Data breach involved documents on overseas voting @ COMELEC

The Philippine Commission on Elections (COMELEC) refuted claims of a recent data breach in February 2025. COMELEC Chairman George Erwin Garcia affirmed that their investigations, including coordination with the Department of Information and Communicat...

Sensitive employee and internal data leaked @ Jaguar Land Rover

In March 2025, Jaguar Land Rover (JLR) experienced a significant data breach orchestrated by the HELLCAT ransomware group. The breach involved the theft and exposure of sensitive data, including internal documents, source code, employee information, a...

Struggled to return to normal after cyber attack @ Cleveland Municipal Court

Three weeks following a cyber attack, the Cleveland Municipal Court is still experiencing disruptions and operational challenges. Employees are unable to access the internet, hindering their ability to perform their job functions. As a result, many ...

22,000 individuals' personal information stolen @ Western Alliance Bank

In October 2024, Western Alliance Bank experienced a data breach resulting from a vulnerability in a third-party file transfer tool called Cleo. A threat actor exploited this vulnerability to gain access to a portion of Western Alliance's systems. T...

Personal information accessed or viewed by an unauthorised third party @ SmartERP

Smart ERP Solutions, Inc., a Pleasanton, California-based IT and software company specializing in ERP system enhancements, experienced a cybersecurity breach between July 3, 2024, and July 13, 2024. The breach was discovered on or around July 13, 2024...

Cyber-attack compromised technical ticketing system @ Ascom Holding AG

On March 16, 2025, Ascom, a software provider primarily serving the healthcare industry, experienced a cyberattack on their technical ticketing system. A group identifying themselves as the "Hellcat ransomware gang" claimed responsibility for the atta...

Unauthorised access to a company email account @ Baylor Scott & White Texas Spine & Joint Hospital

On January 15, 2025, Baylor Scott & White Texas Spine & Joint Hospital discovered unauthorized third-party access to a Microsoft Office 365-hosted business email account. The unauthorized access occurred between January 10, 2025, and January 14, 2025....

Data breach that compromised individuals' sensitive personal and protected health data @ Community Care Alliance

Community Care Alliance (CCA), a Rhode Island-based nonprofit organization, experienced a data breach between July 1 and July 5, 2024. An unauthorized individual gained access to CCA's network and accessed sensitive personal and protected health infor...

Suspected breach of data related to Nuri space launch vehicle project @ Korea Aerospace Research Institute

The Daejeon Metropolitan Police Agency are investigating a suspected data breach at the Korea Aerospace Research Institute (KARI) involving the potential leak of sensitive technology related to South Korea’s Nuri space launch vehicle project. The prim...

Individuals across country compromised following data breach @ California Cryobank

California Cryobank (CCB), a reproductive tissue bank based in Los Angeles, California, experienced a data breach between April 20 and April 22, 2024. An unauthorized party gained access to CCB's IT network and potentially accessed files containing se...

Lead by example in cyber

Premier risk-driven analysis

All our analysis is overseen some of the leading members of the risk community and includes lessons learnt, controls environment and root cause analysis. Learn more...

High-quality structured cyber dataset

Key attributes of each case - such as threat actor, costs incurred, failed controls etc. - are captured through the Global Cyber Event Taxonomy Learn more...

Consulting & training services

Our case studies have provided us with unique insights into the challenges faced and strategies implemented by organisations countering cyber security threats. Learn more...