In April 2023, the company encountered a cyber incident that primarily affected internal Microsoft Office 365 applications. This caused some individual client services to be interrupted, but the preponderance of our client services remained operationa...
In late 2017, Rockingham County Schools in North Carolina experienced a crippling cyber attack that took 42 days to recover from, costing the district $1.3 million. According to former CTO Kacey Sensenich, the attack began with an employee in the cent...
In March 2023, Vi Living, a senior living operator, experienced a data breach when an unauthorized third party gained access to its corporate network and data server. The breach compromised the personal information of over 61,000 residents, including ...
In January 2025, E & M Insurance LLC reported a data breach to the Attorney General of Vermont, stemming from a compromise of their email system. The incident, which occurred on February 20, 2024, involved unauthorized access to sensitive consumer inf...
In October 2025, the hacking group Crimson Collective claimed responsibility for a cyberattack against Nintendo, potentially compromising a significant amount of internal data. The group, known for its previous breach of Red Hat's GitHub repositories ...
In September and October of 2025, SonicWall disclosed a significant security incident affecting all customers who utilized the MySonicWall cloud backup service. Initially, SonicWall reported that less than 5% of customers were impacted, but a subseque...
In October 2025, the City of Sugar Land, Texas, experienced a "cyber event" that impacted its internal network infrastructure and disrupted some city services. The Sugar Land Police Department is collaborating with local, state, and federal law enforc...
In late September 2025, BK Technologies, a Florida-based public safety communications solutions provider, experienced a cybersecurity incident involving unauthorized access to its IT systems. The company detected the intrusion on September 20th and im...
In October 2025, Roush Fenway Keselowski (RFK) Racing, a prominent NASCAR team, was hit with a federal class-action lawsuit following a significant data breach that occurred in May 2025. The breach compromised the personal information of over 13,000 i...
In January 2025, Matagorda County, Texas, declared a disaster following a cyber attack that disrupted internal systems. County officials are currently investigating the breach, which occurred early Friday morning through an unauthorized access point. ...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: