On Friday, April 2026, the City of Tallahassee was targeted by a cyberattack affecting portions of its technology environment. City staff detected the intrusion early in the morning and responded by isolating the threat to limit its impact. According ...
In April 2026, Vercel, a cloud deployment firm and web3 hosting backbone, experienced a significant security breach stemming from a compromised third-party AI tool. The breach led to unauthorized access to Vercel's internal systems and customer data, ...
In April 2026, Kemper Corporation, a major U.S. insurance provider, was reportedly targeted by the ShinyHunters hacking group. The group claimed to have stolen 29 GB of data from Kemper's Salesforce account and subsequently leaked over 13 million reco...
In April 2026, fashion retailer Express experienced a security flaw that exposed customers' personal data and order details to the internet. The vulnerability, discovered by security advocate Rey Bango, allowed anyone to view order confirmation pages ...
On April 2026, the Civil Aviation Agency in Ljubljana reported a cyber attack targeting its national unmanned aircraft system (UAS) repository. This platform is crucial for the registration, management, and training of drone operators and pilots withi...
Bluesky, the social media company, has confirmed that it is experiencing ongoing service interruptions due to a sophisticated Distributed Denial-of-Service (DDoS) attack. The attack, which began on April 15th, is causing intermittent disruptions to us...
In April 2026, Autovista, a UK-based automotive analysis and data company, experienced a ransomware attack affecting systems in Europe and Australia. The company is working to restore its services and has engaged external cybersecurity experts to inve...
The Russia-linked cryptocurrency exchange, Grinex, has suspended operations following a significant cyber attack resulting in the theft of approximately $13.74 million (1 billion roubles) in user funds. Grinex, based in Kyrgyzstan but with ties to Rus...
In April 2026, Inditex SA, the owner of Zara and other brands, reported a data breach affecting information related to its commercial relations. The breach originated at a former technology provider and impacted other companies in addition to Inditex....
In July 2025, Cookeville Regional Medical Center (CRMC) in Tennessee experienced a ransomware attack that compromised the personal and protected health information of 337,917 individuals. The hospital detected unauthorized network access between July ...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: