IT Governance found 73 publicly disclosed security incidents in August 2023, accounting for 79,729,271 breached records.
You can find the full list below, divided into four categories: cyber attacks, ransomware, data breaches, and malicious insiders and miscellaneous incidents.
For more details about the year’s incidents, check out our new page, which provides a complete list of known data breaches and cyber attacks in 2023.
It also breaks down each month’s cyber security incidents and provides more information about the biggest and most notable breaches of the month.
Cyber attacks
- Discovery at Home notifies patients after phishing incident (unknown)
- Health Employers Association of BC healthcare workers’ private information subject to data breach (unknown)
- Nigeria’s NITDA warns of cyber attack on Nigerian government infrastructure (unknown)
- Egypt’s health minister says patients’ data sold online (2 million)
- Eastern Connecticut Health Network hospitals diverting ER patients amid suspected cyber attack (unknown)
- SESARAM confirms cyber attack on Portuguese health service (unknown)
- Cyber attack on UK’s electoral registers revealed (40 million)
- Hospitality Staffing Solutions files notice of security breach (104,660)
- Mutual of Omaha Rx reports security incident leaking confidential member information (unknown)
- Bank OZK announces third-party breach stemming from vendor’s use of MOVEit (unknown)
- The Hartford Life and Accident Insurance Company files notice of security breach (unknown)
- Unum Group confirms MOVEit breach leaked customer info (unknown)
- Freedom Debt Relief files notice of security breach (unknown)
- Indiana University Health becomes the latest MOVEit victim (unknown)
- American National Insurance Company experiences security breach (unknown)
- Missouri Department of Social Services reports MOVEit breach (unknown)
- Maximus_Substitute-Notice_FHK_230808.pdf (unknown)
- Office of the Maine AG: Consumer Protection: Privacy, Identity Theft and Data Security Breaches (180,142)
- PGCPS network hit by cyberattack: 4,500 accounts affected (fox5dc.com) (unknown)
- Real estate markets scramble following cyberattack on listings provider | Ars Technica (unknown)
- Two more attacks involving sensitive data: a plastic surgery center in Brazil and a psychiatric hospital in Lithuania (databreaches.net) (unknown)
- Potential cyberattack throughout Singing River Health System (wlox.com) (unknown)
- Microsoft Word – EOLCyberIncident_FinalforLodgement_841am (asx.com.au) (unknown)
- Cloud and hosting provider Leaseweb took down critical systems after a cyber attack (securityaffairs.com) (unknown)
- Century-old technology hack brought 20 trains to a halt in Poland | Cybernews (unknown)
- University of Michigan severs ties to internet after cyberattack (therecord.media) (unknown)
Ransomware
- Crozer Health’s computer systems were knocked offline Thursday by a ransomware attack (unknown)
- Colorado Department of Higher Education is notifying the public of a “data incident” (unknown)
- Jefferson County Health Center notifies patients about May ransomware attack (unknown)
- Cyber attack in Israel shuts down computers in Bnei Brak hospital (unknown)
- Oregon Sports Medicine allegedly hit by threat actors (unknown)
- Cyber Incident – ADSC (1,470,000)
- Ransomware attack continues to affect 2 CT hospital systems (ctpost.com) (unknown)
- Office of the Maine AG: Consumer Protection: Privacy, Identity Theft and Data Security Breaches (157,688)
- EXCLUSIVE: Medusa ransomware group, DDoS attacks against Levare International Ltd. (suspectfile.com) (unknown)
- Cleveland City Schools face ransomware attack – WDEF (unknown)
- May 2023 Data Security Incident Public Notice (prnewswire.com) (unknown)
- Two more attacks involving sensitive data: a plastic surgery center in Brazil and a psychiatric hospital in Lithuania (databreaches.net) (unknown)
- Ransomware Attack on CloudNordic Paralyzes Company and Customers – recordere.dk (unknown)
- Thousands have SSNs leaked after ransomware attack on Ohio state archive org (therecord.media) (7,600)
- Mom’s Meals’ parent company, PurFoods, discloses data breach | Cybernews (1,200,000)
Data breaches
- NHS staff reprimanded for WhatsApp data sharing (unknown)
- Police in Northern Ireland have been involved in a data breach ‘of monumental proportions’ (10,000)
- Cumbria police admit huge breach of data of officers and staff | Police | The Guardian (2,000)
- United Bank announces breach involving Camden Clark data | News, Sports, Jobs – News and Sentinel (unknown)
- Department of Health Care Policy & Financing Provides Notice of a Data Security Incident | Colorado Department of Health Care Policy & Financing (4,000,000)
- Press notice regarding data breach at Norfolk and Suffolk police | Suffolk Constabulary (1,230)
- Discord.io confirms breach after hacker steals data of 760K users (bleepingcomputer.com) (760,000)
- Hacker may have stolen sensitive info from Bradenton doctors | Bradenton Herald (unknown)
- Massachusetts says 134,000 were affected by UMass Chan data breach – CBS Boston (cbsnews.com) (134,000)
- Hackers threaten publishing sensitive medical data on politicians, Haredi leaders – www.israelhayom.com (unknown)
- Finance Department Sent Every Employee Their Colleagues’ Personal Info – THE CITY (1,800)
- Notice to Patients of Privacy Incident | Jefferson Health (unknown)
- Notice of Cybersecurity Incident | Morris Hospital (248,943)
- Police officer loses laptop and notebook as he drives along motorway after leaving them on roof of his car in fourth data breach by single force | Daily Mail Online (unknown)
- Tesla says data breach impacting 75,000 employees was an insider job | TechCrunch (7,500)
- El Salvadoran database raises questions of possible political intrigue (databreaches.net) (5,100,000)
- Two data breaches in Gadsden: Court system, EMS report stolen data (tallahassee.com) (unknown)
- University of Minnesota Confirms Data Breach, Says Ransomware Not Involved – SecurityWeek (7,000,000)
- HUS confirms data breach by ex-staff member, hundreds of patients’ data compromised | News | Yle Uutiset (1,000)
- Laptop containing confidential data stolen from blood bank of Gurugram hospital – ThePrint – PTIFeed (unknown)
- Sensitive Data of 10m at Risk After French Employment Agency Breach – Infosecurity Magazine (infosecurity-magazine.com) (10,000,000)
- Metropolitan Police on red alert after details of officers and staff hacked in massive security breach | The Sun (47,000)
- Serious leak at Land Registry: millions of residential addresses by everyone to look up | RTL News (rtlnieuws.nl) (6,500,000)
- Office of the Maine AG: Consumer Protection: Privacy, Identity Theft and Data Security Breaches (539,207)
- Important Notification of Data Security Incident (yahoo.com) (unknown)
- 110K people in Tucson area could be affected by data breach (110,000)
- LogicMonitor customers hit by hackers, because of default passwords | TechCrunch (unknown)
- Data Media Associates Announces MOVEit-Related Data Breach | Console and Associates, P.C. – JDSupra (unknown)
- VNS Health Confirms Data Breach at TMG Health Resulted in Data of 103,775 Consumers Being Leaked | Console and Associates, P.C. – JDSupra (unknown)
- Hillsborough County Confirms MOVEit Data Breach Leaks Information of 70k+ | Console and Associates, P.C. – JDSupra (70,000)