Supply Chain on Breach Noteshttps://breachnotes.vulnetix.com/supply-chain/Recent content in Supply Chain on Breach NotesHugoen-us"Crypto apps see malicious popups after Ace Drainer hacks animation library"https://breachnotes.vulnetix.com/supply-chain/2024-10_lottiefiles-exploit/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-10_lottiefiles-exploit/"Hackers hijack npm packages with 2 billion weekly downloads in supply chain attack"https://breachnotes.vulnetix.com/supply-chain/2025-09_massive-npm-supply-chain-attack-puts-crypto-transactions-at-risk/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_massive-npm-supply-chain-attack-puts-crypto-transactions-at-risk/"Inside the Hunt for the Jay Pegs Auto Mart Thief and 865 ETH"https://breachnotes.vulnetix.com/supply-chain/2021-09_sushiswap-hack/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-09_sushiswap-hack/"Solana Web3.js library backdoored to steal secret, private keys"https://breachnotes.vulnetix.com/supply-chain/2024-12_solana-javascript-library-compromised/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-12_solana-javascript-library-compromised/0ktapus / Twilio Supply Chain Attack: LastPass, DoorDash, Okta, Authy (August 2022)https://breachnotes.vulnetix.com/supply-chain/2022-08_lastpass-doordash-okta-and-authy-twilio/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_lastpass-doordash-okta-and-authy-twilio/100 Romanian hospitals Third-Party Breach (February 2024)https://breachnotes.vulnetix.com/supply-chain/2024-02_100-romanian-hospitals-hipocrate-information-system/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_100-romanian-hospitals-hipocrate-information-system/12 Insurance Company Third-Party Breach (April 2025)https://breachnotes.vulnetix.com/supply-chain/2025-04_12-insurance-company-landmark-admin/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-04_12-insurance-company-landmark-admin/13,000 students in Singapore Third-Party Breach (August 2024)https://breachnotes.vulnetix.com/supply-chain/2024-08_13-000-students-in-singapore-mobile-guardian/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-08_13-000-students-in-singapore-mobile-guardian/17 Banks and 5 other organizations Third-Party Breach (February 2025)https://breachnotes.vulnetix.com/supply-chain/2025-02_17-banks-and-5-other-organizations-bankers-cooperative-group/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-02_17-banks-and-5-other-organizations-bankers-cooperative-group/17,891 corporate customers (companies) Third-Party Breach (March 2025)https://breachnotes.vulnetix.com/supply-chain/2025-03_17-891-corporate-customers-companies-ntt-communications-corporati/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-03_17-891-corporate-customers-companies-ntt-communications-corporati/1Password Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_1password-okta/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_1password-okta/2,000 providers, including barristers, solicitor firms, and non-profit organizations Third-Party Breach (May 2025)https://breachnotes.vulnetix.com/supply-chain/2025-05_2-000-providers-including-barristers-solicitor-firms-and-non-profit-organizations-legal-aid-agency-laa/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_2-000-providers-including-barristers-solicitor-firms-and-non-profit-organizations-legal-aid-agency-laa/300 small Indian banks Third-Party Breach (July 2024)https://breachnotes.vulnetix.com/supply-chain/2024-07_300-small-indian-banks-c-edge-technologies-ltd/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-07_300-small-indian-banks-c-edge-technologies-ltd/327 unknown users Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_327-unknown-users-github-workflows/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_327-unknown-users-github-workflows/4,600 websites Third-Party Breach (May 2019)https://breachnotes.vulnetix.com/supply-chain/2019-05_4-600-websites-picreel-and-alpaca-forms/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-05_4-600-websites-picreel-and-alpaca-forms/40 Affiliated nursing facilities in Texas and Kansas Third-Party Breach (January 2024)https://breachnotes.vulnetix.com/supply-chain/2024-01_40-affiliated-nursing-facilities-in-texas-and-kansas-hmg-healthcare/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-01_40-affiliated-nursing-facilities-in-texas-and-kansas-hmg-healthcare/40 Healthcare Companies Third-Party Breach (December 2023)https://breachnotes.vulnetix.com/supply-chain/2023-12_40-healthcare-companies-asper-biogene/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-12_40-healthcare-companies-asper-biogene/500 – 1,000 e-commerce stores Third-Party Breach (May 2025)https://breachnotes.vulnetix.com/supply-chain/2025-05_500-1-000-e-commerce-stores-tigren-meetanshi-and-mgs/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_500-1-000-e-commerce-stores-tigren-meetanshi-and-mgs/60 Credit Unions Third-Party Breach (December 2023)https://breachnotes.vulnetix.com/supply-chain/2023-12_60-credit-unions-trellance/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-12_60-credit-unions-trellance/890 Schools Third-Party Breach (September 2023)https://breachnotes.vulnetix.com/supply-chain/2023-09_890-schools-national-student-clearinghou/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-09_890-schools-national-student-clearinghou/94 K-12 Schools Third-Party Breach (January 2025)https://breachnotes.vulnetix.com/supply-chain/2025-01_94-k-12-schools-powerschool/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_94-k-12-schools-powerschool/A (probably) Mexican government healt agency Third-Party Breach (August 2018)https://breachnotes.vulnetix.com/supply-chain/2018-08_a-probably-mexican-government-healt--hova-health/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-08_a-probably-mexican-government-healt--hova-health/A few e-commerce sites customers of Shopper Approved Third-Party Breach (October 2018)https://breachnotes.vulnetix.com/supply-chain/2018-10_a-few-e-commerce-sites-customers-of--shopper-approved/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-10_a-few-e-commerce-sites-customers-of--shopper-approved/AC Health Systems and San Diego Family Care (SDFC), CareSouth Carolina, Health Center Partners of Southern California Third-Party Breach (May 2021)https://breachnotes.vulnetix.com/supply-chain/2021-05_ac-health-systems-and-san-diego-family-care-sdfc-caresouth-carolina-health-center-partners-of-southern-california-netgain/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_ac-health-systems-and-san-diego-family-care-sdfc-caresouth-carolina-health-center-partners-of-southern-california-netgain/Accellion FTA Breach — Reserve Bank of New Zealand and ASIC (January 2021)https://breachnotes.vulnetix.com/supply-chain/2021-01_new-zeland-reserve-bank-australian-securities-and-investments-commission-asic-acellion-software/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_new-zeland-reserve-bank-australian-securities-and-investments-commission-asic-acellion-software/Accellion FTA Zero-Day Cl0p Mass Breach — 100+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2021-02_goodwin-procter-qimr-berghofer-medical-research-institute-allens-jones-day-accellion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_goodwin-procter-qimr-berghofer-medical-research-institute-allens-jones-day-accellion/Accellion FTA Zero-Day Cl0p Mass Breach — 100+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2021-02_washington-state-auditor-singtel-university-of-colorado-bombardier-accellion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_washington-state-auditor-singtel-university-of-colorado-bombardier-accellion/Accellion FTA Zero-Day Cl0p Mass Breach — 100+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2021-03_flagstar-bank-accellion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_flagstar-bank-accellion/Accellion FTA Zero-Day Cl0p Mass Breach — 100+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2021-03_qualys-accellion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_qualys-accellion/Accellion FTA Zero-Day Cl0p Mass Breach — 100+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2021-03_royal-dutch-shell-accellion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_royal-dutch-shell-accellion/Accellion FTA Zero-Day Cl0p Mass Breach — 100+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2021-03_trillium-community-health-plan-southern-illinois-university-school-of-medicine-accellion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_trillium-community-health-plan-southern-illinois-university-school-of-medicine-accellion/Accellion FTA Zero-Day Cl0p Mass Breach — 100+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2021-03_university-of-miami-health-accellion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_university-of-miami-health-accellion/Accellion FTA Zero-Day Cl0p Mass Breach — 100+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2021-04_centene-subsidiaries-healthnet-chw-accellion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_centene-subsidiaries-healthnet-chw-accellion/Accellion FTA Zero-Day Cl0p Mass Breach — 100+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2021-04_stanford-university-the-university-of-maryland-baltimore-and-the-university-of-california-at-berkeley-accellion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_stanford-university-the-university-of-maryland-baltimore-and-the-university-of-california-at-berkeley-accellion/Accellion FTA Zero-Day Cl0p Mass Breach — 100+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2021-07_morgan-stanley-guidehouse-accellion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-07_morgan-stanley-guidehouse-accellion/Access Personal Checking Services (APCS) Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_access-personal-checking-services-apcs-intradev/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_access-personal-checking-services-apcs-intradev/Acro Third-Party Breach (March 2022)https://breachnotes.vulnetix.com/supply-chain/2022-03_acro-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-03_acro-not-disclosed/Acrotech Biopharma Inc. Third-Party Breach (May 2024)https://breachnotes.vulnetix.com/supply-chain/2024-05_acrotech-biopharma-inc-cencora-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-05_acrotech-biopharma-inc-cencora-inc/Active Network Blue Bear Platform — Web Skimming Attack on School Stores (2019–2020)https://breachnotes.vulnetix.com/supply-chain/2020-01_schools-active-network/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-01_schools-active-network/Adidas Third-Party Breach (May 2025)https://breachnotes.vulnetix.com/supply-chain/2025-05_adidas-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_adidas-third-party-vendor/ADT Third-Party Breach (October 2024)https://breachnotes.vulnetix.com/supply-chain/2024-10_adt-third-party-business-partner/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-10_adt-third-party-business-partner/Advance Auto Parts Third-Party Breach (May 2024)https://breachnotes.vulnetix.com/supply-chain/2024-05_advance-auto-parts-snowflake/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-05_advance-auto-parts-snowflake/Adventist Health Tulare Third-Party Breach (June 2024)https://breachnotes.vulnetix.com/supply-chain/2024-06_adventist-health-tulare-signature-performance/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-06_adventist-health-tulare-signature-performance/Advocate Aurora Health Web Tracking Pixel Disclosure — 3 Million Patientshttps://breachnotes.vulnetix.com/supply-chain/2022-10_advocate-aurora-health-meta-pixel/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-10_advocate-aurora-health-meta-pixel/AgeSALife and Retirement AS Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_agesalife-and-retirement-as-vodatech-it/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_agesalife-and-retirement-as-vodatech-it/Agility PR Solutions Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_agility-pr-solutions-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_agility-pr-solutions-drift-salesloft/Air Canada mobile app data breach (August 2018)https://breachnotes.vulnetix.com/supply-chain/2018-08_air-canada-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-08_air-canada-not-disclosed/Air France-KLM Group Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_air-france-klm-group-salesforce/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_air-france-klm-group-salesforce/Air India SITA Passenger Service System Breach — 4.5 Million Passengershttps://breachnotes.vulnetix.com/supply-chain/2021-02_air-india-sita-pss-breach/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_air-india-sita-pss-breach/Airbus Third-Party Breach (September 2023)https://breachnotes.vulnetix.com/supply-chain/2023-09_airbus-turkish-airlines/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-09_airbus-turkish-airlines/Airbus, Air Caraïbes, ArcelorMittal, BT, Luxottica, Kuehne + Nagel, Ministère de la Justice français, New Zealand Police, PWC Russia, Salomon, Sanofi, and Sephora (possibly) Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_airbus-air-cara-bes-arcelormittal-bt-luxottica-kuehne-nagel-minist-re-de-la-justice-fran-ais-new-zealand-police-pwc-russia-salomon-sanofi-and-sephora-possibly-centreon/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_airbus-air-cara-bes-arcelormittal-bt-luxottica-kuehne-nagel-minist-re-de-la-justice-fran-ais-new-zealand-police-pwc-russia-salomon-sanofi-and-sephora-possibly-centreon/Akamai / CrowdStrike / Wikipedia / Datadog Security Labshttps://breachnotes.vulnetix.com/supply-chain/2024-03_xz-utils-backdoor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_xz-utils-backdoor/Alexion Pharmaceuticals Trade Limited Third-Party Breach (May 2024)https://breachnotes.vulnetix.com/supply-chain/2024-05_alexion-pharmaceuticals-trade-limited-eclinical-solutions-llc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-05_alexion-pharmaceuticals-trade-limited-eclinical-solutions-llc/Allegheny Health Network Third-Party Breach (January 2025)https://breachnotes.vulnetix.com/supply-chain/2025-01_allegheny-health-network-intrasystems-llc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_allegheny-health-network-intrasystems-llc/Allianz Life Third-Party Breach (July 2025)https://breachnotes.vulnetix.com/supply-chain/2025-07_allianz-life-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-07_allianz-life-third-party-vendor/Amadeus Flight Booking System Vulnerability (January 2019)https://breachnotes.vulnetix.com/supply-chain/2019-01_141-airlines-that-partner-with-amade-amadeus/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-01_141-airlines-that-partner-with-amade-amadeus/Amazon Insider Data Leak (January 2020)https://breachnotes.vulnetix.com/supply-chain/2020-01_amazon-customers-amazon/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-01_amazon-customers-amazon/Amazon, Ebay, Shopify, Stripe, PayPal Third-Party Breach (March 2020)https://breachnotes.vulnetix.com/supply-chain/2020-03_amazon-ebay-shopify-stripe-paypal-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-03_amazon-ebay-shopify-stripe-paypal-not-disclosed/Amazon, Flipkart, Myntra, Swiggy, and Zomato Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_amazon-flipkart-myntra-swiggy-and-zomato-bizongo/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_amazon-flipkart-myntra-swiggy-and-zomato-bizongo/AMCA (American Medical Collection Agency) Third-Party Breach — Quest Diagnostics, LabCorp, 20M Patientshttps://breachnotes.vulnetix.com/supply-chain/2019-05_amca-quest-labcorp-breach/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-05_amca-quest-labcorp-breach/American Airlines, Ford, Maryland Department of Health, New York City Municipal Transportation Authority, and the state of Indiana. Third-Party Breach (August 2021)https://breachnotes.vulnetix.com/supply-chain/2021-08_american-airlines-ford-maryland-depa-microsoft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-08_american-airlines-ford-maryland-depa-microsoft/American Esoteric Laboratories, Sunrise Medical Laboratories, and other labs via AMCA Breachhttps://breachnotes.vulnetix.com/supply-chain/2019-07_american-esoteric-laboratories-sunri-american-medical-collect/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-07_american-esoteric-laboratories-sunri-american-medical-collect/American Express Third-Party Breach (March 2024)https://breachnotes.vulnetix.com/supply-chain/2024-03_american-express-a-merchant-processor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_american-express-a-merchant-processor/American Health Imaging, Banner Medical Group, Belle Point Dental, Duck Creek Family Dental, Partners In Periodontics, and 652 organizations Third-Party Breach (July 2022)https://breachnotes.vulnetix.com/supply-chain/2022-07_american-health-imaging-banner-medical-group-belle-point-dental-duck-creek-family-dental-partners-in-periodontics-and-652-organizations-professional-finance-company/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-07_american-health-imaging-banner-medical-group-belle-point-dental-duck-creek-family-dental-partners-in-periodontics-and-652-organizations-professional-finance-company/AmeriGas Third-Party Breach (June 2021)https://breachnotes.vulnetix.com/supply-chain/2021-06_amerigas-j-j-keller/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-06_amerigas-j-j-keller/Amerita Third-Party Breach (September 2023)https://breachnotes.vulnetix.com/supply-chain/2023-09_amerita-pharmerica/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-09_amerita-pharmerica/Ames parking ticket payments Third-Party Breach (September 2019)https://breachnotes.vulnetix.com/supply-chain/2019-09_ames-parking-ticket-payments-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-09_ames-parking-ticket-payments-click2gov/AMG Healthcare Management Services, Marshall Medical Center, South Coast ER Medical Group and more⦠Third-Party Breach (April 2024)https://breachnotes.vulnetix.com/supply-chain/2024-04_amg-healthcare-management-services-marshall-medical-center-south-coast-er-medical-group-and-more-designed-receivable-solution/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-04_amg-healthcare-management-services-marshall-medical-center-south-coast-er-medical-group-and-more-designed-receivable-solution/Anadolu Isuzu Automotive Industry and Trade Inc. Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_anadolu-isuzu-automotive-industry-and-trade-inc-mivento-it-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_anadolu-isuzu-automotive-industry-and-trade-inc-mivento-it-services/Anesthesia Associates of El Paso PA Third-Party Breach (August 2022)https://breachnotes.vulnetix.com/supply-chain/2022-08_anesthesia-associates-of-el-paso-pa-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_anesthesia-associates-of-el-paso-pa-not-disclosed/Angelo Gordon & Co., Graham Capital Management, Fortress Investment Group LLC, Centerbridge Partners and Pacific Investment Management Co. Third-Party Breach (July 2020)https://breachnotes.vulnetix.com/supply-chain/2020-07_angelo-gordon-co-graham-capital-mana-m-j-brunner/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-07_angelo-gordon-co-graham-capital-mana-m-j-brunner/Anthem MaineHealth Third-Party Breach (September 2022)https://breachnotes.vulnetix.com/supply-chain/2022-09_anthem-mainehealth-alight-com-choice-health-pre/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-09_anthem-mainehealth-alight-com-choice-health-pre/Anthem, Humana Third-Party Breach (October 2021)https://breachnotes.vulnetix.com/supply-chain/2021-10_anthem-humana-practicemax/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-10_anthem-humana-practicemax/Apple Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_apple-quanta/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_apple-quanta/Apple Valley Clinic Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_apple-valley-clinic-netgain/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_apple-valley-clinic-netgain/Apple, Google, Amazon, Citibank Third-Party Breach (October 2020)https://breachnotes.vulnetix.com/supply-chain/2020-10_apple-google-amazon-citibank-nitro/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-10_apple-google-amazon-citibank-nitro/Applied Materials Third-Party Breach (February 2023)https://breachnotes.vulnetix.com/supply-chain/2023-02_applied-materials-rise-interactive/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-02_applied-materials-rise-interactive/Aptihealth Third-Party Breach (June 2024)https://breachnotes.vulnetix.com/supply-chain/2024-06_aptihealth-sisense/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-06_aptihealth-sisense/Ardagh Clients Third-Party Breach (May 2021)https://breachnotes.vulnetix.com/supply-chain/2021-05_ardagh-clients-ardagh/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_ardagh-clients-ardagh/Arietis Health Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_arietis-health-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_arietis-health-ipswitch-inc/Arlington Skin Third-Party Breach (July 2022)https://breachnotes.vulnetix.com/supply-chain/2022-07_arlington-skin-virtual-private-network-solu/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-07_arlington-skin-virtual-private-network-solu/Armed Forces Communications, Electronics Association and the US Geospatial Intelligence Foundation Third-Party Breach (March 2021)https://breachnotes.vulnetix.com/supply-chain/2021-03_armed-forces-communications-electronics-association-and-the-us-geospatial-intelligence-foundation-spargo/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_armed-forces-communications-electronics-association-and-the-us-geospatial-intelligence-foundation-spargo/âRoyal Mail Third-Party Breach (April 2025)https://breachnotes.vulnetix.com/supply-chain/2025-04_royal-mail-spectos-gmbh/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-04_royal-mail-spectos-gmbh/Ascension Health Former Business Partner EHR Data Breachhttps://breachnotes.vulnetix.com/supply-chain/2025-04_ascension-former-partner-ehr/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-04_ascension-former-partner-ehr/Ascension Third-Party Breach (April 2025)https://breachnotes.vulnetix.com/supply-chain/2025-04_ascension-former-business-partner/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-04_ascension-former-business-partner/Ascension Third-Party Breach (January 2019)https://breachnotes.vulnetix.com/supply-chain/2019-01_ascension-opticsml/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-01_ascension-opticsml/ASIC Accellion FTA Breach — Australian Securities Regulator File Transfer Compromisehttps://breachnotes.vulnetix.com/supply-chain/2021-01_asic-accellion-fta-australia/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_asic-accellion-fta-australia/ASUS Live Update ShadowHammer Supply Chain Attack — Lazarus Group / OPERATION ShadowHammerhttps://breachnotes.vulnetix.com/supply-chain/2019-03_asus-shadowhammer-lazarus/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-03_asus-shadowhammer-lazarus/AT&T Third-Party Breach (July 2024)https://breachnotes.vulnetix.com/supply-chain/2024-07_at-t-snowflake/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-07_at-t-snowflake/AT&T Third-Party Breach (March 2023)https://breachnotes.vulnetix.com/supply-chain/2023-03_at-t-unknown/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-03_at-t-unknown/Atlassian Third-Party Breach (February 2023)https://breachnotes.vulnetix.com/supply-chain/2023-02_atlassian-envoy/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-02_atlassian-envoy/Atlassian, Procter & Gamble, GoDaddy, The Washington Post Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_atlassian-procter-gamble-godaddy-the-washington-post-codecov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_atlassian-procter-gamble-godaddy-the-washington-post-codecov/Atrium Health / AccuDoc Solutions Data Breach (2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_atrium-health-accudoc-solutions-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_atrium-health-accudoc-solutions-inc/Audiens Third-Party Breach (February 2024)https://breachnotes.vulnetix.com/supply-chain/2024-02_audiens-viamedis/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_audiens-viamedis/Austin ISD Third-Party Breach (March 2021)https://breachnotes.vulnetix.com/supply-chain/2021-03_austin-isd-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_austin-isd-not-disclosed/Australian Information Commissioner (OAIC) Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_australian-information-commissioner-oaic-hwl-ebsworth-lawyers/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_australian-information-commissioner-oaic-hwl-ebsworth-lawyers/Automobile Plan Operational Vehicle Rental Trade Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_automobile-plan-operational-vehicle-rental-trade-vodatech-it/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_automobile-plan-operational-vehicle-rental-trade-vodatech-it/AutoNation Third-Party Breach (July 2024)https://breachnotes.vulnetix.com/supply-chain/2024-07_autonation-cdk-global/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-07_autonation-cdk-global/Avamere Health Services Third-Party Breach — 75+ Long-Term Care Organizationshttps://breachnotes.vulnetix.com/supply-chain/2022-01_a-one-home-health-services-bend-transitional-care-infinity-rehab-salem-transitional-care-the-arbor-at-avamere-court-and-75-organizations-avamere-health-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-01_a-one-home-health-services-bend-transitional-care-infinity-rehab-salem-transitional-care-the-arbor-at-avamere-court-and-75-organizations-avamere-health-services/Axios npm Supply Chain Compromise - Sapphire Sleet (DPRK) RAT Deliveryhttps://breachnotes.vulnetix.com/supply-chain/2026-03_axios-npm-sapphire-sleet-dprk/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-03_axios-npm-sapphire-sleet-dprk/Bank of America Third-Party Breach (May 2020)https://breachnotes.vulnetix.com/supply-chain/2020-05_bank-of-america-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-05_bank-of-america-not-disclosed/Bank, Axis, ICICI, IndusInd, RBL Third-Party Breach (May 2019)https://breachnotes.vulnetix.com/supply-chain/2019-05_bank-axis-icici-indusind-rbl-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-05_bank-axis-icici-indusind-rbl-not-disclosed/Baptist Health System, Resolute Health Hospital, The Hospitals of Providence Memorial Campus, Valley Baptist Medical Center – Brownsville, Valley Baptist Medical Center – Harlingen Third-Party Breach (June 2022)https://breachnotes.vulnetix.com/supply-chain/2022-06_baptist-health-system-resolute-health-hospital-the-hospitals-of-providence-memorial-campus-valley-baptist-medical-center-brownsville-valley-baptist-medical-center-harlingen-conifer-revenue-cycle-soluti/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-06_baptist-health-system-resolute-health-hospital-the-hospitals-of-providence-memorial-campus-valley-baptist-medical-center-brownsville-valley-baptist-medical-center-harlingen-conifer-revenue-cycle-soluti/Barracuda Email Security Gateway Zero-Day CVE-2023-2868 — UNC4841 China APThttps://breachnotes.vulnetix.com/supply-chain/2022-10_barracuda-esg-cve-2023-2868/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-10_barracuda-esg-cve-2023-2868/Bay Area Anesthesia Third-Party Breach (March 2024)https://breachnotes.vulnetix.com/supply-chain/2024-03_bay-area-anesthesia-bowden-barlow-law-p-a/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_bay-area-anesthesia-bowden-barlow-law-p-a/Bay Area Heart Center Third-Party Breach (February 2024)https://breachnotes.vulnetix.com/supply-chain/2024-02_bay-area-heart-center-bowden-barlow-law-p-a/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_bay-area-heart-center-bowden-barlow-law-p-a/Baylor College of Medicine Third-Party Breach (March 2024)https://breachnotes.vulnetix.com/supply-chain/2024-03_baylor-college-of-medicine-advarra/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_baylor-college-of-medicine-advarra/Baylor Scott & White Medical Center – Frisco Third-Party Breach (December 2018)https://breachnotes.vulnetix.com/supply-chain/2018-12_baylor-scott-white-medical-center-fr-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-12_baylor-scott-white-medical-center-fr-not-disclosed/BeÅiktaÅ Sportive Products Industry and Trade AS Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_be-ikta-sportive-products-industry-and-trade-as-vodatech-it/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_be-ikta-sportive-products-industry-and-trade-as-vodatech-it/Beaumont Health Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_beaumont-health-epic-software/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_beaumont-health-epic-software/Belden Industrial Networking Cyberattack — Employee and Partner Data Stolen (November 2020)https://breachnotes.vulnetix.com/supply-chain/2020-11_customers-of-belden-belden/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-11_customers-of-belden-belden/BenefitMall Phishing Breach Affecting Multiple Health Insurers (2018–2019)https://breachnotes.vulnetix.com/supply-chain/2019-01_highmark-bcbs-aetna-emblem-health-hu-benefitmall/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-01_highmark-bcbs-aetna-emblem-health-hu-benefitmall/BevMo / NCR Corp. E-Commerce Payment Breach (2018)https://breachnotes.vulnetix.com/supply-chain/2018-12_bevmo-ncr-corp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-12_bevmo-ncr-corp/BeyondTrust Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_beyondtrust-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_beyondtrust-drift-salesloft/BHIM App / CSC e-Governance Services AWS S3 Misconfiguration (May 2020)https://breachnotes.vulnetix.com/supply-chain/2020-05_bhim-wallet-app-csc-e-governance-service/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-05_bhim-wallet-app-csc-e-governance-service/Bilt Third-Party Breach (July 2024)https://breachnotes.vulnetix.com/supply-chain/2024-07_bilt-evolve-bank-trust/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-07_bilt-evolve-bank-trust/Biotel Heart Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_biotel-heart-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_biotel-heart-not-disclosed/BitPay Third-Party Breach (November 2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_bitpay-right9ctrl/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_bitpay-right9ctrl/Black Duck Software, Inc. Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_black-duck-software-inc-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_black-duck-software-inc-drift-salesloft/Blackbaud CRM Ransomware/Data Theft (Nonprofits, Universities, Healthcare)https://breachnotes.vulnetix.com/supply-chain/2020-07_blackbaud-crm-ransomware/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-07_blackbaud-crm-ransomware/Blackbaud Ransomware Attack Affecting Universities Globally (May–July 2020)https://breachnotes.vulnetix.com/supply-chain/2020-07_university-of-manitoba-university-of-blackbaud/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-07_university-of-manitoba-university-of-blackbaud/Bleeping Computerhttps://breachnotes.vulnetix.com/supply-chain/2018-05_chili-s-grill-bar-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-05_chili-s-grill-bar-not-disclosed/Bleeping Computerhttps://breachnotes.vulnetix.com/supply-chain/2018-05_universal-music-group-agilisium/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-05_universal-music-group-agilisium/BleepingComputerhttps://breachnotes.vulnetix.com/supply-chain/2025-05_dragonforce-simplehelp-msp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_dragonforce-simplehelp-msp/BleepingComputer / Fortra / CISAhttps://breachnotes.vulnetix.com/supply-chain/2023-01_goanywhere-clop/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-01_goanywhere-clop/Blue Cross and Blue Shield of Massachusetts Third-Party Breach (June 2022)https://breachnotes.vulnetix.com/supply-chain/2022-06_blue-cross-and-blue-shield-of-massachusetts-lifeworks-us/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-06_blue-cross-and-blue-shield-of-massachusetts-lifeworks-us/Blue Cross and Blue Shield of Minnesota and Blue Plus Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_blue-cross-and-blue-shield-of-minnesota-and-blue-plus-welltok/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_blue-cross-and-blue-shield-of-minnesota-and-blue-plus-welltok/Blue Cross Blue Shield of Arizona (AZ Blue) Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_blue-cross-blue-shield-of-arizona-az-blue-cognizant-technology-solutio/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_blue-cross-blue-shield-of-arizona-az-blue-cognizant-technology-solutio/Blue Cross Blue Shield of Arizona, Clover Health, Kaiser Permanente, Point32Health, UPMC Health Plan, and 33 healthcare organizations Third-Party Breach (April 2022)https://breachnotes.vulnetix.com/supply-chain/2022-04_blue-cross-blue-shield-of-arizona-clover-health-kaiser-permanente-point32health-upmc-health-plan-and-33-healthcare-organizations-onetouchpoint/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-04_blue-cross-blue-shield-of-arizona-clover-health-kaiser-permanente-point32health-upmc-health-plan-and-33-healthcare-organizations-onetouchpoint/Blue Cross Blue Shield of Kansas City Third-Party Breach (June 2021)https://breachnotes.vulnetix.com/supply-chain/2021-06_blue-cross-blue-shield-of-kansas-cit-logicgate/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-06_blue-cross-blue-shield-of-kansas-cit-logicgate/Blue Cross Blue Shield of Rhode Island Third-Party Breach (September 2018)https://breachnotes.vulnetix.com/supply-chain/2018-09_blue-cross-blue-shield-of-rhode-isla-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-09_blue-cross-blue-shield-of-rhode-isla-not-disclosed/Blue Shield of California Third-Party Breach (August 2024)https://breachnotes.vulnetix.com/supply-chain/2024-08_blue-shield-of-california-young-consulting/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-08_blue-shield-of-california-young-consulting/Boeing Employees' Credit Union Third-Party Breach (July 2022)https://breachnotes.vulnetix.com/supply-chain/2022-07_boeing-employees-credit-union-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-07_boeing-employees-credit-union-not-disclosed/Bonobos Third-Party Breach (January 2021)https://breachnotes.vulnetix.com/supply-chain/2021-01_bonobos-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_bonobos-not-disclosed/Boost Mobile Third-Party Breach (February 2023)https://breachnotes.vulnetix.com/supply-chain/2023-02_boost-mobile-dish-network-corporation/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-02_boost-mobile-dish-network-corporation/BORN Ontario Third-Party Breach (September 2023)https://breachnotes.vulnetix.com/supply-chain/2023-09_born-ontario-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-09_born-ontario-ipswitch-inc/Boston Children's Health Physicians Third-Party Breach (October 2024)https://breachnotes.vulnetix.com/supply-chain/2024-10_boston-children-s-health-physicians-axispoint-technology-solutio/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-10_boston-children-s-health-physicians-axispoint-technology-solutio/Boston Medical Center Patient Records Breach via MDF Transcription Serviceshttps://breachnotes.vulnetix.com/supply-chain/2014-04_boston-medical-mdf-transcription-servic/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2014-04_boston-medical-mdf-transcription-servic/British Airways Magecart payment card skimming attack (August–September 2018)https://breachnotes.vulnetix.com/supply-chain/2018-09_british-airways-still-in-investigation/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-09_british-airways-still-in-investigation/Broadvoice VoIP Data Exposure (October 2020)https://breachnotes.vulnetix.com/supply-chain/2020-10_broadvoice-customers-broadvoice/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-10_broadvoice-customers-broadvoice/Brunswick County Schools Third-Party Breach (February 2020)https://breachnotes.vulnetix.com/supply-chain/2020-02_brunswick-county-schools-interactive-medical-syst/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-02_brunswick-county-schools-interactive-medical-syst/Buffalo N.Y. Area Hospitals, Innova Health, NorthShore University Health System Third-Party Breach (September 2020)https://breachnotes.vulnetix.com/supply-chain/2020-09_buffalo-n-y-area-hospitals-innova-he-blackbaud/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-09_buffalo-n-y-area-hospitals-innova-he-blackbaud/BugCrowd Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_bugcrowd-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_bugcrowd-drift-salesloft/Burman & Zuckerbrod Ophthalmology Associates, Fishman Vision Third-Party Breach (June 2022)https://breachnotes.vulnetix.com/supply-chain/2022-06_burman-zuckerbrod-ophthalmology-associates-fishman-vision-eyecare-leaders/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-06_burman-zuckerbrod-ophthalmology-associates-fishman-vision-eyecare-leaders/Bybit Cryptocurrency Exchange Hack via Safe{Wallet} Supply Chainhttps://breachnotes.vulnetix.com/supply-chain/2025-02_bybit-safe-wallet-lazarus/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-02_bybit-safe-wallet-lazarus/BYM Fashion, Lizay Kuyumculuk, Aker Magazacılık and more⦠Third-Party Breach (May 2024)https://breachnotes.vulnetix.com/supply-chain/2024-05_bym-fashion-lizay-kuyumculuk-aker-magazac-l-k-and-more-tekrom-technology-a-s-t-soft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-05_bym-fashion-lizay-kuyumculuk-aker-magazac-l-k-and-more-tekrom-technology-a-s-t-soft/Cable ONE Employee Email Account Breachhttps://breachnotes.vulnetix.com/supply-chain/2019-08_cable-one-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-08_cable-one-not-disclosed/California Physicians' Service d/b/a Blue Shield of California Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_california-physicians-service-d-b-a-blue-shield-of-california-medical-eye-services-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_california-physicians-service-d-b-a-blue-shield-of-california-medical-eye-services-inc/CallX Customers (possibly Lendingtree, Liberty Mutual Insurance and Vivint among the clients) Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_callx-customers-possibly-lendingtree-liberty-mutual-insurance-and-vivint-among-the-clients-callx/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_callx-customers-possibly-lendingtree-liberty-mutual-insurance-and-vivint-among-the-clients-callx/CalPERS (California Public Employees' Retirement System) Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_calpers-california-public-employees-retirement-system-pbi-research-services-pbi/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_calpers-california-public-employees-retirement-system-pbi-research-services-pbi/Calviva Health Third-Party Breach (March 2021)https://breachnotes.vulnetix.com/supply-chain/2021-03_calviva-health-health-net-community-solutio/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_calviva-health-health-net-community-solutio/Canada Post Third-Party Breach (May 2021)https://breachnotes.vulnetix.com/supply-chain/2021-05_canada-post-commport-communications/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_canada-post-commport-communications/Cancer Centers of Southwest Oklahoma inc. Renown Health, Northwestern Memorial HealthCare Third-Party Breach (June 2021)https://breachnotes.vulnetix.com/supply-chain/2021-06_cancer-centers-of-southwest-oklahoma-elekta/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-06_cancer-centers-of-southwest-oklahoma-elekta/CaptureRx Ransomware Breach — 1.9M Patients, 340B Healthcare Providers Across UShttps://breachnotes.vulnetix.com/supply-chain/2021-05_upmc-cole-hidalgo-medical-services-t-capturerx/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_upmc-cole-hidalgo-medical-services-t-capturerx/Carson City Third-Party Breach (February 2020)https://breachnotes.vulnetix.com/supply-chain/2020-02_carson-city-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-02_carson-city-click2gov/Catholic Health Third-Party Breach (August 2021)https://breachnotes.vulnetix.com/supply-chain/2021-08_catholic-health-capturerx/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-08_catholic-health-capturerx/Catholic Health Third-Party Breach (May 2025)https://breachnotes.vulnetix.com/supply-chain/2025-05_catholic-health-serviceaide/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_catholic-health-serviceaide/Catholic Medical Center (CMC) Third-Party Breach (April 2024)https://breachnotes.vulnetix.com/supply-chain/2024-04_catholic-medical-center-cmc-lamont-hanley-associates/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-04_catholic-medical-center-cmc-lamont-hanley-associates/Cato Networks Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_cato-networks-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_cato-networks-drift-salesloft/CCleaner Supply Chain Backdoor — 2.27 Million Users, Stage 2 Targets Samsung/Intel/Sonyhttps://breachnotes.vulnetix.com/supply-chain/2017-09_samsung-sony-asus-intel-vmware-o2-si-ccleaner/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-09_samsung-sony-asus-intel-vmware-o2-si-ccleaner/Celcius Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_celcius-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_celcius-not-disclosed/Celik Motor Trade Joint Stock Company Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_celik-motor-trade-joint-stock-company-mivento-it-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_celik-motor-trade-joint-stock-company-mivento-it-services/Celsius Third-Party Breach (July 2022)https://breachnotes.vulnetix.com/supply-chain/2022-07_celsius-customer-io/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-07_celsius-customer-io/CenterPoint Energy Third-Party Breach (January 2025)https://breachnotes.vulnetix.com/supply-chain/2025-01_centerpoint-energy-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_centerpoint-energy-third-party-vendor/Centers for Medicare & Medicaid Services (CMS) Third-Party Breach (September 2024)https://breachnotes.vulnetix.com/supply-chain/2024-09_centers-for-medicare-medicaid-services-cms-wisconsin-physicians-service/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-09_centers-for-medicare-medicaid-services-cms-wisconsin-physicians-service/Central Banking / Central Bank of the Bahamashttps://breachnotes.vulnetix.com/supply-chain/2018-06_the-central-bank-of-the-bahamas-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-06_the-central-bank-of-the-bahamas-not-disclosed/Central Maine Medical Center Third-Party Breach (March 2022)https://breachnotes.vulnetix.com/supply-chain/2022-03_central-maine-medical-center-shields-health-care-group-in/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-03_central-maine-medical-center-shields-health-care-group-in/CenturyLink Third-Party Breach (October 2019)https://breachnotes.vulnetix.com/supply-chain/2019-10_centurylink-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-10_centurylink-not-disclosed/CF Medical Third-Party Breach (October 2024)https://breachnotes.vulnetix.com/supply-chain/2024-10_cf-medical-financial-business-and-consu/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-10_cf-medical-financial-business-and-consu/Chanel Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_chanel-salesforce/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_chanel-salesforce/Chatham-Kent Health Alliance Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_chatham-kent-health-alliance-transform/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_chatham-kent-health-alliance-transform/Checkout.com Third-Party Breach (November 2025)https://breachnotes.vulnetix.com/supply-chain/2025-11_checkout-com-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-11_checkout-com-third-party-vendor/Chess.com Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_chess-com-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_chess-com-third-party-vendor/Child Health Plan Plus (CHP+) Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_child-health-plan-plus-chp-ibm/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_child-health-plan-plus-chp-ibm/China Railway Third-Party Breach (February 2019)https://breachnotes.vulnetix.com/supply-chain/2019-02_china-railway-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-02_china-railway-not-disclosed/Chubb Third-Party Breach (March 2020)https://breachnotes.vulnetix.com/supply-chain/2020-03_chubb-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-03_chubb-not-disclosed/Ciox Health Third-Party Breach — Baptist Memorial, Children's Healthcare of Atlanta, Hoag, 28+ Health Systemshttps://breachnotes.vulnetix.com/supply-chain/2022-01_baptist-memorial-health-care-butler-health-systems-children-s-healthcare-of-atlanta-hoag-health-system-and-28-organizations-ciox-health/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-01_baptist-memorial-health-care-butler-health-systems-children-s-healthcare-of-atlanta-hoag-health-system-and-28-organizations-ciox-health/CISA / NCSC / Wikipedia / Varonishttps://breachnotes.vulnetix.com/supply-chain/2021-07_kaseya-vsa-revil/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-07_kaseya-vsa-revil/CISA Advisory AA23-158A / Mandiant / Wikipediahttps://breachnotes.vulnetix.com/supply-chain/2023-05_moveit-transfer-clop/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_moveit-transfer-clop/Cisco Duo Third-Party Breach (April 2024)https://breachnotes.vulnetix.com/supply-chain/2024-04_cisco-duo-unknown-telephony-provider/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-04_cisco-duo-unknown-telephony-provider/Cisco Source Code Stolen via Trivy Supply Chain Attack (TeamPCP)https://breachnotes.vulnetix.com/supply-chain/2026-04_cisco-trivy-teampcp-source-code/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-04_cisco-trivy-teampcp-source-code/Cisco Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_cisco-salesforce/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_cisco-salesforce/Citrix Third-Party Breach (July 2020)https://breachnotes.vulnetix.com/supply-chain/2020-07_citrix-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-07_citrix-not-disclosed/City of Bakersfield Third-Party Breach (November 2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_city-of-bakersfield-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_city-of-bakersfield-click2gov/City of Broken Arrow, Deerfield Beach, Palm Bay, Milton, Bakersfield, Coral Springs, Pocatello, Ames online payment system Third-Party Breach (September 2019)https://breachnotes.vulnetix.com/supply-chain/2019-09_city-of-broken-arrow-deerfield-beach-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-09_city-of-broken-arrow-deerfield-beach-click2gov/City of Kirkland, Monroe, Redmonde, Seattle, Lakewood Water District, Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_city-of-kirkland-monroe-redmonde-seattle-lakewood-water-district-afts/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_city-of-kirkland-monroe-redmonde-seattle-lakewood-water-district-afts/City of Marietta Third-Party Breach (December 2019)https://breachnotes.vulnetix.com/supply-chain/2019-12_city-of-marietta-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-12_city-of-marietta-click2gov/City of Monroe, Kirkland, Redmond Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_city-of-monroe-kirkland-redmond-automatic-funds-transfer-ser/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_city-of-monroe-kirkland-redmond-automatic-funds-transfer-ser/City of Odessa Third-Party Breach (October 2020)https://breachnotes.vulnetix.com/supply-chain/2020-10_city-of-odessa-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-10_city-of-odessa-click2gov/City of Saint John Third-Party Breach (December 2018)https://breachnotes.vulnetix.com/supply-chain/2018-12_city-of-saint-john-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-12_city-of-saint-john-click2gov/City of Saint John, NB Third-Party Breach (January 2019)https://breachnotes.vulnetix.com/supply-chain/2019-01_city-of-saint-john-nb-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-01_city-of-saint-john-nb-click2gov/City of San Angelo Third-Party Breach (November 2019)https://breachnotes.vulnetix.com/supply-chain/2019-11_city-of-san-angelo-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-11_city-of-san-angelo-click2gov/City of Sioux Third-Party Breach (December 2019)https://breachnotes.vulnetix.com/supply-chain/2019-12_city-of-sioux-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-12_city-of-sioux-click2gov/City of York Council Third-Party Breach (November 2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_city-of-york-council-appware/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_city-of-york-council-appware/Clear Spring Health Third-Party Breach (July 2024)https://breachnotes.vulnetix.com/supply-chain/2024-07_clear-spring-health-change-healthcare/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-07_clear-spring-health-change-healthcare/Cleo MFT zero-day exploitation by Clop ransomware (CVE-2024-50623 / CVE-2024-55956)https://breachnotes.vulnetix.com/supply-chain/2024-12_cleo-mft-clop/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-12_cleo-mft-clop/Click Studios Passwordstate Supply Chain Attack — Malicious Update, 29,000 Companieshttps://breachnotes.vulnetix.com/supply-chain/2021-04_click-studios-customers-click-studios/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_click-studios-customers-click-studios/Clinical Pathology Laboratories via American Medical Collection Agency (AMCA) Breachhttps://breachnotes.vulnetix.com/supply-chain/2019-07_clinical-pathology-laboratories-american-medical-collect/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-07_clinical-pathology-laboratories-american-medical-collect/Cloudflare Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_cloudflare-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_cloudflare-drift-salesloft/CNN Businesshttps://breachnotes.vulnetix.com/supply-chain/2018-04_bestbuy-sears-kmart-delta-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-04_bestbuy-sears-kmart-delta-not-disclosed/Codecov Bash Uploader Supply Chain Attack — CI Token Theft, Rapid7/Twilio/Monday.com/Mercari Among Victimshttps://breachnotes.vulnetix.com/supply-chain/2021-05_monday-com-rapid7-twilio-mercari-codecov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_monday-com-rapid7-twilio-mercari-codecov/Codecov Bash Uploader Supply Chain Attack — CI/CD Credential Exfiltrationhttps://breachnotes.vulnetix.com/supply-chain/2021-04_codecov-bash-uploader-supply-chain/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_codecov-bash-uploader-supply-chain/Codecov Bash Uploader Supply Chain Attack — CircleCI, Twilio, Atlassian, Confluent Downstreamhttps://breachnotes.vulnetix.com/supply-chain/2021-01_codecov-bash-uploader/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_codecov-bash-uploader/Cognizant's clients Third-Party Breach (April 2020)https://breachnotes.vulnetix.com/supply-chain/2020-04_cognizant-s-clients-cognizant/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-04_cognizant-s-clients-cognizant/Coinbase Third-Party Breach (June 2025)https://breachnotes.vulnetix.com/supply-chain/2025-06_coinbase-taskus/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-06_coinbase-taskus/Coles Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_coles-latitude-financial-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_coles-latitude-financial-services/Colorado Springs Utilities Third-Party Breach (June 2022)https://breachnotes.vulnetix.com/supply-chain/2022-06_colorado-springs-utilities-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-06_colorado-springs-utilities-not-disclosed/Community Care Physicians Third-Party Breach (February 2020)https://breachnotes.vulnetix.com/supply-chain/2020-02_community-care-physicians-bst/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-02_community-care-physicians-bst/Community Health Systems GoAnywhere MFT Breach (Cl0p, CVE-2023-0669)https://breachnotes.vulnetix.com/supply-chain/2023-02_community-health-systems-goanywhere-mft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-02_community-health-systems-goanywhere-mft/ConnectWise ScreenConnect CVE-2024-1709 Auth Bypass — Mass Exploitation by Multiple Threat Actorshttps://breachnotes.vulnetix.com/supply-chain/2024-02_connectwise-screenconnect-auth-bypass/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_connectwise-screenconnect-auth-bypass/ContentSquare Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_contentsquare-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_contentsquare-drift-salesloft/Continuum Health Alliance Third-Party Breach (May 2024)https://breachnotes.vulnetix.com/supply-chain/2024-05_continuum-health-alliance-consensus-medical-group/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-05_continuum-health-alliance-consensus-medical-group/Cook County Health Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_cook-county-health-perry-johnson-associates-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_cook-county-health-perry-johnson-associates-inc/Cornell University, Ithaca College, Virginia Tech University, SUNY Oswego, Colorado State University, Loyola University Chicago and McMaster University Third-Party Breach (March 2023)https://breachnotes.vulnetix.com/supply-chain/2023-03_cornell-university-ithaca-college-virginia-tech-university-suny-oswego-colorado-state-university-loyola-university-chicago-and-mcmaster-university-audienceview/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-03_cornell-university-ithaca-college-virginia-tech-university-suny-oswego-colorado-state-university-loyola-university-chicago-and-mcmaster-university-audienceview/Cornerstone Home Lending Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_cornerstone-home-lending-unknown/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_cornerstone-home-lending-unknown/CoxHealth Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_coxhealth-intellihartx-llc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_coxhealth-intellihartx-llc/Crouse Health in Syracuse Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_crouse-health-in-syracuse-perry-johnson-associates-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_crouse-health-in-syracuse-perry-johnson-associates-inc/CSO Onlinehttps://breachnotes.vulnetix.com/supply-chain/2017-07_equifax-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-07_equifax-not-disclosed/Cultura Third-Party Breach (September 2024)https://breachnotes.vulnetix.com/supply-chain/2024-09_cultura-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-09_cultura-third-party-vendor/Current, former and prospective employees of its customers. Third-Party Breach (February 2025)https://breachnotes.vulnetix.com/supply-chain/2025-02_current-former-and-prospective-employees-of-its-customers-disa-global-solutions/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-02_current-former-and-prospective-employees-of-its-customers-disa-global-solutions/Customers of 74 banks and credit unions served by Marquis Software Solutions Third-Party Breach (December 2025)https://breachnotes.vulnetix.com/supply-chain/2025-12_customers-of-74-banks-and-credit-unions-served-by-marquis-software-solutions-marquis-software-solutions/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-12_customers-of-74-banks-and-credit-unions-served-by-marquis-software-solutions-marquis-software-solutions/CVS Health Third-Party Breach (June 2021)https://breachnotes.vulnetix.com/supply-chain/2021-06_cvs-health-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-06_cvs-health-not-disclosed/CyberArk Software Ltd. Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_cyberark-software-ltd-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_cyberark-software-ltd-drift-salesloft/D.C. Department of Insurance, Securities and Banking (DISB) Third-Party Breach (April 2024)https://breachnotes.vulnetix.com/supply-chain/2024-04_d-c-department-of-insurance-securities-and-banking-disb-tyler-technologies/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-04_d-c-department-of-insurance-securities-and-banking-disb-tyler-technologies/Dagi Clothing Industry and Trade As Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_dagi-clothing-industry-and-trade-as-vodatech-it/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_dagi-clothing-industry-and-trade-as-vodatech-it/Datadog RPM Signing Key Exposed via CircleCI Breachhttps://breachnotes.vulnetix.com/supply-chain/2023-01_datadog-circleci/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-01_datadog-circleci/DataHEALTH Third-Party Breach (March 2022)https://breachnotes.vulnetix.com/supply-chain/2022-03_datahealth-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-03_datahealth-not-disclosed/Dave Banking App via Waydev OAuth Token Theft (July 2020)https://breachnotes.vulnetix.com/supply-chain/2020-07_digital-bank-app-dave-waydev/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-07_digital-bank-app-dave-waydev/Defence Forces, Para Military Forces and Intelligence Agencies of India Third-Party Breach (January 2021)https://breachnotes.vulnetix.com/supply-chain/2021-01_defence-forces-para-military-forces-and-intelligence-agencies-of-india-elcom-innovations/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_defence-forces-para-military-forces-and-intelligence-agencies-of-india-elcom-innovations/Defense Industry & Wind River Customers Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_defense-industry-wind-river-customers-wind-river-systems/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_defense-industry-wind-river-customers-wind-river-systems/DeKalb School District 428, Wilmette Public Schools District 39,The School District of Clayton,Brighton, Brockport, East Irondequoit, Fairport, East Rochester, Greece, Pittsford, Rochester, Spencerport, Victor, Webster and West Irondequoit school districts Third-Party Breach (August 2019)https://breachnotes.vulnetix.com/supply-chain/2019-08_dekalb-school-district-428-wilmette--pearson-clinical-assessm/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-08_dekalb-school-district-428-wilmette--pearson-clinical-assessm/Dental Care Alliance (DCA) Network Intrusion Affecting 1M+ Patients (2020)https://breachnotes.vulnetix.com/supply-chain/2020-12_dental-practices-dental-care-alliance-dca/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-12_dental-practices-dental-care-alliance-dca/Department of Health and Human Services,UChicago, King's Daughters' Health System, OSF HealthCare, Aspirus, UChicago Medicine, and Memorial Hermann Health System. Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_department-of-health-and-human-services-uchicago-king-s-daughters-health-system-osf-healthcare-aspirus-uchicago-medicine-and-memorial-hermann-health-system-meddata/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_department-of-health-and-human-services-uchicago-king-s-daughters-health-system-osf-healthcare-aspirus-uchicago-medicine-and-memorial-hermann-health-system-meddata/Department of Health Third-Party Breach (August 2020)https://breachnotes.vulnetix.com/supply-chain/2020-08_department-of-health-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-08_department-of-health-not-disclosed/Department of Justice Third-Party Breach (April 2024)https://breachnotes.vulnetix.com/supply-chain/2024-04_department-of-justice-greylock-mckinnon-associates/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-04_department-of-justice-greylock-mckinnon-associates/Derimod Leather Garment Marketing Industry and Trade AS Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_derimod-leather-garment-marketing-industry-and-trade-as-vodatech-it/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_derimod-leather-garment-marketing-industry-and-trade-as-vodatech-it/DHL Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_dhl-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_dhl-ipswitch-inc/Dickey's Barbecue Pit POS Malware Breach — 3M Cards on Joker's Stash (2019–2020)https://breachnotes.vulnetix.com/supply-chain/2020-10_dickey-s-barbecue-pit-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-10_dickey-s-barbecue-pit-not-disclosed/Dis-Chem Third-Party Breach (April 2022)https://breachnotes.vulnetix.com/supply-chain/2022-04_dis-chem-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-04_dis-chem-not-disclosed/Discord Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_discord-zendesk/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_discord-zendesk/Discord Third-Party Breach (October 2025)https://breachnotes.vulnetix.com/supply-chain/2025-10_discord-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-10_discord-third-party-vendor/DoÄan Trend Automotive Trade Service and Technology Joint Stock Company Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_do-an-trend-automotive-trade-service-and-technology-joint-stock-company-vodatech-it/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_do-an-trend-automotive-trade-service-and-technology-joint-stock-company-vodatech-it/Doctors Medical Center Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_doctors-medical-center-medifie/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_doctors-medical-center-medifie/Dollar Tree Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_dollar-tree-zeroed-in-technologies/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_dollar-tree-zeroed-in-technologies/Dollar Tree/Family Dollar — Zeroed-In Technologies Breach (1.98M)https://breachnotes.vulnetix.com/supply-chain/2023-11_dollar-tree-zeroed-in/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_dollar-tree-zeroed-in/Domino's Australia Customer Data Leak via Former Supplierhttps://breachnotes.vulnetix.com/supply-chain/2017-10_domino-s-australia-a-former-supplier/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-10_domino-s-australia-a-former-supplier/DoorDash Third-Party Breach (September 2019)https://breachnotes.vulnetix.com/supply-chain/2019-09_doordash-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-09_doordash-not-disclosed/Dozens of public schools across the USA Third-Party Breach (March 2025)https://breachnotes.vulnetix.com/supply-chain/2025-03_dozens-of-public-schools-across-the-usa-carruth-compliance-consultin/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-03_dozens-of-public-schools-across-the-usa-carruth-compliance-consultin/Dublin Airport Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_dublin-airport-aon/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_dublin-airport-aon/Durham Regional Government Third-Party Breach (October 2021)https://breachnotes.vulnetix.com/supply-chain/2021-10_durham-regional-government-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-10_durham-regional-government-not-disclosed/Dynatrace LLC. Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_dynatrace-llc-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_dynatrace-llc-drift-salesloft/e-commerce sites of Feedify Third-Party Breach (September 2018)https://breachnotes.vulnetix.com/supply-chain/2018-09_e-commerce-sites-of-feedify-feedify/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-09_e-commerce-sites-of-feedify-feedify/e-commerce sites that partner with Adverline Third-Party Breach (January 2019)https://breachnotes.vulnetix.com/supply-chain/2019-01_e-commerce-sites-that-partner-with-a-adverline/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-01_e-commerce-sites-that-partner-with-a-adverline/E-commerce stores Third-Party Breach (September 2020)https://breachnotes.vulnetix.com/supply-chain/2020-09_e-commerce-stores-adobe-magento-1/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-09_e-commerce-stores-adobe-magento-1/Easy Programming Language (EPL) Supply Chain Attack — Taobao, Alipay, Baidu Cloud (2018)https://breachnotes.vulnetix.com/supply-chain/2018-12_taobao-tmall-alipay-baidu-cloud-163--easy-programming-languag/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-12_taobao-tmall-alipay-baidu-cloud-163--easy-programming-languag/EdFinancial and Oklahoma Student Loan Authority Third-Party Breach (July 2022)https://breachnotes.vulnetix.com/supply-chain/2022-07_edfinancial-and-oklahoma-student-loan-authority-nelnet-servicing/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-07_edfinancial-and-oklahoma-student-loan-authority-nelnet-servicing/EHR Vendor Veradigm $10.5M Data Breach Lawsuit Settlementhttps://breachnotes.vulnetix.com/supply-chain/2026-01_ehr-vendor-veradigm-to-pay-10-5m-to-settle-hack-lawsuit/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-01_ehr-vendor-veradigm-to-pay-10-5m-to-settle-hack-lawsuit/Ei2 Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_ei2-i-vic-international/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_ei2-i-vic-international/El Centro Regional Medical Center Third-Party Breach (November 2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_el-centro-regional-medical-center-jobscience-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_el-centro-regional-medical-center-jobscience-inc/Elasticsearch B.V. Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_elasticsearch-b-v-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_elasticsearch-b-v-drift-salesloft/Employment and Social Development Canada (ESDC) Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_employment-and-social-development-canada-esdc-2keys-corporation/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_employment-and-social-development-canada-esdc-2keys-corporation/Entira Family Clinics Third-Party Breach (January 2022)https://breachnotes.vulnetix.com/supply-chain/2022-01_entira-family-clinics-netgain/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-01_entira-family-clinics-netgain/Ericom Software Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_ericom-software-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_ericom-software-drift-salesloft/Esker Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_esker-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_esker-drift-salesloft/European Banking Authority Third-Party Breach (March 2021)https://breachnotes.vulnetix.com/supply-chain/2021-03_european-banking-authority-microsoft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_european-banking-authority-microsoft/event-stream npm Package Malware — Targeting Copay Bitcoin Wallethttps://breachnotes.vulnetix.com/supply-chain/2018-11_event-stream-npm-malware/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_event-stream-npm-malware/EvergreenHealth Third-Party Breach (May 2022)https://breachnotes.vulnetix.com/supply-chain/2022-05_evergreenhealth-mycare/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-05_evergreenhealth-mycare/Eversource Energy Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_eversource-energy-clearesult/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_eversource-energy-clearesult/Exeter Finance Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_exeter-finance-ncb-management-services-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_exeter-finance-ncb-management-services-inc/Experian / T-Mobile Data Breach — 15 Million T-Mobile Customer Applicationshttps://breachnotes.vulnetix.com/supply-chain/2015-09_experian-t-mobile-15m/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2015-09_experian-t-mobile-15m/Facebook "View As" access token breach affects 50 million accounts (September 2018)https://breachnotes.vulnetix.com/supply-chain/2018-09_all-platfroms-that-use-facebook-logi-facebook/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-09_all-platfroms-that-use-facebook-logi-facebook/Facebook and Twitter Third-Party Breach (November 2019)https://breachnotes.vulnetix.com/supply-chain/2019-11_facebook-and-twitter-one-audience/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-11_facebook-and-twitter-one-audience/Facebook, Instagram, LinkedIn Third-Party Breach (January 2021)https://breachnotes.vulnetix.com/supply-chain/2021-01_facebook-instagram-linkedin-socialark/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_facebook-instagram-linkedin-socialark/Family Healthcare Third-Party Breach (January 2024)https://breachnotes.vulnetix.com/supply-chain/2024-01_family-healthcare-brady-martz-associates/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-01_family-healthcare-brady-martz-associates/Farmers Insurance Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_farmers-insurance-salesforce/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_farmers-insurance-salesforce/Fastly Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_fastly-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_fastly-drift-salesloft/Fasttrack Customers Third-Party Breach (May 2021)https://breachnotes.vulnetix.com/supply-chain/2021-05_fasttrack-customers-fasttrack-recruitment/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_fasttrack-customers-fasttrack-recruitment/Fermanagh and Omagh District Council Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_fermanagh-and-omagh-district-council-evide-impact-limited/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_fermanagh-and-omagh-district-council-evide-impact-limited/Fertility Clinics incl. Shady Grove Fertility, Reproductive Science Center San Francisco, IVF Florida, and Fertility Center of Illinois Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_fertility-clinics-incl-shady-grove-fertility-reproductive-science-center-san-francisco-ivf-florida-and-fertility-center-of-illinois-usf/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_fertility-clinics-incl-shady-grove-fertility-reproductive-science-center-san-francisco-ivf-florida-and-fertility-center-of-illinois-usf/Fidelity Third-Party Breach (March 2024)https://breachnotes.vulnetix.com/supply-chain/2024-03_fidelity-infosys-mccamish-systems-ims/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_fidelity-infosys-mccamish-systems-ims/FireEye / CISA / US GAO / Rapid7https://breachnotes.vulnetix.com/supply-chain/2020-12_solarwinds-sunburst/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-12_solarwinds-sunburst/FireEye / Mandiant SolarWinds Breach: Red Team Tooling Stolen (SUNBURST Discovery)https://breachnotes.vulnetix.com/supply-chain/2020-12_fireeye-solarwinds-red-team-tools/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-12_fireeye-solarwinds-red-team-tools/FireEye customers Third-Party Breach (December 2020)https://breachnotes.vulnetix.com/supply-chain/2020-12_fireeye-customers-fireeye/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-12_fireeye-customers-fireeye/First Federal Community Bank, Rio Bank, Citizens Bank of Swainsboro, First Bank & Trust Third-Party Breach (November 2020)https://breachnotes.vulnetix.com/supply-chain/2020-11_first-federal-community-bank-rio-ban-abs/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-11_first-federal-community-bank-rio-ban-abs/First Horizon Bank Third-Party Breach (August 2021)https://breachnotes.vulnetix.com/supply-chain/2021-08_first-horizon-bank-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-08_first-horizon-bank-not-disclosed/Fiserv Event Manager vulnerability exposes customer data at hundreds of banks (August 2018)https://breachnotes.vulnetix.com/supply-chain/2018-08_fiserv-affiliated-financial-institut-fiserv/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-08_fiserv-affiliated-financial-institut-fiserv/Flagstar Bank Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_flagstar-bank-fiserv/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_flagstar-bank-fiserv/Florida Blue Third-Party Breach (November 2019)https://breachnotes.vulnetix.com/supply-chain/2019-11_florida-blue-magellan-health-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-11_florida-blue-magellan-health-inc/Florida Department of Economic Opportunity Third-Party Breach (May 2020)https://breachnotes.vulnetix.com/supply-chain/2020-05_florida-department-of-economic-oppor-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-05_florida-department-of-economic-oppor-not-disclosed/Florida Healthy Kids Corporation (FHKC) / Jelly Bean Communications Design breachhttps://breachnotes.vulnetix.com/supply-chain/2021-02_florida-healthy-kids-corporation-fhkc-jelly-bean-communications-de/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_florida-healthy-kids-corporation-fhkc-jelly-bean-communications-de/Foosackly Third-Party Breach (September 2018)https://breachnotes.vulnetix.com/supply-chain/2018-09_foosackly-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-09_foosackly-not-disclosed/Forbes Third-Party Breach (May 2019)https://breachnotes.vulnetix.com/supply-chain/2019-05_forbes-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-05_forbes-not-disclosed/Forever 21 Point-of-Sale Malware Breachhttps://breachnotes.vulnetix.com/supply-chain/2017-11_forever-21-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-11_forever-21-not-disclosed/Fortra GoAnywhere MFT Zero-Day Cl0p Exploitation — CVE-2023-0669, 130+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2023-03_blue-shield-of-california-goanywhere-mft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-03_blue-shield-of-california-goanywhere-mft/Fortra GoAnywhere MFT Zero-Day Cl0p Exploitation — CVE-2023-0669, 130+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2023-04_brightline-health-goanywhere-mft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-04_brightline-health-goanywhere-mft/Fortra GoAnywhere MFT Zero-Day Cl0p Exploitation — CVE-2023-0669, 130+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2023-04_nationsbenefits-holding-llc-goanywhere-mft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-04_nationsbenefits-holding-llc-goanywhere-mft/Fortra GoAnywhere MFT Zero-Day Cl0p Exploitation — CVE-2023-0669, 130+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2023-04_santa-clara-family-health-plan-goanywhere-mft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-04_santa-clara-family-health-plan-goanywhere-mft/Fortra GoAnywhere MFT Zero-Day Cl0p Exploitation — CVE-2023-0669, 130+ Organizationshttps://breachnotes.vulnetix.com/supply-chain/2023-06_intellihartx-llc-goanywhere-mft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_intellihartx-llc-goanywhere-mft/Fortune 500 companies Third-Party Breach (February 2022)https://breachnotes.vulnetix.com/supply-chain/2022-02_fortune-500-companies-morley-companies/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-02_fortune-500-companies-morley-companies/Forward Healthcare Third-Party Breach (February 2024)https://breachnotes.vulnetix.com/supply-chain/2024-02_forward-healthcare-philips-respironics/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_forward-healthcare-philips-respironics/Fox's clinic, the Alpine Center for Diabetes, Endocrinology and Metabolism Third-Party Breach (May 2021)https://breachnotes.vulnetix.com/supply-chain/2021-05_fox-s-clinic-the-alpine-center-for-diabetes-endocrinology-and-metabolism-aprima/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_fox-s-clinic-the-alpine-center-for-diabetes-endocrinology-and-metabolism-aprima/Framework Computer Third-Party Breach (January 2024)https://breachnotes.vulnetix.com/supply-chain/2024-01_framework-computer-keating-consulting-group/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-01_framework-computer-keating-consulting-group/Freedom Mobile Customer Data Exposed via Apptium Technologies Unsecured Elasticsearchhttps://breachnotes.vulnetix.com/supply-chain/2019-04_freedom-mobile-apptium-technologies/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-04_freedom-mobile-apptium-technologies/Freedom Mobile Third-Party Breach (December 2025)https://breachnotes.vulnetix.com/supply-chain/2025-12_freedom-mobile-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-12_freedom-mobile-third-party-vendor/French Government Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_french-government-stormshield/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_french-government-stormshield/FTX Third-Party Breach (September 2023)https://breachnotes.vulnetix.com/supply-chain/2023-09_ftx-kroll-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-09_ftx-kroll-inc/Fujitsu ProjectWEB Breach — Japanese Government Agencies, 76,000 Email Addresses, Narita Airport Datahttps://breachnotes.vulnetix.com/supply-chain/2021-05_japanese-government-the-ministry-of-land-infrastructure-transport-and-tourism-fujitsu/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_japanese-government-the-ministry-of-land-infrastructure-transport-and-tourism-fujitsu/Fullerton Health Third-Party Breach (October 2021)https://breachnotes.vulnetix.com/supply-chain/2021-10_fullerton-health-agape-connecting-people/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-10_fullerton-health-agape-connecting-people/Gate.io / StatCounter Supply Chain Attack (2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_gate-io-cryptocurrency-exchange-statcounter/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_gate-io-cryptocurrency-exchange-statcounter/Geberit Installation Systems Trade Limited Company Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_geberit-installation-systems-trade-limited-company-mivento-it-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_geberit-installation-systems-trade-limited-company-mivento-it-services/Geisinger Health Plan Third-Party Breach (October 2019)https://breachnotes.vulnetix.com/supply-chain/2019-10_geisinger-health-plan-magellan-national-imagin/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-10_geisinger-health-plan-magellan-national-imagin/Geisinger Third-Party Breach (June 2024)https://breachnotes.vulnetix.com/supply-chain/2024-06_geisinger-nuance-communications/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-06_geisinger-nuance-communications/Gemini Third-Party Breach (July 2024)https://breachnotes.vulnetix.com/supply-chain/2024-07_gemini-not-disclosed-automated-clea/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-07_gemini-not-disclosed-automated-clea/General Electric Third-Party Breach (March 2020)https://breachnotes.vulnetix.com/supply-chain/2020-03_general-electric-canon-business-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-03_general-electric-canon-business-services/Gerber Life Insurance Third-Party Breach (May 2024)https://breachnotes.vulnetix.com/supply-chain/2024-05_gerber-life-insurance-webtpa/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-05_gerber-life-insurance-webtpa/GitHub And Bitbucket Third-Party Breach (September 2019)https://breachnotes.vulnetix.com/supply-chain/2019-09_github-and-bitbucket-circlci/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-09_github-and-bitbucket-circlci/Glasgow City Council Third-Party Breach (June 2025)https://breachnotes.vulnetix.com/supply-chain/2025-06_glasgow-city-council-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-06_glasgow-city-council-third-party-vendor/GlassWorm Supply-Chain Attack - 72 Malicious Open VSX Extensionshttps://breachnotes.vulnetix.com/supply-chain/2026-01_glassworm-open-vsx-extensions/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-01_glassworm-open-vsx-extensions/GoDaddy server configuration data exposed via misconfigured AWS S3 bucket (June–August 2018)https://breachnotes.vulnetix.com/supply-chain/2018-08_godaddy-amazon-s3-bucket/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-08_godaddy-amazon-s3-bucket/Good Samaritan Society, Mission Healthcare at Renton, Prestige Care, Rockwood South Hill, Kin On Health Care Center, and 63 organizations Third-Party Breach (January 2022)https://breachnotes.vulnetix.com/supply-chain/2022-01_good-samaritan-society-mission-healthcare-at-renton-prestige-care-rockwood-south-hill-kin-on-health-care-center-and-63-organizations-infinity-rehab/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-01_good-samaritan-society-mission-healthcare-at-renton-prestige-care-rockwood-south-hill-kin-on-health-care-center-and-63-organizations-infinity-rehab/Goodwill Industries POS Malware Breach — Payment Card Data at Thrift Storeshttps://breachnotes.vulnetix.com/supply-chain/2013-02_goodwill-ck-systems-pos/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2013-02_goodwill-ck-systems-pos/Google / Fragomen Del Rey Bernsen & Loewy Law Firm Breach (October 2020)https://breachnotes.vulnetix.com/supply-chain/2020-10_google-fragomen-del-rey-bernsen/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-10_google-fragomen-del-rey-bernsen/Government Departments and the Australian Stock Exchange Third-Party Breach (October 2020)https://breachnotes.vulnetix.com/supply-chain/2020-10_government-departments-and-the-austr-isentia/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-10_government-departments-and-the-austr-isentia/Government of South Australia Third-Party Breach (January 2022)https://breachnotes.vulnetix.com/supply-chain/2022-01_government-of-south-australia-frontier-software/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-01_government-of-south-australia-frontier-software/Great Heart Academies Third-Party Breach (November 2020)https://breachnotes.vulnetix.com/supply-chain/2020-11_great-heart-academies-blackbaud/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-11_great-heart-academies-blackbaud/GrubHub Third-Party Breach (February 2025)https://breachnotes.vulnetix.com/supply-chain/2025-02_grubhub-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-02_grubhub-third-party-vendor/Gulf insurance AS Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_gulf-insurance-as-vodatech-it/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_gulf-insurance-as-vodatech-it/GW community members Third-Party Breach (October 2019)https://breachnotes.vulnetix.com/supply-chain/2019-10_gw-community-members-chegg/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-10_gw-community-members-chegg/HackerOne Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_hackerone-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_hackerone-drift-salesloft/HAH Group Holding Company Third-Party Breach (August 2024)https://breachnotes.vulnetix.com/supply-chain/2024-08_hah-group-holding-company-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-08_hah-group-holding-company-third-party-vendor/Handbrake macOS App Supply Chain Attack — Mac Users' Credentials Stolenhttps://breachnotes.vulnetix.com/supply-chain/2017-05_companies-with-mac-user-employees-wh-handbrake/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-05_companies-with-mac-user-employees-wh-handbrake/Hanover County Third-Party Breach (January 2019)https://breachnotes.vulnetix.com/supply-chain/2019-01_hanover-county-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-01_hanover-county-click2gov/Harbor Regional Health Third-Party Breach (June 2021)https://breachnotes.vulnetix.com/supply-chain/2021-06_harbor-regional-health-capturerx/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-06_harbor-regional-health-capturerx/Harrods Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_harrods-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_harrods-third-party-vendor/Hatch Bank GoAnywhere MFT Breach (Cl0p, CVE-2023-0669)https://breachnotes.vulnetix.com/supply-chain/2023-03_hatch-bank-goanywhere-mft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-03_hatch-bank-goanywhere-mft/Hawaii Medical Service Association (HMSA) Third-Party Breach (February 2024)https://breachnotes.vulnetix.com/supply-chain/2024-02_hawaii-medical-service-association-hmsa-navvis-company/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_hawaii-medical-service-association-hmsa-navvis-company/Health Plan Intermediaries Holdings (Benefytt) Third-Party Breach (March 2024)https://breachnotes.vulnetix.com/supply-chain/2024-03_health-plan-intermediaries-holdings-benefytt-multiplan-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_health-plan-intermediaries-holdings-benefytt-multiplan-inc/Health Share of Oregon / GridWorks Laptop Theft — 654,000 Members Exposed (2020)https://breachnotes.vulnetix.com/supply-chain/2020-02_health-share-of-oregon-gridworks/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-02_health-share-of-oregon-gridworks/Healthcare IT Newshttps://breachnotes.vulnetix.com/supply-chain/2017-03_brand-new-day-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-03_brand-new-day-not-disclosed/Heilbronn City Library Third-Party Breach (April 2024)https://breachnotes.vulnetix.com/supply-chain/2024-04_heilbronn-city-library-genios/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-04_heilbronn-city-library-genios/Henrietta Johnson Medical Center Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_henrietta-johnson-medical-center-delaware-health-network/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_henrietta-johnson-medical-center-delaware-health-network/Heroku / Travis CI OAuth Token Theft — GitHub Private Repositories Exposedhttps://breachnotes.vulnetix.com/supply-chain/2022-04_heroku-travis-oauth-token-theft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-04_heroku-travis-oauth-token-theft/HHS OCR $10K HIPAA Fine — Dental Practice Software Vendor, 15 Million Records Breachhttps://breachnotes.vulnetix.com/supply-chain/2026-03_hhs-ocr-fines-firm-10k-in-breach-affecting-15m/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-03_hhs-ocr-fines-firm-10k-in-breach-affecting-15m/Highmark Third-Party Breach (March 2022)https://breachnotes.vulnetix.com/supply-chain/2022-03_highmark-quantum-group/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-03_highmark-quantum-group/HIPAA Journalhttps://breachnotes.vulnetix.com/supply-chain/2017-02_new-jersey-diamond-institute-for-fer-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-02_new-jersey-diamond-institute-for-fer-not-disclosed/HIPAA Journalhttps://breachnotes.vulnetix.com/supply-chain/2018-02_orlando-orthopaedic-center-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-02_orlando-orthopaedic-center-not-disclosed/HIPAA Journalhttps://breachnotes.vulnetix.com/supply-chain/2025-08_clop-oracle-ebs-education/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_clop-oracle-ebs-education/HIPAA Journal / BleepingComputer / SEC 8-K filinghttps://breachnotes.vulnetix.com/supply-chain/2023-07_moveit-maximus/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_moveit-maximus/Hospitals in Northern California Third-Party Breach (May 2022)https://breachnotes.vulnetix.com/supply-chain/2022-05_hospitals-in-northern-california-partnership-healthplan-of-ca/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-05_hospitals-in-northern-california-partnership-healthplan-of-ca/Hospitals Third-Party Breach (July 2021)https://breachnotes.vulnetix.com/supply-chain/2021-07_hospitals-clearbalance/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-07_hospitals-clearbalance/Hospitals Third-Party Breach (July 2021)https://breachnotes.vulnetix.com/supply-chain/2021-07_hospitals-practicefirst/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-07_hospitals-practicefirst/Houzz Data Breach — ~49 Million Users (2018–2019)https://breachnotes.vulnetix.com/supply-chain/2019-02_houzz-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-02_houzz-not-disclosed/HSBC Third-Party Breach (May 2024)https://breachnotes.vulnetix.com/supply-chain/2024-05_hsbc-baton-systems/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-05_hsbc-baton-systems/Huddle House POS Malware Breach via Third-Party Vendor (2017–2019)https://breachnotes.vulnetix.com/supply-chain/2019-02_huddle-house-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-02_huddle-house-not-disclosed/Humana Inc. Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_humana-inc-pnc-bank/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_humana-inc-pnc-bank/Humana Third-Party Breach (January 2019)https://breachnotes.vulnetix.com/supply-chain/2019-01_humana-lcp-corp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-01_humana-lcp-corp/Humana Third-Party Breach (September 2022)https://breachnotes.vulnetix.com/supply-chain/2022-09_humana-alight-com-choice-health-pre/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-09_humana-alight-com-choice-health-pre/Huntsville Hospital in Alabama Third-Party Breach (November 2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_huntsville-hospital-in-alabama-jobscience-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_huntsville-hospital-in-alabama-jobscience-inc/Hyatt Hotels Second Payment Card Breach (41 Properties)https://breachnotes.vulnetix.com/supply-chain/2017-10_hyatt-hotels-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-10_hyatt-hotels-not-disclosed/IACT Health Third-Party Breach (June 2024)https://breachnotes.vulnetix.com/supply-chain/2024-06_iact-health-advarra/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-06_iact-health-advarra/Iberia (International Airlines Group) Third-Party Breach (November 2025)https://breachnotes.vulnetix.com/supply-chain/2025-11_iberia-international-airlines-group-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-11_iberia-international-airlines-group-third-party-vendor/ICRC (Red Cross) Data Breach via Zoho ManageEngine Vulnerabilityhttps://breachnotes.vulnetix.com/supply-chain/2022-01_red-cross-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-01_red-cross-not-disclosed/Idaho Central Credit Union Third-Party Breach (February 2020)https://breachnotes.vulnetix.com/supply-chain/2020-02_idaho-central-credit-union-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-02_idaho-central-credit-union-not-disclosed/Image-I-Nation Technologies Supply Chain Breach Affecting Credit Bureau Customers (2018–2019)https://breachnotes.vulnetix.com/supply-chain/2019-02_equifax-experian-and-transunion-image-i-nation-technolog/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-02_equifax-experian-and-transunion-image-i-nation-technolog/Infosys McCamish Systems LockBit ransomware breach (6 million insurance customers)https://breachnotes.vulnetix.com/supply-chain/2023-10_infosys-mccamish-lockbit/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_infosys-mccamish-lockbit/Instagram Influencer Data Exposed via Chtrbox Unsecured Databasehttps://breachnotes.vulnetix.com/supply-chain/2019-05_instagram-chtrbox/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-05_instagram-chtrbox/Instagram Third-Party Breach (January 2020)https://breachnotes.vulnetix.com/supply-chain/2020-01_instagram-social-captain/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-01_instagram-social-captain/Insurance Carriers in Texas, Colarodo Third-Party Breach (November 2020)https://breachnotes.vulnetix.com/supply-chain/2020-11_insurance-carriers-in-texas-colarodo-vertafore/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-11_insurance-carriers-in-texas-colarodo-vertafore/Intel Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_intel-micro-star-international-msi/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_intel-micro-star-international-msi/Internet Society Third-Party Breach (February 2022)https://breachnotes.vulnetix.com/supply-chain/2022-02_internet-society-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-02_internet-society-not-disclosed/Iowa Department of Health and Human Services – Iowa Medicaid Enterprise (Iowa HHS-IME) Third-Party Breach (April 2023)https://breachnotes.vulnetix.com/supply-chain/2023-04_iowa-department-of-health-and-human-services-iowa-medicaid-enterprise-iowa-hhs-ime-independent-living-systems/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-04_iowa-department-of-health-and-human-services-iowa-medicaid-enterprise-iowa-hhs-ime-independent-living-systems/Iowa Medicaid Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_iowa-medicaid-telligen-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_iowa-medicaid-telligen-inc/Israeli Likud Party Third-Party Breach (March 2021)https://breachnotes.vulnetix.com/supply-chain/2021-03_israeli-likud-party-elector-software/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_israeli-likud-party-elector-software/IT Pro / Enterprise Times / Silicon UKhttps://breachnotes.vulnetix.com/supply-chain/2018-06_whitbread-costa-coffee-premier-inn-pageup/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-06_whitbread-costa-coffee-premier-inn-pageup/Jack Daniel's Third-Party Breach (August 2020)https://breachnotes.vulnetix.com/supply-chain/2020-08_jack-daniel-s-brown-forman/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-08_jack-daniel-s-brown-forman/Jamaican Government Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_jamaican-government-amber-group/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_jamaican-government-amber-group/Janssen Healthcare Platform Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_janssen-healthcare-platform-ibm/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_janssen-healthcare-platform-ibm/Japanese Prime Minister's Cabinet Office Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_japanese-prime-minister-s-cabinet-office-soliton-filezen-application/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_japanese-prime-minister-s-cabinet-office-soliton-filezen-application/Jefferson's Kimmel Cancer Center Third-Party Breach (July 2021)https://breachnotes.vulnetix.com/supply-chain/2021-07_jefferson-s-kimmel-cancer-center-elekta/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-07_jefferson-s-kimmel-cancer-center-elekta/JetBrains TeamCity CVE-2024-27198 Authentication Bypass — Mass Exploitationhttps://breachnotes.vulnetix.com/supply-chain/2024-03_jetbrains-teamcity-cve-2024-27198/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_jetbrains-teamcity-cve-2024-27198/JFrog Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_jfrog-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_jfrog-drift-salesloft/JM Bullion Third-Party Breach (October 2020)https://breachnotes.vulnetix.com/supply-chain/2020-10_jm-bullion-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-10_jm-bullion-not-disclosed/Joomla Third-Party Breach (June 2020)https://breachnotes.vulnetix.com/supply-chain/2020-06_joomla-open-source-matters/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-06_joomla-open-source-matters/JPMorgan Chase 2014 Data Breach (WSJ, NYT, SEC filings)https://breachnotes.vulnetix.com/supply-chain/2014-10_jpmorgan-chase-co-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2014-10_jpmorgan-chase-co-not-disclosed/Judiciary Branch Third-Party Breach (September 2023)https://breachnotes.vulnetix.com/supply-chain/2023-09_judiciary-branch-ifx-networks-colombia/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-09_judiciary-branch-ifx-networks-colombia/K12 Schools in NY Third-Party Breach (May 2022)https://breachnotes.vulnetix.com/supply-chain/2022-05_k12-schools-in-ny-illuminate-education/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-05_k12-schools-in-ny-illuminate-education/Kairos Health Arizona Third-Party Breach (July 2024)https://breachnotes.vulnetix.com/supply-chain/2024-07_kairos-health-arizona-a-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-07_kairos-health-arizona-a-third-party-vendor/Kaseya VSA REvil Supply Chain Ransomware — 1,500 Businesses, $70M Demandhttps://breachnotes.vulnetix.com/supply-chain/2021-07_msps-and-clients-including-visma-ess-kaseya/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-07_msps-and-clients-including-visma-ess-kaseya/Keepnet Third-Party Breach (June 2020)https://breachnotes.vulnetix.com/supply-chain/2020-06_keepnet-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-06_keepnet-not-disclosed/Khalil Foundation Third-Party Breach (January 2025)https://breachnotes.vulnetix.com/supply-chain/2025-01_khalil-foundation-transform-studios/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_khalil-foundation-transform-studios/Kibble Equipment Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_kibble-equipment-razor-consulting-solutions/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_kibble-equipment-razor-consulting-solutions/King's College Hospital, Guy's Hospital, St Thomas' Hospital and more⦠Third-Party Breach (June 2024)https://breachnotes.vulnetix.com/supply-chain/2024-06_king-s-college-hospital-guy-s-hospital-st-thomas-hospital-and-more-synnovis/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-06_king-s-college-hospital-guy-s-hospital-st-thomas-hospital-and-more-synnovis/Kiplepay Sdn Bhd Third-Party Breach (August 2022)https://breachnotes.vulnetix.com/supply-chain/2022-08_kiplepay-sdn-bhd-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_kiplepay-sdn-bhd-not-disclosed/KLM Third-Party Breach (January 2023)https://breachnotes.vulnetix.com/supply-chain/2023-01_klm-flying-blue/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-01_klm-flying-blue/Komodo Third-Party Breach (June 2019)https://breachnotes.vulnetix.com/supply-chain/2019-06_komodo-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-06_komodo-not-disclosed/Krebs on Securityhttps://breachnotes.vulnetix.com/supply-chain/2018-01_reddit-mailgun/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-01_reddit-mailgun/Kylie Cosmetics Third-Party Breach (October 2020)https://breachnotes.vulnetix.com/supply-chain/2020-10_kylie-cosmetics-shopify/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-10_kylie-cosmetics-shopify/Lazada RedMart Singapore Database Breach (October 2020)https://breachnotes.vulnetix.com/supply-chain/2020-10_lazada-redmart-app-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-10_lazada-redmart-app-not-disclosed/Ledger Connect Kit Supply Chain Attack — DRAINER injected via compromised npm accounthttps://breachnotes.vulnetix.com/supply-chain/2023-12_ledger-connect-kit-supply-chain/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-12_ledger-connect-kit-supply-chain/Lee County Emergency Medical Services Third-Party Breach (August 2022)https://breachnotes.vulnetix.com/supply-chain/2022-08_lee-county-emergency-medical-services-intermedix-corporation/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_lee-county-emergency-medical-services-intermedix-corporation/Lenders Choice Escrow Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_lenders-choice-escrow-cashcall-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_lenders-choice-escrow-cashcall-inc/LiteLLM PyPI Supply Chain Attack - Mercor AI Breach (TeamPCP / Lapsus$)https://breachnotes.vulnetix.com/supply-chain/2026-03_litellm-pypi-mercor-teampcp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-03_litellm-pypi-mercor-teampcp/Lithia Motors, Sonic Automotive, Penske Automotive Group, Inc. and more⦠Third-Party Breach (June 2024)https://breachnotes.vulnetix.com/supply-chain/2024-06_lithia-motors-sonic-automotive-penske-automotive-group-inc-and-more-cdk-global/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-06_lithia-motors-sonic-automotive-penske-automotive-group-inc-and-more-cdk-global/LiveRamp Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_liveramp-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_liveramp-drift-salesloft/Local credit and financial businesses Third-Party Breach (February 2025)https://breachnotes.vulnetix.com/supply-chain/2025-02_local-credit-and-financial-businesses-lanit-group/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-02_local-credit-and-financial-businesses-lanit-group/LocalBitcoins Third-Party Breach (January 2019)https://breachnotes.vulnetix.com/supply-chain/2019-01_localbitcoins-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-01_localbitcoins-not-disclosed/Logitech Third-Party Breach (November 2025)https://breachnotes.vulnetix.com/supply-chain/2025-11_logitech-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-11_logitech-third-party-vendor/London North Eastern Railway (LNER) Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_london-north-eastern-railway-lner-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_london-north-eastern-railway-lner-third-party-vendor/Louis Vuitton Third-Party Breach (July 2025)https://breachnotes.vulnetix.com/supply-chain/2025-07_louis-vuitton-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-07_louis-vuitton-third-party-vendor/Lowe's Driver Records Breach via SafetyFirst E-Driver File Platformhttps://breachnotes.vulnetix.com/supply-chain/2014-07_lowe-s-safetyfirst-e-driver-fil/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2014-07_lowe-s-safetyfirst-e-driver-fil/Lucid Software Inc. Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_lucid-software-inc-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_lucid-software-inc-drift-salesloft/Luxottica Breach Affecting LensCrafters, EyeMed, Target Optical (August–September 2020)https://breachnotes.vulnetix.com/supply-chain/2020-11_lenscrafters-target-optical-eyemed-a-luxottica/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-11_lenscrafters-target-optical-eyemed-a-luxottica/Macy's Third-Party Breach (November 2019)https://breachnotes.vulnetix.com/supply-chain/2019-11_macy-s-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-11_macy-s-not-disclosed/Magento Extension Supply Chain Attack (Tigren, Meetanshi, MGS — 500-1000 E-Commerce Stores)https://breachnotes.vulnetix.com/supply-chain/2025-05_magento-tigren-meetanshi-extensions/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_magento-tigren-meetanshi-extensions/Magento Third-Party Breach (September 2022)https://breachnotes.vulnetix.com/supply-chain/2022-09_magento-fishpig/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-09_magento-fishpig/Mailchimp Social Engineering Breach — 133 Customers Affected Including Trezor, Fanatics, WooCommercehttps://breachnotes.vulnetix.com/supply-chain/2022-08_digitalocean-edge-messari-decrypt-mailchimp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_digitalocean-edge-messari-decrypt-mailchimp/Mailchimp Social Engineering Breach — 133 Customers Affected Including Trezor, Fanatics, WooCommercehttps://breachnotes.vulnetix.com/supply-chain/2023-01_fanduels-mailchimp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-01_fanduels-mailchimp/Mailchimp Social Engineering Breach — 133 Customers Affected Including Trezor, Fanatics, WooCommercehttps://breachnotes.vulnetix.com/supply-chain/2023-01_solana-foundation-mailchimp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-01_solana-foundation-mailchimp/MainStreet Bank Third-Party Breach (June 2025)https://breachnotes.vulnetix.com/supply-chain/2025-06_mainstreet-bank-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-06_mainstreet-bank-third-party-vendor/Mais Motor Vehicles Manufacturing and Sales Joint Stock Company Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_mais-motor-vehicles-manufacturing-and-sales-joint-stock-company-mivento-it-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_mais-motor-vehicles-manufacturing-and-sales-joint-stock-company-mivento-it-services/Majorel Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_majorel-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_majorel-ipswitch-inc/Malinda Air Third-Party Breach (September 2019)https://breachnotes.vulnetix.com/supply-chain/2019-09_malinda-air-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-09_malinda-air-not-disclosed/Managed Health Services of Indiana / LCP Transportation Phishing Breach (2018)https://breachnotes.vulnetix.com/supply-chain/2018-12_managed-health-services-of-indiana-lcp-corp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-12_managed-health-services-of-indiana-lcp-corp/Mandiant / CISA AA21-055A / BleepingComputer / Tenablehttps://breachnotes.vulnetix.com/supply-chain/2021-01_accellion-fta-clop/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_accellion-fta-clop/Mandiant / Google Cloud Blog / Krebs on Securityhttps://breachnotes.vulnetix.com/supply-chain/2023-03_3cx-desktop-app/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-03_3cx-desktop-app/Mangatoon Third-Party Breach (May 2022)https://breachnotes.vulnetix.com/supply-chain/2022-05_mangatoon-elasticsearch/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-05_mangatoon-elasticsearch/MANGO Third-Party Breach (October 2025)https://breachnotes.vulnetix.com/supply-chain/2025-10_mango-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-10_mango-third-party-vendor/Many major companies including Amazon, Apple, etc. Third-Party Breach (October 2018)https://breachnotes.vulnetix.com/supply-chain/2018-10_many-major-companies-including-amazo-supermicro/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-10_many-major-companies-including-amazo-supermicro/marijuana dispensaries: Amedicanna Dispensary, Bloom Medicinals and Colorado Grow Company Third-Party Breach (January 2020)https://breachnotes.vulnetix.com/supply-chain/2020-01_marijuana-dispensaries-amedicanna-di-thsuite/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-01_marijuana-dispensaries-amedicanna-di-thsuite/Mariott Third-Party Breach (April 2020)https://breachnotes.vulnetix.com/supply-chain/2020-04_mariott-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-04_mariott-not-disclosed/Marks & Spencer Third-Party Breach (May 2025)https://breachnotes.vulnetix.com/supply-chain/2025-05_marks-spencer-tata-consultancy-services-tc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_marks-spencer-tata-consultancy-services-tc/Marriott International / Starwood Data Breach (2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_marriott-starwood/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_marriott-starwood/Mastercard Priceless Specials Loyalty Program Breachhttps://breachnotes.vulnetix.com/supply-chain/2019-08_mastercard-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-08_mastercard-not-disclosed/McDonald's Third-Party Breach (July 2025)https://breachnotes.vulnetix.com/supply-chain/2025-07_mcdonald-s-paradox-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-07_mcdonald-s-paradox-inc/MCG Health Patient Care Guidelines Breach — 1.1 Million Patientshttps://breachnotes.vulnetix.com/supply-chain/2022-03_mcg-health-1-1m-patients/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-03_mcg-health-1-1m-patients/Medibank Private 2019 Unauthorised Third-Party Access — Pre-2022 Breachhttps://breachnotes.vulnetix.com/supply-chain/2019-02_medibank-third-party-pre-breach/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-02_medibank-third-party-pre-breach/Medical Facilities Third-Party Breach (Deecember 2020)https://breachnotes.vulnetix.com/supply-chain/2020-01_medical-facilities-isofh/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-01_medical-facilities-isofh/Medical Informatics Engineering (MIE) / WebChart Breach — 3.9 Million Patientshttps://breachnotes.vulnetix.com/supply-chain/2015-05_medical-informatics-engineering-webchart/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2015-05_medical-informatics-engineering-webchart/Medicare & Medicaid Services (CMS) Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_medicare-medicaid-services-cms-palmetto-gba/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_medicare-medicaid-services-cms-palmetto-gba/MediSecure Third-Party Breach (May 2024)https://breachnotes.vulnetix.com/supply-chain/2024-05_medisecure-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-05_medisecure-third-party-vendor/Megaport Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_megaport-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_megaport-drift-salesloft/Memorial Health System Third-Party Breach (February 2022)https://breachnotes.vulnetix.com/supply-chain/2022-02_memorial-health-system-advent-health-partners/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-02_memorial-health-system-advent-health-partners/Memorial Health System Third-Party Breach (July 2021)https://breachnotes.vulnetix.com/supply-chain/2021-07_memorial-health-system-guidehouse/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-07_memorial-health-system-guidehouse/Mention Third-Party Breach (August 2018)https://breachnotes.vulnetix.com/supply-chain/2018-08_mention-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-08_mention-not-disclosed/Mercedes-Benz USA Cloud Vendor Breach — 1.6M Records Exposed, SSNs and Credit Card Data for ~1,000https://breachnotes.vulnetix.com/supply-chain/2021-06_mercedes-benz-usa-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-06_mercedes-benz-usa-not-disclosed/Mercy Health Lorain / RCM Enterprise Services Invoice Mailing Error (2019–2020)https://breachnotes.vulnetix.com/supply-chain/2020-01_mercy-health-lorain-rcm-enterprise-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-01_mercy-health-lorain-rcm-enterprise-services/Meritas Health Corporation Third-Party Breach (January 2024)https://breachnotes.vulnetix.com/supply-chain/2024-01_meritas-health-corporation-perry-johnson-associates-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-01_meritas-health-corporation-perry-johnson-associates-inc/Miami Plastic Surgery, Keys Dermatology and more Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_miami-plastic-surgery-keys-dermatology-and-more-dermcare-management/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_miami-plastic-surgery-keys-dermatology-and-more-dermcare-management/Michigan State University Third-Party Breach (April 2020)https://breachnotes.vulnetix.com/supply-chain/2020-04_michigan-state-university-volusion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-04_michigan-state-university-volusion/Microsoft 365 exchange infrastructure Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_microsoft-365-exchange-infrastructure-mimecast/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_microsoft-365-exchange-infrastructure-mimecast/Microsoft Third-Party Breach (December 2020)https://breachnotes.vulnetix.com/supply-chain/2020-12_microsoft-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-12_microsoft-not-disclosed/Mid-Minnesota Management Services (Central Resources) Third-Party Breach (November 2024)https://breachnotes.vulnetix.com/supply-chain/2024-11_mid-minnesota-management-services-central-resources-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-11_mid-minnesota-management-services-central-resources-third-party-vendor/Mid-Westchester Anesthesia Services Third-Party Breach (July 2022)https://breachnotes.vulnetix.com/supply-chain/2022-07_mid-westchester-anesthesia-services-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-07_mid-westchester-anesthesia-services-not-disclosed/Ministère du Travail et de l'Emploi Third-Party Breach (November 2024)https://breachnotes.vulnetix.com/supply-chain/2024-11_minist-re-du-travail-et-de-l-emploi-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-11_minist-re-du-travail-et-de-l-emploi-third-party-vendor/Minnesota Department of Human Services Vendor Breach — 304,000 Medicaid Recipientshttps://breachnotes.vulnetix.com/supply-chain/2026-01_minnesota-agency-notifies-304-000-of-vendor-breach/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-01_minnesota-agency-notifies-304-000-of-vendor-breach/Mitsubishi Electric Breach — Tick APT / Trend Micro OfficeScan Zero-Day (2019–2020)https://breachnotes.vulnetix.com/supply-chain/2020-01_mitsubishi-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-01_mitsubishi-not-disclosed/Mixpanel Product Analytics Platform Breach (Multiple Companies)https://breachnotes.vulnetix.com/supply-chain/2025-11_mixpanel-analytics-multi-company/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-11_mixpanel-analytics-multi-company/MNS' Healthcare Clients Third-Party Breach (May 2020)https://breachnotes.vulnetix.com/supply-chain/2020-05_mns-healthcare-clients-management-and-network-s/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-05_mns-healthcare-clients-management-and-network-s/Mobile Medical Response Third-Party Breach (July 2024)https://breachnotes.vulnetix.com/supply-chain/2024-07_mobile-medical-response-cbm-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-07_mobile-medical-response-cbm-services/Moffitt Cancer Center Third-Party Breach (April 2024)https://breachnotes.vulnetix.com/supply-chain/2024-04_moffitt-cancer-center-advarra/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-04_moffitt-cancer-center-advarra/Moffitt Cancer Center Third-Party Breach (April 2024)https://breachnotes.vulnetix.com/supply-chain/2024-04_moffitt-cancer-center-gunster-yoakley-and-stewart/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-04_moffitt-cancer-center-gunster-yoakley-and-stewart/Mongolian Government Agencies Third-Party Breach (December 2020)https://breachnotes.vulnetix.com/supply-chain/2020-12_mongolian-government-agencies-able-software/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-12_mongolian-government-agencies-able-software/Monument Health Third-Party Breach (December 2024)https://breachnotes.vulnetix.com/supply-chain/2024-12_monument-health-change-healthcare/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-12_monument-health-change-healthcare/Moses-Weitzman Health System Third-Party Breach (February 2025)https://breachnotes.vulnetix.com/supply-chain/2025-02_moses-weitzman-health-system-community-health-center/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-02_moses-weitzman-health-system-community-health-center/MU Health Third-Party Breach (June 2020)https://breachnotes.vulnetix.com/supply-chain/2020-06_mu-health-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-06_mu-health-not-disclosed/Multicare Health Services Third-Party Breach (March 2021)https://breachnotes.vulnetix.com/supply-chain/2021-03_multicare-health-services-netgain/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_multicare-health-services-netgain/Multiple local governing bodies across the United States Third-Party Breach (May 2025)https://breachnotes.vulnetix.com/supply-chain/2025-05_multiple-local-governing-bodies-across-the-united-states-trimble-cityworks/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_multiple-local-governing-bodies-across-the-united-states-trimble-cityworks/Multiple U.S. agencies Third-Party Breach (April 2024)https://breachnotes.vulnetix.com/supply-chain/2024-04_multiple-u-s-agencies-acuity-consulting/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-04_multiple-u-s-agencies-acuity-consulting/Multiple US healthcare organizations and hospitals Third-Party Breach (March 2025)https://breachnotes.vulnetix.com/supply-chain/2025-03_multiple-us-healthcare-organizations-and-hospitals-oracle-health-formerly-cerne/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-03_multiple-us-healthcare-organizations-and-hospitals-oracle-health-formerly-cerne/Municipalities of Eijsden-Margraten, Gulpen-Wittem, Kerkrade, Meerssen and Vaals Third-Party Breach (August 2022)https://breachnotes.vulnetix.com/supply-chain/2022-08_municipalities-of-eijsden-margraten-gulpen-wittem-kerkrade-meerssen-and-vaals-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_municipalities-of-eijsden-margraten-gulpen-wittem-kerkrade-meerssen-and-vaals-not-disclosed/MUT-8694 npm and PyPI Malicious Package Campaignhttps://breachnotes.vulnetix.com/supply-chain/2024-10_mut8694-npm-pypi-roblox/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-10_mut8694-npm-pypi-roblox/Nabholz Construction Third-Party Breach (February 2024)https://breachnotes.vulnetix.com/supply-chain/2024-02_nabholz-construction-cadence-bank/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_nabholz-construction-cadence-bank/Naperville Unit District 203, Indian Prairie Unit District 204, St. Charles Unit District 303 and Geneva Unit District 304 Third-Party Breach (August 2019)https://breachnotes.vulnetix.com/supply-chain/2019-08_naperville-unit-district-203-indian--pearson-clinical-assessm/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-08_naperville-unit-district-203-indian--pearson-clinical-assessm/National Basketball Association Third-Party Breach (March 2023)https://breachnotes.vulnetix.com/supply-chain/2023-03_national-basketball-association-unknown/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-03_national-basketball-association-unknown/National Payments Corporation of India (NPCI) Third-Party Breach (August 2024)https://breachnotes.vulnetix.com/supply-chain/2024-08_national-payments-corporation-of-india-npci-c-edge-technologies-ltd/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-08_national-payments-corporation-of-india-npci-c-edge-technologies-ltd/Nationwide Recovery Services Healthcare Billing Vendor Breach (Multiple Hospitals)https://breachnotes.vulnetix.com/supply-chain/2025-05_nationwide-recovery-services-healthcare-cluster/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_nationwide-recovery-services-healthcare-cluster/NBC Newshttps://breachnotes.vulnetix.com/supply-chain/2017-05_bronx-lebanon-hospital-center-in-new-ihealth-innovations/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-05_bronx-lebanon-hospital-center-in-new-ihealth-innovations/Nedbank Third-Party Breach (February 2020)https://breachnotes.vulnetix.com/supply-chain/2020-02_nedbank-computer-facilities-pty/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-02_nedbank-computer-facilities-pty/Netherlands enterprise agency RVO Third-Party Breach (March 2023)https://breachnotes.vulnetix.com/supply-chain/2023-03_netherlands-enterprise-agency-rvo-nebu-bv/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-03_netherlands-enterprise-agency-rvo-nebu-bv/NetSarang ShadowPad Supply Chain Backdoor — 100+ Corporate Victimshttps://breachnotes.vulnetix.com/supply-chain/2017-07_hundreds-of-large-companies-around-t-netsarang/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-07_hundreds-of-large-companies-around-t-netsarang/Nevada Restaurant Services (Dotty's) Malware Breach (2021)https://breachnotes.vulnetix.com/supply-chain/2021-09_nrs-dotty-s/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-09_nrs-dotty-s/Newkirk Products Health Insurance ID Card Printer Breach — 3.4 Million Membershttps://breachnotes.vulnetix.com/supply-chain/2016-05_newkirk-products-health-id-cards/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2016-05_newkirk-products-health-id-cards/Newton Centre Dental Third-Party Breach (June 2024)https://breachnotes.vulnetix.com/supply-chain/2024-06_newton-centre-dental-affinity-dental-management/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-06_newton-centre-dental-affinity-dental-management/NHS England Third-Party Breach (September 2024)https://breachnotes.vulnetix.com/supply-chain/2024-09_nhs-england-synnovis/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-09_nhs-england-synnovis/NHS Third-Party Breach (August 2022)https://breachnotes.vulnetix.com/supply-chain/2022-08_nhs-advanced/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_nhs-advanced/Nissan North America Third-Party Breach (January 2023)https://breachnotes.vulnetix.com/supply-chain/2023-01_nissan-north-america-unknown/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-01_nissan-north-america-unknown/Nokia Third-Party Breach (November 2024)https://breachnotes.vulnetix.com/supply-chain/2024-11_nokia-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-11_nokia-third-party-vendor/Nordstrom Employee Data Breach via Contractor (2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_nordstrom-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_nordstrom-not-disclosed/NordVPN Finland Datacenter Server Breachhttps://breachnotes.vulnetix.com/supply-chain/2019-10_nordvpn-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-10_nordvpn-not-disclosed/North Korean Stock Investment Firms Third-Party Breach (January 2021)https://breachnotes.vulnetix.com/supply-chain/2021-01_north-korean-stock-investment-firms-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_north-korean-stock-investment-firms-not-disclosed/NorthStar Anesthesia Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_northstar-anesthesia-arietis-health/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_northstar-anesthesia-arietis-health/Northwell Health Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_northwell-health-perry-johnson-associates-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_northwell-health-perry-johnson-associates-inc/Not disclosed Third-Party Breach (February 2022)https://breachnotes.vulnetix.com/supply-chain/2022-02_not-disclosed-comprehensive-health-service/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-02_not-disclosed-comprehensive-health-service/NotPetya Supply Chain Wiper via M.E.Doc Update (Sandworm, $10B+ Damages)https://breachnotes.vulnetix.com/supply-chain/2017-06_notpetya-medoc-maersk-10b/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-06_notpetya-medoc-maersk-10b/Now:Pensions Third-Party Breach (December 2020)https://breachnotes.vulnetix.com/supply-chain/2020-12_now-pensions-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-12_now-pensions-not-disclosed/npm Supply Chain Attack: chalk, debug, and 16 Other Packages Compromisedhttps://breachnotes.vulnetix.com/supply-chain/2025-09_npm-chalk-debug-phishing/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_npm-chalk-debug-phishing/Nuance Communications Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_nuance-communications-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_nuance-communications-ipswitch-inc/NYC Health + Hospitals Notifying Patients of Two Separate Third-Party Vendor Hackshttps://breachnotes.vulnetix.com/supply-chain/2026-03_nyc-health-notifying-patients-of-2-third-party-hacks/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-03_nyc-health-notifying-patients-of-2-third-party-hacks/NYPD Fingerprint Database Third-Party Breach (December 2019)https://breachnotes.vulnetix.com/supply-chain/2019-12_nypd-fingerprint-database-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-12_nypd-fingerprint-database-not-disclosed/Ohio Medicaid Program Third-Party Breach (June 2021)https://breachnotes.vulnetix.com/supply-chain/2021-06_ohio-medicaid-program-maximus/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-06_ohio-medicaid-program-maximus/Oklahoma City Police Department Third-Party Breach (February 2022)https://breachnotes.vulnetix.com/supply-chain/2022-02_oklahoma-city-police-department-dna-solutions-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-02_oklahoma-city-police-department-dna-solutions-inc/Oklahoma's Department of Human Services (OKDHS) Third-Party Breach (March 2022)https://breachnotes.vulnetix.com/supply-chain/2022-03_oklahoma-s-department-of-human-services-okdhs-liberty-of-oklahoma/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-03_oklahoma-s-department-of-human-services-okdhs-liberty-of-oklahoma/Okta Third-Party Breach (March 2022)https://breachnotes.vulnetix.com/supply-chain/2022-03_okta-sykes-enterprises/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-03_okta-sykes-enterprises/Omada Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_omada-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_omada-drift-salesloft/OmniTRAX Third-Party Breach (January 2021)https://breachnotes.vulnetix.com/supply-chain/2021-01_omnitrax-broe-group/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_omnitrax-broe-group/OneSpan Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_onespan-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_onespan-drift-salesloft/Ontario Cannabis Store / Canada Post Data Breach (2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_ontario-cannabis-store-canada-post/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_ontario-cannabis-store-canada-post/OpenAI Third-Party Breach (November 2025)https://breachnotes.vulnetix.com/supply-chain/2025-11_openai-mixpanel/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-11_openai-mixpanel/OpenSea Third-Party Breach (June 2022)https://breachnotes.vulnetix.com/supply-chain/2022-06_opensea-customer-io/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-06_opensea-customer-io/OPKO Health / BioReference Laboratories via American Medical Collection Agency (AMCA) Breachhttps://breachnotes.vulnetix.com/supply-chain/2019-06_opko-health-american-medical-collect/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-06_opko-health-american-medical-collect/Oracle Health (Cerner) Legacy Server Breach - 80 Hospitals Patient Datahttps://breachnotes.vulnetix.com/supply-chain/2025-01_oracle-health-cerner-hospitals/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_oracle-health-cerner-hospitals/Oracle MICROS POS System Breach — 330,000 Payment Terminals at Riskhttps://breachnotes.vulnetix.com/supply-chain/2016-07_oracle-micros-carbanak/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2016-07_oracle-micros-carbanak/Orange Business Services Third-Party Breach (August 2022)https://breachnotes.vulnetix.com/supply-chain/2022-08_orange-business-services-orange-silicon-valley/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_orange-business-services-orange-silicon-valley/Oregon Driver & Motor Vehicle Services Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_oregon-driver-motor-vehicle-services-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_oregon-driver-motor-vehicle-services-ipswitch-inc/Otelier Hotel Management Platform Breach (Marriott, Hilton, Hyatt, Wyndham)https://breachnotes.vulnetix.com/supply-chain/2025-01_otelier-hotel-reservation-platform/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_otelier-hotel-reservation-platform/PagerDuty Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_pagerduty-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_pagerduty-drift-salesloft/PageUp People HR SaaS Platform Breach — Australian HR Vendor Affecting 100+ Employershttps://breachnotes.vulnetix.com/supply-chain/2018-05_pageup-hr-platform-breach/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-05_pageup-hr-platform-breach/Palo Alto Networks Third-Party Breach (November 2019)https://breachnotes.vulnetix.com/supply-chain/2019-11_palo-alto-networks-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-11_palo-alto-networks-not-disclosed/Palo Alto Networks Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_palo-alto-networks-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_palo-alto-networks-drift-salesloft/Pandora Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_pandora-salesforce/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_pandora-salesforce/Pantheon Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_pantheon-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_pantheon-drift-salesloft/Paramount Health Care Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_paramount-health-care-nationsbenefits-holding-llc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_paramount-health-care-nationsbenefits-holding-llc/Park Mobile Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_park-mobile-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_park-mobile-not-disclosed/Pavilion of Bridgeview Third-Party Breach (December 2024)https://breachnotes.vulnetix.com/supply-chain/2024-12_pavilion-of-bridgeview-pointclickcare/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-12_pavilion-of-bridgeview-pointclickcare/PBI Research Services (PBI) Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_pbi-research-services-pbi-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_pbi-research-services-pbi-ipswitch-inc/Peach Aviation, ZIPAIR Tokyo, Air Belgium, Sky Airlines, Air Transat, Vietravel, Aero K Airlines, Salam Air, FlySafair, Air India Express, Wingo Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_peach-aviation-zipair-tokyo-air-belgium-sky-airlines-air-transat-vietravel-aero-k-airlines-salam-air-flysafair-air-india-express-wingo-radixx-subsidiary-of-sabre-c/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_peach-aviation-zipair-tokyo-air-belgium-sky-airlines-air-transat-vietravel-aero-k-airlines-salam-air-flysafair-air-india-express-wingo-radixx-subsidiary-of-sabre-c/Pell City Valley Bank Third-Party Breach (September 2020)https://breachnotes.vulnetix.com/supply-chain/2020-09_pell-city-valley-bank-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-09_pell-city-valley-bank-not-disclosed/Perth Mint Depository Online data breach via third-party IT provider (September 2018)https://breachnotes.vulnetix.com/supply-chain/2018-09_perth-mint-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-09_perth-mint-not-disclosed/Phipps Conservatory Third-Party Breach (September 2020)https://breachnotes.vulnetix.com/supply-chain/2020-09_phipps-conservatory-blackbaud/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-09_phipps-conservatory-blackbaud/PHP PEAR Package Manager Supply Chain Compromise (January 2019)https://breachnotes.vulnetix.com/supply-chain/2019-01_all-sites-that-use-php-pear-and-down-php-pear/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-01_all-sites-that-use-php-pear-and-down-php-pear/Pi-hole Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_pi-hole-givewp-wordpress/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_pi-hole-givewp-wordpress/Piedmont Health Services Third-Party Breach (March 2021)https://breachnotes.vulnetix.com/supply-chain/2021-03_piedmont-health-services-peaktpa/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_piedmont-health-services-peaktpa/PNI Digital Media Photo Center Breach (Krebs on Security, NBC News, SC Magazine)https://breachnotes.vulnetix.com/supply-chain/2015-09_sam-s-club-costco-cvs-riteaid-walmar-pni-digital-media/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2015-09_sam-s-club-costco-cvs-riteaid-walmar-pni-digital-media/Police Departments Third-Party Breach (June 2020)https://breachnotes.vulnetix.com/supply-chain/2020-06_police-departments-netsentiel/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-06_police-departments-netsentiel/Poll County Schools Third-Party Breach (March 2021)https://breachnotes.vulnetix.com/supply-chain/2021-03_poll-county-schools-pcs-revenue-systems/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_poll-county-schools-pcs-revenue-systems/Polyfill.io JavaScript Supply Chain Attack — 380,000 Websites Compromisedhttps://breachnotes.vulnetix.com/supply-chain/2024-06_polyfill-io-cdn-attack/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-06_polyfill-io-cdn-attack/Pompano Beach City Third-Party Breach (November 2019)https://breachnotes.vulnetix.com/supply-chain/2019-11_pompano-beach-city-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-11_pompano-beach-city-click2gov/PornHub Third-Party Breach (December 2025)https://breachnotes.vulnetix.com/supply-chain/2025-12_pornhub-mixpanel/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-12_pornhub-mixpanel/Postbank Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_postbank-majorel/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_postbank-majorel/PowerSchool SIS data breach — 62 million students and 9.5 million educatorshttps://breachnotes.vulnetix.com/supply-chain/2024-12_powerschool-sis/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-12_powerschool-sis/PR Newswire / Latest Hacking Newshttps://breachnotes.vulnetix.com/supply-chain/2018-06_klook-sociaplus/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-06_klook-sociaplus/Presbyterian Healthcare Services Third-Party Breach (November 2024)https://breachnotes.vulnetix.com/supply-chain/2024-11_presbyterian-healthcare-services-thompson-coburn/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-11_presbyterian-healthcare-services-thompson-coburn/Prestige Software Hotel Reservation Platform AWS S3 Exposure (November 2020)https://breachnotes.vulnetix.com/supply-chain/2020-11_hotels-customers-of-prestige-softwar-prestige-software/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-11_hotels-customers-of-prestige-softwar-prestige-software/Prime Healthcare Third-Party Breach (February 2024)https://breachnotes.vulnetix.com/supply-chain/2024-02_prime-healthcare-keenan-associates/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_prime-healthcare-keenan-associates/Primula Third-Party Breach (January 2024)https://breachnotes.vulnetix.com/supply-chain/2024-01_primula-tietoevry/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-01_primula-tietoevry/Priority Health Third-Party Breach (June 2022)https://breachnotes.vulnetix.com/supply-chain/2022-06_priority-health-warner-norcross-judd/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-06_priority-health-warner-norcross-judd/PrismRBS / Mirrorthief Magecart Skimming Attack — 201 Campus Stores, 176+ Colleges (April 2019)https://breachnotes.vulnetix.com/supply-chain/2019-04_176-colleges-and-universities-prismrbs/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-04_176-colleges-and-universities-prismrbs/Private and Government Organizations in Vietnam Third-Party Breach (December 2020)https://breachnotes.vulnetix.com/supply-chain/2020-12_private-and-government-organizations-vietnam-certification-au/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-12_private-and-government-organizations-vietnam-certification-au/Promo.com Third-Party Breach (July 2020)https://breachnotes.vulnetix.com/supply-chain/2020-07_promo-com-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-07_promo-com-not-disclosed/Proofpoint Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_proofpoint-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_proofpoint-drift-salesloft/Puma Sportswear Industry and Trade Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_puma-sportswear-industry-and-trade-vodatech-it/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_puma-sportswear-industry-and-trade-vodatech-it/PyTorch Nightly Dependency Confusion Attack — torchtriton Malicious Packagehttps://breachnotes.vulnetix.com/supply-chain/2022-12_pytorch-nightly-dependency-confusion/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-12_pytorch-nightly-dependency-confusion/Qantas Airways Limited Third-Party Breach (July 2025)https://breachnotes.vulnetix.com/supply-chain/2025-07_qantas-airways-limited-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-07_qantas-airways-limited-third-party-vendor/QRS Clients Third-Party Breach (November 2021)https://breachnotes.vulnetix.com/supply-chain/2021-11_qrs-clients-qrs/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-11_qrs-clients-qrs/Qualcomm Incorporated Third-Party Breach (February 2024)https://breachnotes.vulnetix.com/supply-chain/2024-02_qualcomm-incorporated-unknown-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_qualcomm-incorporated-unknown-third-party-vendor/Qualys, Inc. Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_qualys-inc-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_qualys-inc-drift-salesloft/Queensway Carleton Hospital Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_queensway-carleton-hospital-aetonix-systems-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_queensway-carleton-hospital-aetonix-systems-inc/Quest Diagnostics / LabCorp via American Medical Collection Agency (AMCA) Breachhttps://breachnotes.vulnetix.com/supply-chain/2019-06_quest-diagnostics-laboratory-corpora-american-medical-collect/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-06_quest-diagnostics-laboratory-corpora-american-medical-collect/Rackspace Third-Party Breach (October 2024)https://breachnotes.vulnetix.com/supply-chain/2024-10_rackspace-sciencelogic/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-10_rackspace-sciencelogic/Radio.com Third-Party Breach (March 2020)https://breachnotes.vulnetix.com/supply-chain/2020-03_radio-com-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-03_radio-com-not-disclosed/Rady Children Hospital, Sonoma Valley Hospital, Innova Health, OSF Third-Party Breach (October 2020)https://breachnotes.vulnetix.com/supply-chain/2020-10_rady-children-hospital-sonoma-valley-blackbaud/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-10_rady-children-hospital-sonoma-valley-blackbaud/Ramsey County, (Minnesota) Family Health Division Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_ramsey-county-minnesota-family-health-division-netgain/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_ramsey-county-minnesota-family-health-division-netgain/Red Hat Consulting GitLab Breach - Crimson Collective (570GB, 800+ Enterprises)https://breachnotes.vulnetix.com/supply-chain/2025-10_redhat-gitlab-crimson-collective/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-10_redhat-gitlab-crimson-collective/Reddit / Krebs on Security / TechCrunchhttps://breachnotes.vulnetix.com/supply-chain/2018-06_reddit-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-06_reddit-not-disclosed/Redwood Eye Center Third-Party Breach (December 2018)https://breachnotes.vulnetix.com/supply-chain/2018-12_redwood-eye-center-it-lighthouse/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-12_redwood-eye-center-it-lighthouse/Regus Third-Party Breach (January 2020)https://breachnotes.vulnetix.com/supply-chain/2020-01_regus-applause/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-01_regus-applause/Renault and Dacia UK Third-Party Breach (October 2025)https://breachnotes.vulnetix.com/supply-chain/2025-10_renault-and-dacia-uk-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-10_renault-and-dacia-uk-third-party-vendor/Rennline Third-Party Breach (March 2022)https://breachnotes.vulnetix.com/supply-chain/2022-03_rennline-freestyle-solutions/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-03_rennline-freestyle-solutions/RIBridges system Third-Party Breach (December 2024)https://breachnotes.vulnetix.com/supply-chain/2024-12_ribridges-system-deloitte/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-12_ribridges-system-deloitte/RigUp's energy sector clients Third-Party Breach (April 2020)https://breachnotes.vulnetix.com/supply-chain/2020-04_rigup-s-energy-sector-clients-rigup/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-04_rigup-s-energy-sector-clients-rigup/RiskIQ / Threatpost / ICOhttps://breachnotes.vulnetix.com/supply-chain/2018-06_ticketmaster-inbenta/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-06_ticketmaster-inbenta/River Region Cardiology Third-Party Breach (February 2025)https://breachnotes.vulnetix.com/supply-chain/2025-02_river-region-cardiology-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-02_river-region-cardiology-third-party-vendor/Roblox Third-Party Breach (July 2024)https://breachnotes.vulnetix.com/supply-chain/2024-07_roblox-fntech/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-07_roblox-fntech/Rochester YMCA Third-Party Breach (August 2020)https://breachnotes.vulnetix.com/supply-chain/2020-08_rochester-ymca-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-08_rochester-ymca-not-disclosed/Rostelecom Third-Party Breach (January 2025)https://breachnotes.vulnetix.com/supply-chain/2025-01_rostelecom-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_rostelecom-third-party-vendor/Rotech Healthcare Third-Party Breach (February 2024)https://breachnotes.vulnetix.com/supply-chain/2024-02_rotech-healthcare-philips-respironics/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_rotech-healthcare-philips-respironics/Rubrik Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_rubrik-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_rubrik-drift-salesloft/Rush System for Health Third-Party Breach (March 2019)https://breachnotes.vulnetix.com/supply-chain/2019-03_rush-system-for-health-miramed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-03_rush-system-for-health-miramed/Rutters Store Third-Party Breach (February 2020)https://breachnotes.vulnetix.com/supply-chain/2020-02_rutters-store-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-02_rutters-store-not-disclosed/SA Health Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_sa-health-personify-care/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_sa-health-personify-care/Sabre Hospitality Solutions SynXis POS Breach — Hotel Reservations and Payment Cardshttps://breachnotes.vulnetix.com/supply-chain/2016-08_sabre-synxis-hotel-breach/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2016-08_sabre-synxis-hotel-breach/Sabre SynXis Hospitality Reservation System Breachhttps://breachnotes.vulnetix.com/supply-chain/2017-07_hard-rock-hotels-casinos-sabre-corp-synxis/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-07_hard-rock-hotels-casinos-sabre-corp-synxis/Sainsbury's Third-Party Breach (November 2024)https://breachnotes.vulnetix.com/supply-chain/2024-11_sainsbury-s-blue-yonder/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-11_sainsbury-s-blue-yonder/Salesloft Drift OAuth Token Supply Chain Attackhttps://breachnotes.vulnetix.com/supply-chain/2025-08_salesloft-drift-oauth-salesforce/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_salesloft-drift-oauth-salesforce/Samsung Electronics Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_samsung-electronics-unknown/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_samsung-electronics-unknown/Samsung, Qualcomm Third-Party Breach (March 2022)https://breachnotes.vulnetix.com/supply-chain/2022-03_samsung-qualcomm-nvidia/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-03_samsung-qualcomm-nvidia/San Francisco Employees' Retirement System (SFERS) Third-Party Breach (June 2020)https://breachnotes.vulnetix.com/supply-chain/2020-06_san-francisco-employees-retirement-s-10up-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-06_san-francisco-employees-retirement-s-10up-inc/Santa Clarita Community College Third-Party Breach (March 2024)https://breachnotes.vulnetix.com/supply-chain/2024-03_santa-clarita-community-college-keenan-associates/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_santa-clarita-community-college-keenan-associates/Saskatchewan HAL system Third-Party Breach (January 2021)https://breachnotes.vulnetix.com/supply-chain/2021-01_saskatchewan-hal-system-aspira/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_saskatchewan-hal-system-aspira/Saudi Aramco Contractor Data Breach — 1TB Exfiltrated, $50M Ransom Demand, 14,000 Employee Recordshttps://breachnotes.vulnetix.com/supply-chain/2021-07_saudi-aramco-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-07_saudi-aramco-not-disclosed/SC Mediahttps://breachnotes.vulnetix.com/supply-chain/2018-05_some-fortune-500-firms-corporation-service-comp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-05_some-fortune-500-firms-corporation-service-comp/Schneider Electric Industry and Trade Joint Stock Company Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_schneider-electric-industry-and-trade-joint-stock-company-mivento-it-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_schneider-electric-industry-and-trade-joint-stock-company-mivento-it-services/Schneider Electric Third-Party Breach (November 2024)https://breachnotes.vulnetix.com/supply-chain/2024-11_schneider-electric-atlassian-s-jira-server/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-11_schneider-electric-atlassian-s-jira-server/Schools, jail cells, hospital ICUs, and major companies like Tesla, Nissan, Equinox, Cloudflare Third-Party Breach (March 2021)https://breachnotes.vulnetix.com/supply-chain/2021-03_schools-jail-cells-hospital-icus-and-major-companies-like-tesla-nissan-equinox-cloudflare-verkada/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_schools-jail-cells-hospital-icus-and-major-companies-like-tesla-nissan-equinox-cloudflare-verkada/SEC Administrative Proceeding against R.T. Jones Capital Equities Managementhttps://breachnotes.vulnetix.com/supply-chain/2013-07_rt-jones-capital-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2013-07_rt-jones-capital-not-disclosed/Secure Administrative Solutions (SAS) Ransomware Breach Affecting Renaissance Life & Health (2021)https://breachnotes.vulnetix.com/supply-chain/2021-08_renaissance-life-health-insurance-secure-administrative-so/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-08_renaissance-life-health-insurance-secure-administrative-so/Serco Inc. Group Health Plan Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_serco-inc-group-health-plan-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_serco-inc-group-health-plan-ipswitch-inc/Shai-Hulud Self-Replicating npm Supply Chain Worm (v1 + v2)https://breachnotes.vulnetix.com/supply-chain/2025-09_shai-hulud-npm-worm/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_shai-hulud-npm-worm/Sharp HealthCare Episource Third-Party Breachhttps://breachnotes.vulnetix.com/supply-chain/2025-06_sharp-healthcare-episource-breach/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-06_sharp-healthcare-episource-breach/Sharp HealthCare Third-Party Breach (February 2023)https://breachnotes.vulnetix.com/supply-chain/2023-02_sharp-healthcare-unknown/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-02_sharp-healthcare-unknown/Sharp Healthcare Third-Party Breach (June 2025)https://breachnotes.vulnetix.com/supply-chain/2025-06_sharp-healthcare-episource/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-06_sharp-healthcare-episource/Shuffles (Pinterest app) Third-Party Breach (December 2025)https://breachnotes.vulnetix.com/supply-chain/2025-12_shuffles-pinterest-app-mixpanel/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-12_shuffles-pinterest-app-mixpanel/Sigma Computing Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_sigma-computing-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_sigma-computing-drift-salesloft/Signal Third-Party Breach (August 2022)https://breachnotes.vulnetix.com/supply-chain/2022-08_signal-twilio/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_signal-twilio/Singapore Airlines KrisFlyer Frequent Flyer SITA Breach — 580,000 Membershttps://breachnotes.vulnetix.com/supply-chain/2021-02_singapore-airlines-sita-580k/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_singapore-airlines-sita-580k/Singapore Armed Forces (SAF) Third-Party Breach (December 2019)https://breachnotes.vulnetix.com/supply-chain/2019-12_singapore-armed-forces-saf-hmi-institute-of-health/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-12_singapore-armed-forces-saf-hmi-institute-of-health/SITA Passenger Service System Breach — 2.1M+ Frequent Flyer Records, 11 Airlines Affectedhttps://breachnotes.vulnetix.com/supply-chain/2021-03_singapore-airlines-air-new-zealand-british-airways-american-airlines-lufthansa-malaysia-airlines-finnair-japan-airlines-united-airlines-sas-cathay-pacific-and-south-korean-airline-juju-air-star-alliance-sita/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_singapore-airlines-air-new-zealand-british-airways-american-airlines-lufthansa-malaysia-airlines-finnair-japan-airlines-united-airlines-sas-cathay-pacific-and-south-korean-airline-juju-air-star-alliance-sita/Sitepoint, teespring Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_sitepoint-teespring-waydev/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_sitepoint-teespring-waydev/Sling TV Third-Party Breach (February 2023)https://breachnotes.vulnetix.com/supply-chain/2023-02_sling-tv-dish-network-corporation/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-02_sling-tv-dish-network-corporation/Smile Design Management Third-Party Breach (October 2024)https://breachnotes.vulnetix.com/supply-chain/2024-10_smile-design-management-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-10_smile-design-management-third-party-vendor/Snowflake UNC5537 Mass Customer Breach Campaignhttps://breachnotes.vulnetix.com/supply-chain/2024-04_snowflake-unc5537-165-customers/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-04_snowflake-unc5537-165-customers/Sobeys Third-Party Breach (December 2022)https://breachnotes.vulnetix.com/supply-chain/2022-12_sobeys-empire-co/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-12_sobeys-empire-co/SolarWinds Orion SUNBURST Supply Chain Attack — Russia SVR, 18,000 Organizationshttps://breachnotes.vulnetix.com/supply-chain/2020-12_department-of-treasury-and-commerce--solarwinds/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-12_department-of-treasury-and-commerce--solarwinds/Somnia Pain Management of Kentucky Third-Party Breach (October 2022)https://breachnotes.vulnetix.com/supply-chain/2022-10_somnia-pain-management-of-kentucky-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-10_somnia-pain-management-of-kentucky-not-disclosed/SonicWall SMA 100 Zero-Day Exploitation (January 2021)https://breachnotes.vulnetix.com/supply-chain/2021-01_sonicwall-customers-sonicwall/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_sonicwall-customers-sonicwall/Sony Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_sony-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_sony-ipswitch-inc/Sophos Ltd. Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_sophos-ltd-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_sophos-ltd-drift-salesloft/Sound Health and Wellness Trust Third-Party Breach (July 2022)https://breachnotes.vulnetix.com/supply-chain/2022-07_sound-health-and-wellness-trust-zenith-american-solutions/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-07_sound-health-and-wellness-trust-zenith-american-solutions/South Baldwin Regional Medical Center Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_south-baldwin-regional-medical-center-community-health-systems/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_south-baldwin-regional-medical-center-community-health-systems/South Korean Organizations Third-Party Breach (August 2018)https://breachnotes.vulnetix.com/supply-chain/2018-08_south-korean-organizations-remote-support-solution/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-08_south-korean-organizations-remote-support-solution/Southwest Airlines Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_southwest-airlines-pilot-credentials/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_southwest-airlines-pilot-credentials/SpaceX Third-Party Breach (March 2023)https://breachnotes.vulnetix.com/supply-chain/2023-03_spacex-maximum-industries/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-03_spacex-maximum-industries/SpaceX, Tesla, Boeing, Lockheed Martin Third-Party Breach (March 2020)https://breachnotes.vulnetix.com/supply-chain/2020-03_spacex-tesla-boeing-lockheed-martin-visser/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-03_spacex-tesla-boeing-lockheed-martin-visser/SpreadGroup Customers Third-Party Breach (July 2021)https://breachnotes.vulnetix.com/supply-chain/2021-07_spreadgroup-customers-spreadshirt-spreadshop-a/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-07_spreadgroup-customers-spreadshirt-spreadshop-a/Sprout Social, Inc. Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_sprout-social-inc-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_sprout-social-inc-drift-salesloft/SpyCloud, Inc. Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_spycloud-inc-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_spycloud-inc-drift-salesloft/Square Medical Group Third-Party Breach (January 2025)https://breachnotes.vulnetix.com/supply-chain/2025-01_square-medical-group-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_square-medical-group-third-party-vendor/St. Luke's Health Third-Party Breach (December 2022)https://breachnotes.vulnetix.com/supply-chain/2022-12_st-luke-s-health-adelanto-healthcare-ventures/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-12_st-luke-s-health-adelanto-healthcare-ventures/St. Luke's Third-Party Breach (May 2022)https://breachnotes.vulnetix.com/supply-chain/2022-05_st-luke-s-kaye-smith/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-05_st-luke-s-kaye-smith/Stanford University Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_stanford-university-brightline-health/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_stanford-university-brightline-health/State Governments of U.S. Third-Party Breach (January 2020)https://breachnotes.vulnetix.com/supply-chain/2020-01_state-governments-of-u-s-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-01_state-governments-of-u-s-not-disclosed/StateScoop / Dark Reading / Gemini Advisoryhttps://breachnotes.vulnetix.com/supply-chain/2018-06_more-than-a-dozen-us-cities-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-06_more-than-a-dozen-us-cities-click2gov/Stellantis Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_stellantis-salesforce/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_stellantis-salesforce/Stiiizy Third-Party Breach (January 2025)https://breachnotes.vulnetix.com/supply-chain/2025-01_stiiizy-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_stiiizy-third-party-vendor/StreamElements Gooten Merchandise Operations Vendor Breachhttps://breachnotes.vulnetix.com/supply-chain/2025-03_streamelements-gooten-breach/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-03_streamelements-gooten-breach/StreamElements Third-Party Breach (March 2025)https://breachnotes.vulnetix.com/supply-chain/2025-03_streamelements-gooten/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-03_streamelements-gooten/Sturm, Ruger & Company Third-Party Breach (August 2022)https://breachnotes.vulnetix.com/supply-chain/2022-08_sturm-ruger-company-freestyle-solutions/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_sturm-ruger-company-freestyle-solutions/Subsidiaries of Personal Touch, Personal Touch Retirement Solutions, Personal Touch Mortgage Administration Services Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_subsidiaries-of-personal-touch-personal-touch-retirement-solutions-personal-touch-mortgage-administration-services-personal-touch-holding-corp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_subsidiaries-of-personal-touch-personal-touch-retirement-solutions-personal-touch-mortgage-administration-services-personal-touch-holding-corp/Sunwing Airlines Third-Party Breach (April 2022)https://breachnotes.vulnetix.com/supply-chain/2022-04_sunwing-airlines-airline-choice/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-04_sunwing-airlines-airline-choice/Super SA Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_super-sa-former-external-service-prov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_super-sa-former-external-service-prov/Supply chain for Audi, BMW, Mercedes, Porsche, Saab, Volkswagen and Volvo across North America Third-Party Breach (January 2021)https://breachnotes.vulnetix.com/supply-chain/2021-01_supply-chain-for-audi-bmw-mercedes-porsche-saab-volkswagen-and-volvo-across-north-america-namesouth/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_supply-chain-for-audi-bmw-mercedes-porsche-saab-volkswagen-and-volvo-across-north-america-namesouth/Surgery Center of Mid Florida Third-Party Breach (August 2024)https://breachnotes.vulnetix.com/supply-chain/2024-08_surgery-center-of-mid-florida-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-08_surgery-center-of-mid-florida-third-party-vendor/Sutter Health Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_sutter-health-virgin-pulse/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_sutter-health-virgin-pulse/Sutter North Surgery Center Patients Third-Party Breach (September 2023)https://breachnotes.vulnetix.com/supply-chain/2023-09_sutter-north-surgery-center-patients-sightpath-medical/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-09_sutter-north-surgery-center-patients-sightpath-medical/Swedish Municipalities Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_swedish-municipalities-milj-data/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_swedish-municipalities-milj-data/Swiss Goverment Third-Party Breach (March 2024)https://breachnotes.vulnetix.com/supply-chain/2024-03_swiss-goverment-xplain/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_swiss-goverment-xplain/SwissBorg Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_swissborg-kiln/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_swissborg-kiln/Switzerland Government Third-Party Breach (June 2025)https://breachnotes.vulnetix.com/supply-chain/2025-06_switzerland-government-radix-zurich-based-and-non-p/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-06_switzerland-government-radix-zurich-based-and-non-p/Syracuse Pediatrics, Tully Physical Therapy, St. Joseph's Medical, Salvation Army, and 24 organizations Third-Party Breach (August 2022)https://breachnotes.vulnetix.com/supply-chain/2022-08_syracuse-pediatrics-tully-physical-therapy-st-joseph-s-medical-salvation-army-and-24-organizations-practice-resources-llc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-08_syracuse-pediatrics-tully-physical-therapy-st-joseph-s-medical-salvation-army-and-24-organizations-practice-resources-llc/T-Mobile Third-Party Breach (June 2024)https://breachnotes.vulnetix.com/supply-chain/2024-06_t-mobile-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-06_t-mobile-third-party-vendor/T-Mobile Third-Party Breach (March 2020)https://breachnotes.vulnetix.com/supply-chain/2020-03_t-mobile-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-03_t-mobile-not-disclosed/T-Mobile Third-Party Breach (September 2024)https://breachnotes.vulnetix.com/supply-chain/2024-09_t-mobile-capgemini/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-09_t-mobile-capgemini/T-Mobile/Experian Data Breach (CNBC, NPR, T-Mobile Newsroom)https://breachnotes.vulnetix.com/supply-chain/2015-09_t-mobile-experian/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2015-09_t-mobile-experian/TalkTalk CSG Ascendon Telecom Platform Breachhttps://breachnotes.vulnetix.com/supply-chain/2025-01_talktalk-csg-ascendon-subscriber/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_talktalk-csg-ascendon-subscriber/TalkTalk Third-Party Breach (January 2025)https://breachnotes.vulnetix.com/supply-chain/2025-01_talktalk-csg-ascendon/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_talktalk-csg-ascendon/Tanium Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_tanium-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_tanium-drift-salesloft/Target Corporation BlackPOS POS Malware Breach via Fazio Mechanical HVAC Vendorhttps://breachnotes.vulnetix.com/supply-chain/2013-11_target-fazio-mechanical-service/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2013-11_target-fazio-mechanical-service/Tata Communications, Bharti Airtel and DBS Bank Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_tata-communications-bharti-airtel-and-dbs-bank-route-mobil/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_tata-communications-bharti-airtel-and-dbs-bank-route-mobil/Taylor Rose Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_taylor-rose-cts/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_taylor-rose-cts/TeamPCP Checkmarx KICS GitHub Actions Supply Chain Compromisehttps://breachnotes.vulnetix.com/supply-chain/2026-03_teampcp-checkmarx-kics/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-03_teampcp-checkmarx-kics/TeamPCP Telnyx Python SDK PyPI Supply Chain Compromisehttps://breachnotes.vulnetix.com/supply-chain/2026-03_teampcp-telnyx-pypi/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-03_teampcp-telnyx-pypi/TeamPCP Trivy/Aqua Security GitHub Actions Supply Chain Compromise (CVE-2026-33634)https://breachnotes.vulnetix.com/supply-chain/2026-03_teampcp-trivy-github-actions/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-03_teampcp-trivy-github-actions/TechCrunchhttps://breachnotes.vulnetix.com/supply-chain/2024-03_mintlify-github-tokens/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_mintlify-github-tokens/Tenable, Inc. Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_tenable-inc-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_tenable-inc-drift-salesloft/TennCare Third-Party Breach (November 2019)https://breachnotes.vulnetix.com/supply-chain/2019-11_tenncare-magellan-health-system/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-11_tenncare-magellan-health-system/Terminalen A/S Third-Party Breach (November 2025)https://breachnotes.vulnetix.com/supply-chain/2025-11_terminalen-a-s-docubizz/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-11_terminalen-a-s-docubizz/Texas Centers for Infectious Disease Associates Third-Party Breach (July 2025)https://breachnotes.vulnetix.com/supply-chain/2025-07_texas-centers-for-infectious-disease-associates-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-07_texas-centers-for-infectious-disease-associates-third-party-vendor/The Australian Defence Department Third-Party Breach (November 2018)https://breachnotes.vulnetix.com/supply-chain/2018-11_the-australian-defence-department-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-11_the-australian-defence-department-not-disclosed/The Australian P&N Bank Third-Party Breach (January 2020)https://breachnotes.vulnetix.com/supply-chain/2020-01_the-australian-p-n-bank-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-01_the-australian-p-n-bank-not-disclosed/The Bank of Queensland Third-Party Breach (March 2019)https://breachnotes.vulnetix.com/supply-chain/2019-03_the-bank-of-queensland-landmark-white-limited/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-03_the-bank-of-queensland-landmark-white-limited/The Canadian Government Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_the-canadian-government-sirva-worldwide-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_the-canadian-government-sirva-worldwide-inc/The city of Charlottesville Third-Party Breach (November 2019)https://breachnotes.vulnetix.com/supply-chain/2019-11_the-city-of-charlottesville-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-11_the-city-of-charlottesville-not-disclosed/The Clark County School District Third-Party Breach (October 2019)https://breachnotes.vulnetix.com/supply-chain/2019-10_the-clark-county-school-district-pearson-clinical-assessm/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-10_the-clark-county-school-district-pearson-clinical-assessm/The Hanoi Stock Exchange (HNX) Third-Party Breach (March 2024)https://breachnotes.vulnetix.com/supply-chain/2024-03_the-hanoi-stock-exchange-hnx-vndirect/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_the-hanoi-stock-exchange-hnx-vndirect/The Indio Water Authority Third-Party Breach (October 2018)https://breachnotes.vulnetix.com/supply-chain/2018-10_the-indio-water-authority-click2gov/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-10_the-indio-water-authority-click2gov/The New York City Department of Education (NYC DOE) Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_the-new-york-city-department-of-education-nyc-doe-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_the-new-york-city-department-of-education-nyc-doe-ipswitch-inc/The Registerhttps://breachnotes.vulnetix.com/supply-chain/2018-01_western-union-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-01_western-union-not-disclosed/The U.S. Government Accountability Office Third-Party Breach (February 2024)https://breachnotes.vulnetix.com/supply-chain/2024-02_the-u-s-government-accountability-office-cgi-federal/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-02_the-u-s-government-accountability-office-cgi-federal/The Washington Post Third-Party Breach (November 2025)https://breachnotes.vulnetix.com/supply-chain/2025-11_the-washington-post-oracle-e-business-suite/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-11_the-washington-post-oracle-e-business-suite/The Washoe County School District Third-Party Breach (September 2018)https://breachnotes.vulnetix.com/supply-chain/2018-09_the-washoe-county-school-district-edmodo/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-09_the-washoe-county-school-district-edmodo/Threatposthttps://breachnotes.vulnetix.com/supply-chain/2018-02_applebee-s-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-02_applebee-s-not-disclosed/Ticketmaster Third-Party Breach (May 2024)https://breachnotes.vulnetix.com/supply-chain/2024-05_ticketmaster-snowflake/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-05_ticketmaster-snowflake/Ticketmaster UK Inbenta Magecart Supply Chain Attack — 40,000 Payment Cardshttps://breachnotes.vulnetix.com/supply-chain/2018-02_ticketmaster-inbenta-magecart/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-02_ticketmaster-inbenta-magecart/TietoEVRY Ransomware Attack (Swedish Universities, Municipalities, Companies)https://breachnotes.vulnetix.com/supply-chain/2024-01_tietoevry-ransomware-swedish-orgs/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-01_tietoevry-ransomware-swedish-orgs/TJ Maxx Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_tj-maxx-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_tj-maxx-ipswitch-inc/Toronto Symphony Orchestra Third-Party Breach (July 2022)https://breachnotes.vulnetix.com/supply-chain/2022-07_toronto-symphony-orchestra-wordfly/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-07_toronto-symphony-orchestra-wordfly/Toyota Third-Party Breach (August 2024)https://breachnotes.vulnetix.com/supply-chain/2024-08_toyota-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-08_toyota-third-party-vendor/Toyota Turkey Marketing and Sales Joint Stock Company Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_toyota-turkey-marketing-and-sales-joint-stock-company-mivento-it-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_toyota-turkey-marketing-and-sales-joint-stock-company-mivento-it-services/TQL carriers Third-Party Breach (February 2020)https://breachnotes.vulnetix.com/supply-chain/2020-02_tql-carriers-tql/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-02_tql-carriers-tql/TransUnion Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_transunion-salesforce/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_transunion-salesforce/TRG Medical Imaging Third-Party Breach (May 2025)https://breachnotes.vulnetix.com/supply-chain/2025-05_trg-medical-imaging-nationwide-recovery-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_trg-medical-imaging-nationwide-recovery-services/Tribune Media, Times Media Grup Third-Party Breach (September 2020)https://breachnotes.vulnetix.com/supply-chain/2020-09_tribune-media-times-media-grup-view-media/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-09_tribune-media-times-media-grup-view-media/TriHealth Physician Partners (TriHealth) Third-Party Breach (November 2024)https://breachnotes.vulnetix.com/supply-chain/2024-11_trihealth-physician-partners-trihealth-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-11_trihealth-physician-partners-trihealth-third-party-vendor/Trimble Cityworks Vulnerability Exploited Against US Local Governmentshttps://breachnotes.vulnetix.com/supply-chain/2025-05_trimble-cityworks-us-local-govts/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-05_trimble-cityworks-us-local-govts/TriZetto (Cognizant) Healthcare Technology Breach (3M+ Individuals)https://breachnotes.vulnetix.com/supply-chain/2024-11_trizetto-cognizant-healthcare-3m/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-11_trizetto-cognizant-healthcare-3m/Trizetto Provider Solutions 2024 Hack Detected 2025 — 3.4 Million Billing Recordshttps://breachnotes.vulnetix.com/supply-chain/2026-03_trizetto-notifying-3-4m-of-2024-hack-detected-in-2025/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-03_trizetto-notifying-3-4m-of-2024-hack-detected-in-2025/Truecaller Third-Party Breach (May 2019)https://breachnotes.vulnetix.com/supply-chain/2019-05_truecaller-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-05_truecaller-not-disclosed/TrueCaller Third-Party Breach (May 2020)https://breachnotes.vulnetix.com/supply-chain/2020-05_truecaller-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-05_truecaller-not-disclosed/Tweet thread by bantghttps://breachnotes.vulnetix.com/supply-chain/2023-12_ledger-supply-chain-attack/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-12_ledger-supply-chain-attack/Tweet thread by TrustWallethttps://breachnotes.vulnetix.com/supply-chain/2025-12_trust-wallet-hack/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-12_trust-wallet-hack/U.S. Customs and Border Protection via Perceptics Subcontractor Breachhttps://breachnotes.vulnetix.com/supply-chain/2019-05_u-s-customs-and-border-protection-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-05_u-s-customs-and-border-protection-not-disclosed/U.S. Department of Energy Third-Party Breach (May 2021)https://breachnotes.vulnetix.com/supply-chain/2021-05_u-s-department-of-energy-fermilab/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_u-s-department-of-energy-fermilab/U.S. Government Third-Party Breach (May 2021)https://breachnotes.vulnetix.com/supply-chain/2021-05_u-s-government-blueforce/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_u-s-government-blueforce/U.S. Lawmakers (House legislators) Third-Party Breach (June 2021)https://breachnotes.vulnetix.com/supply-chain/2021-06_u-s-lawmakers-house-legislators-iconstituent/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-06_u-s-lawmakers-house-legislators-iconstituent/ua-parser-js npm Package Hijack — Cryptominer and Password Stealerhttps://breachnotes.vulnetix.com/supply-chain/2021-10_ua-parser-js-npm-malware/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-10_ua-parser-js-npm-malware/Uber 2016 Data Breach and Cover-Up (57 Million Users)https://breachnotes.vulnetix.com/supply-chain/2017-10_uber-github/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-10_uber-github/Uber Eats Data Exposed via Third Party — 820,000 Delivery Drivers' Datahttps://breachnotes.vulnetix.com/supply-chain/2021-11_uber-eats-third-party-820k/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-11_uber-eats-third-party-820k/Uber Third-Party Breach (March 2023)https://breachnotes.vulnetix.com/supply-chain/2023-03_uber-genova-burns/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-03_uber-genova-burns/Ubiquiti Networks Third-Party Breach (February 2021)https://breachnotes.vulnetix.com/supply-chain/2021-02_ubiquiti-networks-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-02_ubiquiti-networks-not-disclosed/UC San Diego Health / NBC San Diego / Becker's Hospital Reviewhttps://breachnotes.vulnetix.com/supply-chain/2018-06_uc-san-diego-health-nuance-communications/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-06_uc-san-diego-health-nuance-communications/UK Conservative Party conference app breach via CrowdComms (September 2018)https://breachnotes.vulnetix.com/supply-chain/2018-09_the-conservative-party-uk-crowdcomms/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-09_the-conservative-party-uk-crowdcomms/UK's defence ministry and the Cabinet Office Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_uk-s-defence-ministry-and-the-cabinet-office-inflite-the-jet-centre-ltd/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_uk-s-defence-ministry-and-the-cabinet-office-inflite-the-jet-centre-ltd/Ultralytics YOLO PyPI Package Supply Chain Attackhttps://breachnotes.vulnetix.com/supply-chain/2024-12_ultralytics-pypi-github-actions-cryptominer/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-12_ultralytics-pypi-github-actions-cryptominer/UNC Lenoir Health Care, Avera Health, CHI Health, Phelps Health, and 4 organizations Third-Party Breach (March 2022)https://breachnotes.vulnetix.com/supply-chain/2022-03_unc-lenoir-health-care-avera-health-chi-health-phelps-health-and-4-organizations-mcg-health/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2022-03_unc-lenoir-health-care-avera-health-chi-health-phelps-health-and-4-organizations-mcg-health/UNC6426 nx npm Supply Chain → AWS Admin Takeover (72 Hours)https://breachnotes.vulnetix.com/supply-chain/2026-03_unc6426-nx-npm-aws-takeover/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2026-03_unc6426-nx-npm-aws-takeover/UniCredit Third-Party Breach (October 2019)https://breachnotes.vulnetix.com/supply-chain/2019-10_unicredit-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-10_unicredit-not-disclosed/UNIQLO Third-Party Breach (May 2019)https://breachnotes.vulnetix.com/supply-chain/2019-05_uniqlo-not/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-05_uniqlo-not/United Healthcare, Aetna Life Insurance Company (CVS Health) and 46 more Third-Party Breach (July 2025)https://breachnotes.vulnetix.com/supply-chain/2025-07_united-healthcare-aetna-life-insurance-company-cvs-health-and-46-more-kelly-associates-insurance-g/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-07_united-healthcare-aetna-life-insurance-company-cvs-health-and-46-more-kelly-associates-insurance-g/United Parcel Service (UPS) and Norfolk Southern Railroad Third-Party Breach (January 2021)https://breachnotes.vulnetix.com/supply-chain/2021-01_united-parcel-service-ups-and-norfolk-southern-railroad-taylor-made-diagnostics-tmd/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-01_united-parcel-service-ups-and-norfolk-southern-railroad-taylor-made-diagnostics-tmd/United States Department of Justice Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_united-states-department-of-justice-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_united-states-department-of-justice-ipswitch-inc/University of Colorado Hospital Authority Third-Party Breach (January 2023)https://breachnotes.vulnetix.com/supply-chain/2023-01_university-of-colorado-hospital-authority-diligent-corporation/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-01_university-of-colorado-hospital-authority-diligent-corporation/University of Houston Third-Party Breach (May 2021)https://breachnotes.vulnetix.com/supply-chain/2021-05_university-of-houston-herff-jones/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-05_university-of-houston-herff-jones/University of Lousville Third-Party Breach (September 2018)https://breachnotes.vulnetix.com/supply-chain/2018-09_university-of-lousville-health-fitness-corp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-09_university-of-lousville-health-fitness-corp/University of Sydney Third-Party Breach (September 2023)https://breachnotes.vulnetix.com/supply-chain/2023-09_university-of-sydney-unknown/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-09_university-of-sydney-unknown/University of Tennessee Health Science Center Third-Party Breach (March 2024)https://breachnotes.vulnetix.com/supply-chain/2024-03_university-of-tennessee-health-science-center-kmj-health-solutions/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_university-of-tennessee-health-science-center-kmj-health-solutions/UpGuardhttps://breachnotes.vulnetix.com/supply-chain/2017-06_republican-national-committee-deep-root/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-06_republican-national-committee-deep-root/UpGuard / Bitdefender / Healthcare IT Newshttps://breachnotes.vulnetix.com/supply-chain/2018-08_150-businesses-including-those-in-tr-medcall-healthcare-advis/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-08_150-businesses-including-those-in-tr-medcall-healthcare-advis/Uppsala County Third-Party Breach (January 2024)https://breachnotes.vulnetix.com/supply-chain/2024-01_uppsala-county-tietoevry/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-01_uppsala-county-tietoevry/UPS Cargo Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_ups-cargo-vodatech-it/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_ups-cargo-vodatech-it/Upstate Family Health Center, Inc. Third-Party Breach (January 2024)https://breachnotes.vulnetix.com/supply-chain/2024-01_upstate-family-health-center-inc-healthec-llc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-01_upstate-family-health-center-inc-healthec-llc/Upstox Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_upstox-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_upstox-not-disclosed/US Department of Defense travel records breach via unnamed contractor (October 2018)https://breachnotes.vulnetix.com/supply-chain/2018-10_department-of-defense-pentagon-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-10_department-of-defense-pentagon-not-disclosed/US Small Business Administration Third-Party Breach (January 2024)https://breachnotes.vulnetix.com/supply-chain/2024-01_us-small-business-administration-orrick-herrington-sutcliffe/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-01_us-small-business-administration-orrick-herrington-sutcliffe/UseNeXt, Usenet.nl Third-Party Breach (April 2020)https://breachnotes.vulnetix.com/supply-chain/2020-04_usenext-usenet-nl-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-04_usenext-usenet-nl-not-disclosed/VAG, Ericsson, Leica, MAN, Toshiba, UniCredit, and British Telecom (BT) Third-Party Breach (May 2019)https://breachnotes.vulnetix.com/supply-chain/2019-05_vag-ericsson-leica-man-toshiba-unicr-citycomp/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-05_vag-ericsson-leica-man-toshiba-unicr-citycomp/Valley Health System Third-Party Breach (December 2023)https://breachnotes.vulnetix.com/supply-chain/2023-12_valley-health-system-eso-solutions-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-12_valley-health-system-eso-solutions-inc/VCU Health System Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_vcu-health-system-credit-control-corporation/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_vcu-health-system-credit-control-corporation/Vecino Health Centers, TX Third-Party Breach (June 2023)https://breachnotes.vulnetix.com/supply-chain/2023-06_vecino-health-centers-tx-ipswitch-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-06_vecino-health-centers-tx-ipswitch-inc/Verizon Customer Data Exposure via NICE Systems — 14 Million Records on AWS S3https://breachnotes.vulnetix.com/supply-chain/2017-06_verizon-nice-systems-s3-14m/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-06_verizon-nice-systems-s3-14m/Verizon Customer Records Exposed via NICE Systems Misconfigured S3 Buckethttps://breachnotes.vulnetix.com/supply-chain/2017-07_verizon-nice-systems/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-07_verizon-nice-systems/VestaCP Third-Party Breach (October 2018)https://breachnotes.vulnetix.com/supply-chain/2018-10_vestacp-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-10_vestacp-not-disclosed/Vestel Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_vestel-mivento-it-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_vestel-mivento-it-services/Veterans Health Administration Third-Party Breach (December 2024)https://breachnotes.vulnetix.com/supply-chain/2024-12_veterans-health-administration-dbp-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-12_veterans-health-administration-dbp-inc/Virginia Dept. of Medical Assistance Services Third-Party Breach (October 2023)https://breachnotes.vulnetix.com/supply-chain/2023-10_virginia-dept-of-medical-assistance-services-maximus/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-10_virginia-dept-of-medical-assistance-services-maximus/Virginia Farm Bureau Service Corporation Third-Party Breach (March 2024)https://breachnotes.vulnetix.com/supply-chain/2024-03_virginia-farm-bureau-service-corporation-employee-benefits-corporatio/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-03_virginia-farm-bureau-service-corporation-employee-benefits-corporatio/Vodafone Turkey Third-Party Breach (July 2023)https://breachnotes.vulnetix.com/supply-chain/2023-07_vodafone-turkey-mivento-it-services/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-07_vodafone-turkey-mivento-it-services/Volkswagen/Audi Shift Digital Breach — 3.3M Customers, Unsecured Cloud Data 2019–2021https://breachnotes.vulnetix.com/supply-chain/2021-06_volkswagen-group-of-america-shift-digital/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-06_volkswagen-group-of-america-shift-digital/Wake Forest Baptist Health, Lexington Medical Center Third-Party Breach (March 2021)https://breachnotes.vulnetix.com/supply-chain/2021-03_wake-forest-baptist-health-lexington-medical-center-healthgrades/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-03_wake-forest-baptist-health-lexington-medical-center-healthgrades/Wealthsimple Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_wealthsimple-third-party-vendor/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_wealthsimple-third-party-vendor/Webster Bank Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_webster-bank-guardian-analytics-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_webster-bank-guardian-analytics-inc/Webstorage users Third-Party Breach (May 2019)https://breachnotes.vulnetix.com/supply-chain/2019-05_webstorage-users-asus-webstorage/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-05_webstorage-users-asus-webstorage/Wegmans Third-Party Breach (September 2018)https://breachnotes.vulnetix.com/supply-chain/2018-09_wegmans-invermar/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2018-09_wegmans-invermar/Welltok Healthcare SaaS MOVEit Breach — 8.5 Million Patient Recordshttps://breachnotes.vulnetix.com/supply-chain/2023-05_welltok-moveit-8-5m-patients/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_welltok-moveit-8-5m-patients/Wendy's POS Malware Breach — 1,025 Restaurant Locations, Payment Cardshttps://breachnotes.vulnetix.com/supply-chain/2015-10_wendys-pos-malware-1025-locations/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2015-10_wendys-pos-malware-1025-locations/Westat, Inc. Third-Party Breach (November 2023)https://breachnotes.vulnetix.com/supply-chain/2023-11_westat-inc-nuance-communications-inc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-11_westat-inc-nuance-communications-inc/Westpac Bank PayID Enumeration Attackhttps://breachnotes.vulnetix.com/supply-chain/2019-06_westpac-bank-payid/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-06_westpac-bank-payid/Whitman College Third-Party Breach (May 2023)https://breachnotes.vulnetix.com/supply-chain/2023-05_whitman-college-brightline-health/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-05_whitman-college-brightline-health/Whittier Hospital Third-Party Breach (December 2024)https://breachnotes.vulnetix.com/supply-chain/2024-12_whittier-hospital-pih-health/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-12_whittier-hospital-pih-health/Wiener & Kennedy Third-Party Breach (April 2021)https://breachnotes.vulnetix.com/supply-chain/2021-04_wiener-kennedy-perkins-co-netgain-4th-party/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2021-04_wiener-kennedy-perkins-co-netgain-4th-party/Wikipediahttps://breachnotes.vulnetix.com/supply-chain/2017-06_many-ukrainen-companies-and-everal-g-medoc/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2017-06_many-ukrainen-companies-and-everal-g-medoc/WildWorks Third-Party Breach (November 2020)https://breachnotes.vulnetix.com/supply-chain/2020-11_wildworks-not-disclosed/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2020-11_wildworks-not-disclosed/Wisconsin Department of Health Services Third-Party Breach (July 2024)https://breachnotes.vulnetix.com/supply-chain/2024-07_wisconsin-department-of-health-services-disability-rights-wisconsin/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-07_wisconsin-department-of-health-services-disability-rights-wisconsin/Wolverine Solutions Group Ransomware Breach — 700+ Healthcare Clients, 1.2M Patients (2018–2019)https://breachnotes.vulnetix.com/supply-chain/2019-03_healthcare-institutions-including-bl-wolverine-solutions-grou/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-03_healthcare-institutions-including-bl-wolverine-solutions-grou/Workday Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_workday-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_workday-drift-salesloft/Workiva Third-Party Breach (September 2025)https://breachnotes.vulnetix.com/supply-chain/2025-09_workiva-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-09_workiva-drift-salesloft/Woundcare Innovations of Golf Land Third-Party Breach (January 2024)https://breachnotes.vulnetix.com/supply-chain/2024-01_woundcare-innovations-of-golf-land-consensiohealth/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2024-01_woundcare-innovations-of-golf-land-consensiohealth/Wyndham Third-Party Breach (January 2025)https://breachnotes.vulnetix.com/supply-chain/2025-01_wyndham-otelier/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-01_wyndham-otelier/Wyze customer Third-Party Breach (December 2019)https://breachnotes.vulnetix.com/supply-chain/2019-12_wyze-customer-wyze/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-12_wyze-customer-wyze/Xerox, CenturyLink, Nasdaq, General Electric, Forever21, and Dunkin Donuts Third-Party Breach (December 2019)https://breachnotes.vulnetix.com/supply-chain/2019-12_xerox-centurylink-nasdaq-general-ele-ipr-software/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-12_xerox-centurylink-nasdaq-general-ele-ipr-software/YOYO Information Technologies and Tourism Trade AS Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_yoyo-information-technologies-and-tourism-trade-as-vodatech-it/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_yoyo-information-technologies-and-tourism-trade-as-vodatech-it/Yves Rocher Third-Party Breach (September 2019)https://breachnotes.vulnetix.com/supply-chain/2019-09_yves-rocher-aliznet/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-09_yves-rocher-aliznet/Zendesk 2016 Breach Disclosed 2019 (Uber, Slack, FCC Affected)https://breachnotes.vulnetix.com/supply-chain/2019-10_uber-slack-and-fcc-zendesk/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2019-10_uber-slack-and-fcc-zendesk/Zillow Third-Party Breach (August 2023)https://breachnotes.vulnetix.com/supply-chain/2023-08_zillow-rapattoni-corporation/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2023-08_zillow-rapattoni-corporation/Zscaler Third-Party Breach (August 2025)https://breachnotes.vulnetix.com/supply-chain/2025-08_zscaler-drift-salesloft/Mon, 01 Jan 0001 00:00:00 +0000https://breachnotes.vulnetix.com/supply-chain/2025-08_zscaler-drift-salesloft/