In June 2018, the company disclosed a significant data breach initially as impacting 5.9 million payment cards and 1.2 million personal data records. The breach involved unauthorised access to customer data, including names, addresses, email addresses...
In April 2024, Summit Pathology Laboratories Inc., a Colorado-based pathology service provider, experienced a significant cybersecurity breach impacting approximately 1,813,538 patients. The breach, attributed to the Medusa ransomware group, occurred ...
In January 2024, SelectBlinds, an online retailer specializing in window coverings and a subsidiary of Hunter Douglas, experienced a significant cybersecurity breach. The breach, discovered on September 28, 2024, involved unauthorized access to sensit...
Form I-9 Compliance, a California-based business services company, experienced a data breach that exposed the personal information of numerous individuals. The breach occurred due to unauthorized access to the company's computer network, which spanned...
In December 2023, HealthAlliance, Inc., a health insurance company, discovered a data breach within its IT network. An unauthorized party accessed and potentially acquired sensitive consumer information between August 18, 2023, and October 13, 2023. T...
In August 2024, the major US oilfield services company experienced a significant cyberattack, which was later reported to have been conducted by the Ransomhub group. The attack forced the company to take their systems offline to contain the breach...
In March 2024, the law firm Federman & Sherwood initiated an investigation into a data breach at Elemetal, LLC. Elemetal, a company that handles sensitive consumer data, discovered unauthorized access to their servers on August 22, 2023. The breach ...
In August 2024, the US-based semiconductor manufacturer experienced a significant cybersecurity breach after detecting suspicious activity within its IT systems. Further investigation revealed that an unauthorized party had disrupted access to certain...
In March 2024, the school district experienced a ransomware attack that significantly disrupted its IT systems and daily operations. The attack forced the district to delay classes by two hours and prompted a digital shutdown, with staff instructed to...
In February 2024, the company experienced a significant cybersecurity breach. Initially, the company publicly acknowledged the attack and confirmed data had been stolen, including sensitive personal information of its customers. By May 2024, the d...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: