In August 2020, the Canada Revenue Agency (CRA) experienced a significant cybersecurity event involving a series of credential stuffing attacks. This method uses stolen usernames and passwords from other websites to gain unauthorized access to user ac...
A significant data breach targeted Fujitsu, a major Japanese technology provider to the Japanese government, compromising data related to the Tokyo 2020 Olympics. The breach exposed login credentials of ticket holders, potentially allowing access to ...
Chime Financial is facing three proposed class-action lawsuits in the U.S. District Court for the Northern District of California following an April 1st outage of its mobile app. The lawsuits allege that the pro-Iranian hacker group Team 313 breached ...
In May 2026, Braintrust, an AI evaluation startup, confirmed an unauthorized access incident within one of its Amazon Web Services (AWS) cloud accounts. This account contained API keys used by customers to access cloud-based AI models. The company has...
In May 2026, the Murphy Law Firm announced an investigation into a data breach affecting TransGlobal Insurance Agency, Inc. The breach, discovered on February 24, 2026, stemmed from suspicious activity detected on TransGlobal's computer network. A sub...
Integrated Pain Associates (IPA), a pain management service provider with locations across Texas, has announced a data breach that occurred around February 24, 2026. The breach involved unauthorized access to the company's systems, and a subsequent in...
In September 2025, Hematology Oncology Consultants, a Michigan-based medical practice specializing in cancer and blood disorder treatments, fell victim to a ransomware attack targeting its computer network. The cyberattack was claimed by the Rhysida r...
In April 2026, TRISTAR Insurance Group, Inc. reached a $1 million settlement to resolve a class action lawsuit stemming from a data breach in November 2022. The lawsuit alleged that TRISTAR failed to adequately protect sensitive information on its sys...
Continental Café Holdings, LLC has reached a class action settlement to resolve allegations that the company failed to adequately protect the personal information of its customers, leading to a data breach discovered in October 2024. The lawsuit claim...
Aroostook Mental Health Center (AMHC) is currently investigating a data security incident that involved unauthorized access to its computer network and the potential theft of protected health information and personally identifiable information. On Mar...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: