Skip to content

BushidoUK/Breach-Report-Collection

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

57 Commits
README.md
README.md
 
 

Repository files navigation

Breach Report Collection

  • A collection of companies that disclose adversary TTPs after they have been breached
  • Useful for analysis of intrusions launched by adversaries with measurable effects and impact
Organization Breach Date Adversary Source
F5 Networks October 2025 Unknown (APT) my.f5.com / (archived)
State of Rhode Island December 2024 Brain Cipher (Ransomware) rhodeislandcurrent.com / (archived)
MITRE April 2024 UTA0178/UNC5325 (CN APT) MITRE Blog / (archived)
Microsoft January 2024 CozyBear (RU APT) microsoft.com (1), microsoft.com (2) / (archived)
Mandiant January 2024 CLICKSINK mandiant.com / (archived)
Nissan Australia December 2023 Akira (Ransomware) nissan.com.au / (archived)
Cloudflare November 2023 Unknown cloudflare.com (1), cloudflare.com (2) / (archived)
Boeing November 2023 LockBit (Ransomware) cisa.gov / (archived)
British Library October 2023 Rhysida (Ransomware) bl.uk / (archived)
BeyondTrust October 2023 Unknown beyondtrust.com / (archived)
Okta October 2023 Unknown sec.okta.com / (archived)
BHI Energy October 2023 Akira (Ransomware) documentcloud.org / (archived)
D-Link October 2023 "succumb" dlink.com / (archived)
Kroll August 2023 Unknown kroll.com / (archived)
Microsoft July 2023 Storm-0558 (CN APT) microsoft.com / (archived)
JumpCloud July 2023 UNC4899 (DPRK APT) jumpcloud.com / (archived)
Dragos May 2023 "KyivWarrior" dragos.com / (archived)
Capita March 2023 BlackBasta (Ransomware) ico.org.uk / (archived)
3CX March 2023 UNC4736 (DPRK APT) mandiant.com / (archived)
Coinbase February 2023 0ktapus (suspected) coinbase.com / (archived)
Reddit February 2023 0ktapus (suspected) reddit.com / (archived)
CircleCI January 2023 Jade Sleet (DPRK APT) circleci.com / (archived)
LastPass October 2022 Unknown blog.lastpass.com / (archived)
Uber September 2022 Lapsus$ (suspected) uber.com / (archived)
Advanced Computer Software Group August 2022 LockBit (Ransomware) ico.org.uk / (archived)
Okta August 2022 0ktapus sec.okta.com / (archived)
Twilio August 2022 0ktapus twilio.com / (archived)
DPP Law June 2022 BlackBasta (Ransomware) ico.org.uk / (archived)
Cisco May 2022 Yanluowang (Ransomware) blog.talosintelligence.com / (archived)
GitHub April 2022 Unknown github.blog / (archived)
Okta April 2022 Lapsus$ okta.com / (archived)
Microsoft March 2022 Lapsus$ microsoft.com / (archived)
Gloucester Council November 2021 Conti (Ransomware) democracy.gloucester.gov.uk / (archived)
Kaseya July 2021 REvil (Ransomware) helpdesk.kaseya.com / (archived)
Viasat KA-SAT February 2022 Sandworm (RU APT) news.viasat.com / (archived)
Irish HSE May 2021 Conti (Ransomware) hse.ie / (archived)
Microsoft February 2021 CozyBear (RU APT) msrc.microsoft.com / archived
New Zealand Reserve Bank January 2021 Clop (Ransomware) rbnz.govt.nz / (archived)
Qualys December 2020 Clop (Ransomware) blog.qualys.com / (archived)
FireEye December 2020 CozyBear (RU APT) fireeye.com / (archived)
SolarWinds December 2020 CozyBear (RU APT) solarwinds.com / (archived)
London Borough of Hackney October 2020 Pysa (Ransomware) ico.org.uk / (archived)
Equinix September 2020 Netwalker (Ransomware) datacenterdynamics.com / (archived)
CapitalOne July 2019 "ERRAT1C" (aka Paige Thompson) capitalone.com / (archived)
Equifax May 2017 CN APT oversight.house.gov / (archived)
Avast/CCleaner September 2016 WickedPanda (CN APT) blog.avast,com / (archived)
Kaspersky June 2015 Duqu 2.0 (APT) kaspersky.com / (archived)
RSA April 2011 CN APT (archived)

About

A collection of companies that disclose adversary TTPs after they have been breached

Resources

Readme
Activity

Stars

291 stars

Watchers

16 watching

Forks

20 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2