One of thousands of companies impacted by LiteLLM supply chain attack @ Mercor

In April 2026, Mercor, an AI recruiting startup valued at $10 billion, confirmed it was impacted by a supply chain cyberattack stemming from a compromise of the open-source LiteLLM project. This confirmation followed claims by the Lapsus$ extortion gr...

Former employee downloaded reports that contained US customers' information @ Block and 4 more...

In April 2022, it was reported that more than 8 million customers had their personal data compromised after a former employee downloaded internal reports without permission. The exposed information included customers’ full names and brokerage accou...

Unauthorised access to sensitive personal information @ Blank Rome LLP

Blank Rome LLP, a prominent global law firm operating sixteen offices with a workforce of over eight hundred attorneys, has recently become the subject of a cybersecurity investigation following a significant data breach. This incident involved unauth...

Unauthorised actor acquired certain files and data stored within systems @ Aspire Health Alliance

Aspire Health Alliance, a behavioral health services provider based in Braintree, Massachusetts, recently announced a data security incident that may have compromised personal and protected health information of certain individuals who used their serv...

Tickets and shopping severely disrupted after cyber attack @ Plitvice Lakes National Park

On June 25, 2026, the Plitvice Lakes National Park system in Croatia was targeted by a significant cyber attack that resulted in severe operational disruptions across its entire infrastructure. The incident primarily impacted the park's electronic pay...

Information on business and financial structure disclosed @ Petroleum Sarawak Berhad

In June 2026, the Sessions Court heard testimony regarding a significant data breach involving a former senior employee at Petronas. Mohd Khairul Akmal Mohd Jasni, who served as the Manager of Business Unit Performance, was charged with attempting to ...

Website back online after issues @ Linfield F.C.

In June 2026, Linfield FC experienced a significant cybersecurity event targeting its official digital infrastructure. The incident was characterized as a sophisticated cyber attack that primarily affected the accessibility of the club's main website,...

Data breach compromised sensitive consumer information @ Lands’ End

In December 2024, the clothing retailer Lands’ End experienced a significant cybersecurity event that resulted in the compromise of sensitive consumer information. This breach led to the exposure of highly personal data, including Social Security numb...

Data breach compromised individuals' sensitive personal data @ Merck Sharp & Dohme LLC

Merck Sharp & Dohme LLC recently experienced a significant data security incident that resulted in the compromise of sensitive personal information belonging to its workforce. The breach originated through a third-party service provider, Graebel Compa...

Unauthorised threat actor accessed network environment @ River Financial Corporation

River Financial Corporation and its wholly owned subsidiary, River Bank & Trust, which operates as a state-chartered community and commercial bank, recently disclosed a significant cybersecurity event that has impacted its network environment. This di...

Lead by example in cyber

Premier risk-driven analysis

All our analysis is overseen some of the leading members of the risk community and includes lessons learnt, controls environment and root cause analysis. Learn more...

High-quality structured cyber dataset

Key attributes of each case - such as threat actor, costs incurred, failed controls etc. - are captured through the Global Cyber Event Taxonomy Learn more...

Consulting & training services

Our case studies have provided us with unique insights into the challenges faced and strategies implemented by organisations countering cyber security threats. Learn more...