Incidents from
The Russia-linked Sandworm group used spear-phishing, BlackEnergy3, and KillDisk to remotely flip breakers at three Ukrainian regional electricity distribution companies, cutting power to approximately 230,000 customers for 1β6 hours. It is the first publicly acknowledged successful cyberattack on an electric power grid in history.
An SQL injection attack β committed primarily by four British teenagers β exposed personal data on roughly 157,000 TalkTalk customers including bank account details. Triggered a record Β£400,000 UK ICO fine.
Chinese state operators exfiltrated background-investigation forms (SF-86s) for 21.5 million U.S. federal employees and contractors β the most-damaging intelligence-loss cyber incident in U.S. government history.
Russian GRU Unit 26165 (APT28 / Fancy Bear) compromised the Bundestag's parliamentary network, exfiltrating ~16 GB of data including emails from Chancellor Merkel's parliamentary office. Forced a full Bundestag IT estate rebuild.
Chinese state-attributed actors exfiltrated personal data on 78.8 million current and former Anthem health insurance customers β at the time the largest healthcare-sector breach in U.S. history.