In April 2026, a supply chain attack targeting Anodot, an AI-powered analytics platform, led to data theft from multiple Snowflake customer accounts. The ShinyHunters extortion group claimed responsibility, stating they had gained access to Anodot's i...
On March 23, 2026, Bitcoin Depot Inc. experienced a cyber attack resulting in the unauthorized transfer of approximately 50.903 Bitcoin, valued at $3.665 million, from company-controlled wallets. Upon detection, Bitcoin Depot activated its incident re...
In April 2026, ChipSoft, the leading healthcare software provider in the Netherlands, was targeted in a significant cyber attack. The company's flagship product, HiX, manages patient records for a majority of Dutch hospitals, making the breach a criti...
In April 2026, a former Meta engineer was accused of a mass data breach involving Facebook user images. The individual allegedly developed a program to bypass Meta's internal security controls, enabling unauthorized access and downloading of user data...
In April 2026, Russell Cellular, a Verizon authorized retailer based in Missouri, is under investigation following a significant data breach that compromised the sensitive information of approximately 6.3 million customers and employees. The law firm ...
In April 2026, AAA Northeast's Driver Training School faced a class action lawsuit following a data breach that affected its customers. The breach, which occurred in December, was discovered and reported to AAA Northeast by its software vendor. An una...
In late March 2026, the Los Angeles City Attorney’s Office experienced a significant data breach that compromised sensitive Los Angeles Police Department (LAPD) records. The breach occurred within a third-party digital storage system used by the City ...
In April 2026, Winona County, Minnesota, experienced a significant cyberattack that disrupted critical systems and digital services, impairing the county's ability to deliver essential emergency and municipal services. Governor Tim Walz issued an exec...
In early 2025, Opexus, a software company providing services to numerous U.S. federal agencies, experienced a significant cyber breach. Two employees, twin brothers Muneeb and Suhaib Akhter, who had prior convictions for hacking into the U.S. State De...
In October 2025, DocketWise, a software platform used by U.S. immigration professionals for case management, discovered a data breach involving unauthorized access to credentials associated with a partner-managed repository. The breach stemmed from an...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: