Here\u2019s a detailed list of data breaches around the world you need to know about, compiled to present as far as 2012. <\/p>\n\n\n\n
The Shields healthcare data breach is the largest data breach reported in 2022. Shield Health Care Group, a Massachusetts-based company detected suspicious network activity on March 28th of 2022. The hack took place between the 7th to 21st of March and affected 56 facilities. <\/p>\n\n\n\n
The data breach affected over 2 million individuals revealing their social security numbers, diagnoses, billing information, medical records, and PII like addresses, dates of birth, patient IDs, and more. <\/p>\n\n\n\n
Twitter recently underwent a massive data breach on 21st July 2022. <\/p>\n\n\n\n
The hack resulted in the data leaking of nearly 5.4 million users<\/a> in a list through a vulnerability exposed to them by the threat actor, Devil. <\/p>\n\n\n\n These 5.4 million records were then put for sale for a price of $30,000.<\/p>\n\n\n\n Another Twitter breach allegedly took place in 2022 revealing nearly 17 million Twitter records. According to it, the records consisted of phone numbers, and public information like account names, Twitter ids, and screen names. <\/p>\n\n\n\n On December 23, 2022, a threat actor by the name of Ryushi made a post to a hacker forum, Breached, putting 400 million Twitter profiles<\/a> on sale for $200,000.<\/p>\n\n\n\n The fintech company suffered a breach in 2022 after a third party gained access to its database through social engineering. This resulted in the exposure of the personal information of nearly 50.150 users<\/a>. <\/p>\n\n\n What\u2019s Still Slipping Through?<\/strong><\/p>\n\n\n\n In the last year, Astra uncovered 5.33 vulnerabilities per minute<\/strong>, many of them in production-facing systems that looked \u201csecure enough\u201d on paper.<\/p>\n\n\n\n The State of Continuous Pentesting 2025<\/em> connects the dots between the stats and the root causes:<\/p>\n\n\n\n In October 2022, Toyota<\/a> underwent a massive data breach after the source code of the T-Connect application was posted on GitHub in December 2017. <\/p>\n\n\n\n The breach ended up exposing nearly 300,000 customers and their personal information. <\/p>\n\n\n\n Keystone Health<\/a>, a group of primary-healthcare providers, revealed in July 2022 that an unauthorized party had hacked into its computer network revealing information about 235,000 patients from the 28th of July 2022 until the 19th of August 2022<\/p>\n\n\n\n In May 2022 it was revealed through a state audit that the personal information of 1.8 million individuals<\/a> who filed insurance claims with the Texas Department of Insurance was leaked. <\/p>\n\n\n\n The leaked information was publicly available for almost three years from March 2019 to January 2022. <\/p>\n\n\n\n The largest global semiconductor chip company was compromised by a ransomware attack in February 2022. <\/p>\n\n\n\n A ransomware group named Lapsus$ took responsibility for the attack, claiming access to 1TB worth of company data they would leak online.<\/p>\n\n\n\n OneTouchPoint reported a massive data breach that affected over 1,073,316 individuals in mid-July of 2022. <\/p>\n\n\n\n The breach occurred due to unauthorized access to certain servers that contained information such as names, member IDs, and data from health assessments. <\/p>\n\n\n\n Novant Health<\/a> reported that a misconfiguration in Meta pixel code potentially led to the unauthorized disclosure of protected health information (PHI) of 1,362,296 individuals in 2022.<\/p>\n\n\n\n Broward Health<\/a> based in Florida reported a data breach affecting 1.35 million people on January 2nd of 2022. <\/p>\n\n\n\n It was reported that the breach occurred through gaining access from a third-party medical provider. <\/p>\n\n\n\n Tenet Healthcare-affiliate Baptist Medical Center<\/a> suffered a cyberattack on April 24th, 2022 affecting 1.24 million individuals.<\/p>\n\n\n\n An unauthorized party gained access to certain systems that contained personal information and took some data between March 31 and April 24. <\/p>\n\n\n\n In 2022, June the hotel chain Marriot was hacked by a hacker stealing 20 GB worth<\/a> of guest information. This included guest credit card data, as well as personal information regarding guests and employees alike.<\/p>\n\n\n\n This science center was hit by a data breach<\/a> due to a hacking incident that was reported on June 7, 2022. The breach affected over 1.29 million people. <\/p>\n\n\n\n The cyber attack on Red Cross was thought to have occurred sometime around November of 2021 but wasn\u2019t discovered until January 18th, 2022, and affected 515,000 individuals.<\/p>\n\n\n\n July 2022 witnessed the hack of Neopets resulting in the exposure of 69 million individuals’ personal information (former and current) as well as 460 MB of the source code. <\/p>\n\n\n\n The latest hack on LinkedIn occurred in April 2021 and affected 700 million accounts, i.e. more than 90% of its users, on LinkedIn. <\/p>\n\n\n\n The attack was carried out by data scraping which was possible due to a violation of LinkedIn\u2019s API. <\/p>\n\n\n\n In 2021 it was revealed that Facebook<\/a> underwent a massive data breach of over 530 million records due to a vulnerability that was patched in 2019. <\/p>\n\n\n\n The data was compiled from 106 countries with over 32 million records from the U.S., 11 million user records from the U.K., and 6 million users in India. <\/p>\n\n\n\n January 2021 began for Microsoft with a sweeping attack on its Microsoft Exchange email servers, one of the largest email servers in the world affecting nearly 60,000 companies. <\/p>\n\n\n\n Over 38 million customer records<\/a> were found to be exposed in August 2021. This affected many major companies like Ford, American Airlines, the Maryland Department of Health, and more.<\/p>\n\n\n\n In 2021, hackers stole the personal data of nearly 21 million users and 10 GB worth of data through the networks of SuperVPN, GeckoVPN, and ChatVPN. <\/p>\n\n\n\n Marriot faced another hack in 2020 between January to March resulting in the leak of over 5.2 million guests<\/a>\u2019 personal information.<\/p>\n\n\n\n This mainly included contact details and personal information passwords and PINS, national IDs, and driver’s license numbers.<\/p>\n\n\n\n SolarWinds, the network monitoring software opted for by the U.S. Pentagon, Fortune 500 companies like Microsoft and even nuclear labs were hacked by Russian hackers in 2020. <\/p>\n\n\n\n An estimated 50 million records from various major organizations and companies are thought to have been affected.<\/p>\n\n\n\n In 2019, UpGuard\u2019s cyber risk team discovered 540 million user records<\/a> of Facebook in unsecured condition on Amazon\u2019s S3 public cloud servers. <\/p>\n\n\n\n The data breach occurred because third-party app developer, Cultura Colectiva, a Mexican media company failed to password protect their data sets.<\/p>\n\n\n\n Singapore-based Farrer Park Hospital<\/a> had a breach that spanned over two years between March 8, 2018, and Oct 25, 2019. <\/p>\n\n\n\n The confidential medical information of 3,539 individuals was automatically forwarded to a third party. <\/p>\n\n\n\n The lack of password protection resulted in 14 years’ worth of Microsoft\u2019s customer data<\/a> in 2019 (250 million customer data records) being exposed. <\/p>\n\n\n\n<\/span>3. Twitter Breach #2<\/strong><\/span><\/h2>\n\n\n\n
<\/span>4. Twitter Breach #3<\/strong><\/span><\/h2>\n\n\n\n
<\/span>5. Revolut<\/strong><\/span><\/h2>\n\n\n\n
\n
<\/span>6. Toyota<\/strong><\/span><\/h2>\n\n\n\n
<\/span>7. Keystone Health<\/strong><\/span><\/h2>\n\n\n\n
<\/span>8. Texas Department Of Insurance<\/strong><\/span><\/h2>\n\n\n\n
<\/span>9. Nvidia<\/strong><\/span><\/h2>\n\n\n\n
<\/span>10. OneTouchPoint<\/strong><\/span><\/h2>\n\n\n\n
<\/span>11. Novant Health<\/strong><\/span><\/h2>\n\n\n\n
<\/span>12. Broward Health<\/strong><\/span><\/h2>\n\n\n\n
<\/span>13. Baptist Medical Center<\/strong><\/span><\/h2>\n\n\n\n
<\/span>14. Marriot Breach #1<\/strong><\/span><\/h2>\n\n\n\n
<\/span>15. Texas Tech University Health<\/strong><\/span><\/h2>\n\n\n\n
<\/span>16. Red Cross<\/strong><\/span><\/h2>\n\n\n\n
<\/span>17. Neopets<\/strong><\/span><\/h2>\n\n\n\n
<\/span>2021<\/span><\/h2>\n\n\n\n
<\/span>18. LinkedIn Breach #2<\/strong><\/span><\/h2>\n\n\n\n
<\/span>19. Facebook Breach #1<\/strong><\/span><\/h2>\n\n\n\n
<\/span>20. Microsoft Breach #1<\/strong><\/span><\/h2>\n\n\n\n
<\/span>21. Microsoft Breach #2<\/strong><\/span><\/h2>\n\n\n\n
<\/span>22. ChatVPN, SuperVPN, GeckoVPN<\/strong><\/span><\/h2>\n\n\n\n
<\/span>2020<\/span><\/h2>\n\n\n\n
<\/span>23. Marriot Breach #2<\/strong><\/span><\/h2>\n\n\n\n
<\/span>24. SolarWinds<\/strong><\/span><\/h2>\n\n\n\n
<\/span>2019<\/span><\/h2>\n\n\n\n
<\/span>25. Facebook Breach #2<\/strong><\/span><\/h2>\n\n\n\n
<\/span>26. Farrer Park Hospital<\/strong><\/span><\/h2>\n\n\n\n
<\/span>27. Microsoft Breach #3<\/strong><\/span><\/h2>\n\n\n\n
<\/span>2018<\/span><\/h2>\n\n\n\n
<\/span>28. Aadhar<\/strong><\/span><\/h2>\n\n\n\n