In November, Great Plains Health experienced a cyberattack that impacted multiple systems within the organization. The attack disrupted access to archived information, which is not frequently used. Critical patient systems were restored within two we...
In November 2022, One Brooklyn Health (OBH), a network of three hospitals in Brooklyn, New York, experienced a cybersecurity attack that significantly impacted their operations. The attack disabled critical systems, including electronic medical record...
In July 2024, numerous Standard Bank customers turned to social media to voice concerns about potential fraudulent activity on their accounts. Customers reported difficulties accessing the bank's mobile app and enduring excessively long wait times wh...
Zydus Pharmaceuticals (USA) Inc., the U.S. generic drug branch of Zydus Lifesciences, experienced unauthorized activity on its computer network on or around July 28, 2024. Following an investigation, Zydus determined that a data breach may have compro...
In June 2018, the company disclosed a significant data breach initially as impacting 5.9 million payment cards and 1.2 million personal data records. The breach involved unauthorised access to customer data, including names, addresses, email addresses...
In November 2024, Amazon disclosed a data breach that exposed the personal information of its employees. The breach stemmed from a security vulnerability in the MOVEit Transfer software used by one of Amazon's third-party property management vendors. ...
In April 2024, Summit Pathology Laboratories Inc., a Colorado-based pathology service provider, experienced a significant cybersecurity breach impacting approximately 1,813,538 patients. The breach, attributed to the Medusa ransomware group, occurred ...
In January 2024, SelectBlinds, an online retailer specializing in window coverings and a subsidiary of Hunter Douglas, experienced a significant cybersecurity breach. The breach, discovered on September 28, 2024, involved unauthorized access to sensit...
Form I-9 Compliance, a California-based business services company, experienced a data breach that exposed the personal information of numerous individuals. The breach occurred due to unauthorized access to the company's computer network, which spanned...
A data breach potentially impacting millions of Hot Topic, Box Lunch, and Torrid customers was first reported in October 2024. A threat actor, using the alias "Satanic," claimed responsibility for the breach on a dark web forum, initially offering to ...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: