malicious third party" breached the school's systems and pu...
In February 2025, Risk Management Services LLC, a Louisiana-based claims administration firm, experienced a data breach that compromised the personal information of 22,300 individuals. The breach occurred due to a subcontractor's failure to adhere to ...
In late July 2025, the Muséum national d'Histoire naturelle (MNHN) in Paris suffered a "massive" ransomware cyberattack that significantly impacted its operations. The attack paralyzed a large portion of the museum's internal computer network, renderi...
In December 2024, The Hiller Companies, a fire protection services provider, experienced a data security incident where unauthorized actors copied files from their systems. The breach was discovered in June 2025 and a subsequent investigation revealed...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: