We found 88 cyber security incidents that were made public in March, resulting in 3,987,593 compromised records.
During the first three months of 2022, a total of 75,099,482 records were compromised.
Cyber attacks
- Ferry operator Wightlink flags potential data breach after ‘highly sophisticated’ cyber attack (unknown)
- Destructive malware targeting organisations in Ukraine (unknown)
- Hackers interrupt Catholic charity’s online press conference on Ukraine (unknown)
- Monongalia Health System in West Virginia hacked (398,164)
- Crossroads Health of Lake County discloses security incident (10,324)
- The Puerto Rican Organization to Motivate, Enlighten, and Serve Addicts discloses 2020 data breach (30,220)
- Duncan Regional Hospital notifies patients of data security incident (92,398)
- Adafruit discloses data leak from ex-employee’s GitHub repo (unknown)
- Pro-Russian hackers launch email attack to disrupt Ukraine refugee rescue attempts (unknown)
- Minnesota District 518 investigating employee email account hack (unknown)
- China state-backed hackers compromised networks of at least 6 U.S. state governments (unknown)
- Russian government sites hacked in supply chain attack (unknown)
- Unable to determine what files were accessed, Norwood Clinic notifies all patients (228,103)
- South Denver Cardiology Associates patients notified of breach (287,652)
- Capital Region reaching out to patients about cyber attack (unknown)
- Labette Health discloses data security incident (unknown)
- Another Technology Management Resources client reports a security incident (unknown)
- Molson Coors Beverage Company discloses ongoing security breach (unknown)
- Bako Diagnostics discloses unauthorised access to it systems (unknown)
- Central Bank confirms unauthorised access to sensitive consumer information (4,747)
- Ascension Michigan confirms security incident (27,177)
- Louisiana-based First Guaranty Bank confirms security incident (unknown)
- Israeli government websites crash after ‘massive’ cyber attack (unknown)
- East Tennessee Children’s Hospital statement on security issue (unknown)
- Iranian hackers leak Mossad chief’s personal information (unknown)
- Philippines’ Commission on Elections’ service contractor Smartmatic confirms security incident (unknown)
- Chelan Douglas Health District warning residents of 2021 security breach (unknown)
- French healthcare insurer l’Assurance maladie suffers cyber attack (519,000)
- Dialyze Direct, LLC in New Jersey suffers ‘IT incident’ (14,203)
- Horizon Actuarial Services says it was hacked (39,418)
- Dairy supplier Hood suffers cyber security incident (unknown)
- Hackers hit background-check firm used by state agencies (164,000)
- BlockFi confirms unauthorised access to client data hosted on Hubspot (unknown)
- Sudler Property Management says its systems were compromised (unknown)
- FCI Constructors, Inc. confirms security incident (2,117)
- American Financial Resources confirms security incident (unknown)
- TOPS Staffing says employee data was compromised in cyber attack (7,118)
- Absolute Results Productions suffers malware attack (unknown)
- East Windsor Township computer system hacked (unknown)
- Morgan Stanley client accounts breached in social engineering attacks (unknown)
- WebsterRogers reports cyber security incident (unknown)
- TBK Bank says an employee’s account was breached (unknown)
- Liberty of Oklahoma files notice of recent data breach (5,746)
- Highmark Health suffers security incident (unknown)
- Southwest Health victim of cyber attack (unknown)
- Mansfield company hacked, personal information stolen (164,000)
- Lapsus$ found a spreadsheet of accounts as they breached Okta (366)
- French health insurance data leak (510,000)
Ransomware
- Threat actors leak data from Scottish Association for Mental Health (unknown)
- Ransomware gang leak 190GB of alleged Samsung data, source code (unknown)
- Pennsylvania-based Fleetwood Area School District hit by ransomware (unknown)
- Ubisoft says it experienced a ‘cyber security incident’, LAPSUS$ group claims credit for attack (unknown)
- PracticeMax discloses security incident (165,698)
- Wagstaff, Inc. hit by ransomware (unknown)
- TransUnion hackers demand R224-million ransom (unknown)
- Wheeling Health Right victim of ransomware attack (unknown)
- New Jersey Brain and Spine notifies those affected by ransomware (92,453)
- Argentina’s senate reveals that its website was hit by ransomware (unknown)
- Microsoft confirms it was hacked by Lapsus$ extortion group (unknown)
- Hundreds of companies potentially hit by Okta hack (unknown)
- Oklahoma City Indian Clinic impacted by Suncrypt’s ransomware attack (20,000)
Data breaches
- Isle of Wight children’s details sent out in email gaffe (90)
- Hilliard City Schools evaluating protocols after leaking the names of students (4,200)
- Nespresso data leak in South Africa (unknown)
- State Bar breach exposed thousands more confidential records than original estimates (322,525)
- A security lapse exposed India’s CISF personnel files and health records (unknown)
- Japanese medical online consultation site leaking consumer-submitted images of symptoms (12,000)
- Hotel WiFi across MENA compromised and exposing private data (unknown)
- CareOregon Advantage files notice of recent data breach (10,467)
- Christie Clinic, CSI Laboratories report breaches (unknown)
- Personal Data of 820,000 NYC Students Exposed (820,000)
- Names and addresses of 620 FSB officers published in data breach (620)
- Confidential documents were blown into gardens in data breach (1)
- Infinity’s Ronin Network Says About $620M Stolen In Major Security Breach (0)
- Apple and Meta Gave User Data to Hackers Who Used Forged Legal Requests (unknown)
- 120 patients victims of CKHA privacy breach (120)
Financial information
Malicious insiders and miscellaneous incidents