Harrods
public
–
2 min read
Luxury London-based retailer Harrods confirmed a cybersecurity breach in September 2025, where criminals stole 430,000 customers' data from…
Salesloft
public
–
3 min read
The cyber incident at **Salesloft** involved the mass theft of authentication tokens from its **Drift AI chatbot platform**, which is…
UK Government (Cabinet Office, HMRC, Metropolitan Police, Ministry of Defence, and Benefits System)
public
–
4 min read
The UK government faced a series of **11 major public sector data breaches**, exposing highly sensitive personal data across multiple…
New Horizons Baking Company (NHB Holdings, LLC)
public
–
2 min read
New Horizons Baking Company, a subsidiary of NHB Holdings, LLC, suffered a **data breach** between **January 6–10, 2025**, where…
Hiller Companies (LP Falcon Holdings Inc)
public
–
2 min read
Hiller Companies, a major U.S. provider of fire protection services, suffered a malicious encryption attack (ransomware) in December 2024,…
New Horizons Baking Company, LLC
public
–
3 min read
On January 11, 2025, New Horizons Baking Company, LLC (part of NHB Holdings) detected unauthorized access to its systems, later…
The Hiller Companies
public
–
3 min read
On June 13, 2025, The Hiller Companies, a fire protection services provider, detected a data breach where attackers unauthorizedly copied…
American Association of Critical-Care Nurses (AACN)
public
–
2 min read
On July 31, 2025, the American Association of Critical-Care Nurses (AACN) discovered a data breach in its website’s payment…
Pennsylvania’s Office of Attorney General (OAG)
public
–
2 min read
The Pennsylvania Office of Attorney General (OAG) suffered a ransomware attack in August, disrupting critical operations. The attack encrypted OAG…
WhatsApp (Meta)
public
–
4 min read
WhatsApp disclosed a zero-click exploit chain targeting specific users by combining a WhatsApp vulnerability (CVE-2025-55177) with an Apple Image I/…
Paid Membership Subscriptions (by Cozmoslabs)
public
–
3 min read
A critical unauthenticated SQL injection vulnerability (CVE-2025-49870) was discovered in the WordPress Paid Membership Subscriptions plugin (versions ≤2.15.1)…
City of Middletown, Ohio
public
–
3 min read
The City of Middletown, Ohio, experienced a ransomware attack that disrupted critical city services for at least two weeks. The…