Data breach following cyberattack conducted by RansomHub @ Rite Aid Corporation

In July 2024, the company publicly confirmed that it had experienced a cybersecurity incident in June 2024. The incident, later confirmed to be a ransomware attack by the RansomHub group resulted in a data breach that impacted 2.2 million customer...

Data breach compromised individuals' sensitive personal data @ AultCare Corporation

AultCare Corporation experienced a data breach that was discovered on September 25, 2024, potentially exposing sensitive personal information of its clients. The breach occurred due to unauthorized access to an employee's email account and SharePoint ...

Cyber attack impacted parts of its IT systems @ Eckert & Ziegler SE

Eckert & Ziegler SE, a company listed on the TecDAX, experienced a cyber attack on portions of its IT systems. In response to the attack, the affected systems were temporarily taken offline and disconnected from the internet to limit potential damage....

18,000 employees' data mistakenly shared with 70 managers in internal email @ Canada Border Services Agency

A significant data breach occurred at the Canada Border Services Agency (CBSA) in February 2025 due to an employee error, impacting approximately 18,000 employees. On February 3rd, an employee extracted a large data file from a mainframe system to gen...

Sensitive data stolen from board’s network @ Rainbow District School Board

The Rainbow District School Board experienced a cyber attack on February 7, 2025, resulting in the theft of sensitive personal information belonging to staff, students, and parents/guardians dating back to 2010. The stolen data includes social insuran...

Data breach compromised individuals' sensitive personal and protected health data @ Prizm Media, Inc.

Prizm Media, Inc. experienced a data breach that resulted in the compromise of sensitive personal and protected health information of numerous individuals. The breach occurred between April 28, 2023, and July 4, 2023, when an unauthorized third party ...

Cybersecurity incident impacted certain county systems @ Appomattox County Public Schools

Appomattox County Public Schools and Appomattox County experienced a cybersecurity incident that impacted county and school networks. Upon discovery, outside cybersecurity experts were brought in to assess and resolve the situation. The incident forc...

Cyber attack caused a number of issues @ Upper Canada District School Board

The Upper Canada District School Board (UCDSB) has recovered from a cyberattack that disrupted operations for seven weeks. The attack, which occurred sometime before January 22, 2025, caused significant disruption to the school board's systems, leadin...

Cybersecurity incident after being compromised by Medusa ransomware operation @ HCRG Care Group

HCRG Care Group, a large provider of community health and care services in the United Kingdom, has experienced a cybersecurity breach. The Medusa ransomware group claims to have exfiltrated over two terabytes of data from HCRG, including sensitive per...

Data breach compromised the sensitive personal data of individuals @ InterCon Construction, Inc.

InterCon Construction, Inc. experienced a data breach between November 9, 2024, and November 20, 2024, when an unauthorized party gained access to their IT network. InterCon discovered the breach on November 19, 2024, and initiated an investigation wi...

Lead by example in cyber

Premier risk-driven analysis

All our analysis is overseen some of the leading members of the risk community and includes lessons learnt, controls environment and root cause analysis. Learn more...

High-quality structured cyber dataset

Key attributes of each case - such as threat actor, costs incurred, failed controls etc. - are captured through the Global Cyber Event Taxonomy Learn more...

Consulting & training services

Our case studies have provided us with unique insights into the challenges faced and strategies implemented by organisations countering cyber security threats. Learn more...