Recent Breaches

Recent BreachesAttack methods › Phishing & Social Engineering

Attack method

Phishing & Social Engineering

Phishing and social engineering trick employees into handing over credentials or access, which attackers then use to breach systems.
11tracked breaches

Groups using this method

ShinyHunters 2Qilin 2

Breaches using Phishing & Social Engineering

July 6, 2026MEDIVeil#Drop Framework Delivers PureLog Infostealer via Blogspot
Phishing & Social Engineering
July 4, 2026HIGHAdaptHealth Patient Data Stolen via Contractor Phishing
Phishing & Social Engineering
June 23, 2026HIGHXsolis Data Breach Exposes PHI for 1.4 Million via Phishing
Phishing & Social Engineering
June 16, 2026HIGHiRhythm Discloses Patient Data Breach After Social Engineering Attack
Ransomware
June 15, 2026MEDIMicrosoft Copilot SearchLeak Flaw Enables 1-Click Data Theft
Phishing & Social Engineering
June 4, 2026MEDI100+ European Hotels Hit by Reservation Data Breach
Phishing & Social Engineering
May 31, 2026HIGHCarnival Discloses Breach Impacting Nearly 6M Travelers
Phishing & Social Engineering
May 29, 2026MEDIRich Products Discloses Phishing Breach Impacting ~200
Phishing & Social Engineering
May 17, 2026HIGHTycoon2FA Phishing Kit Evolves to Hijack Microsoft 365 Accounts
Phishing & Social Engineering
May 5, 2026HIGHCushman & Wakefield confirms vishing breach after dual claims
ShinyHuntersQilinRansomware
May 5, 2026MEDICushman & Wakefield confirms vishing breach claimed by ShinyHunters and Qilin
ShinyHuntersQilinPhishing & Social Engineering
Check your exposure
See if your email turned up in any breach we track — free.
Check if you’re exposed →

Attributions to threat groups and methods reflect public reporting and, in some cases, unverified claims made by the groups themselves; they may be incomplete or later revised. Recent Breaches and GalaxyWarden are independent and are not affiliated with, and do not endorse, any company or group named on this page. This information is aggregated from public sources for awareness only and is not legal, security, or investment advice.