{"id":117669,"date":"2024-11-04T15:46:45","date_gmt":"2024-11-04T20:46:45","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=117669"},"modified":"2024-12-20T13:38:13","modified_gmt":"2024-12-20T18:38:13","slug":"top-data-breaches","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/top-data-breaches","title":{"rendered":"Top Data Breaches in 2024"},"content":{"rendered":"\n

Some of the most damaging data breaches of all time happened in 2024, as threat actors took advantage of tools like AI to launch the most sophisticated attacks cybersecurity teams have ever faced. Ransomware, credential stuffing, and phishing were the most popular methods among attackers, continuing the trends that started last year<\/a>.<\/p>\n\n\n\n

Massive security incidents at some of the world\u2019s most well-known companies exposed over 1.1 billion records, sensitive customer data, and contributed to a combined $9.5 trillion<\/a> that organizations spent dealing with cybercrimes. <\/p>\n\n\n\n

Even with increased security measures and vigilance, the most catastrophic breaches are so destructive they can force companies out of business. <\/p>\n\n\n\n

Keep reading for more about the cyberattacks that made headlines in 2024, and learn how evolving defenses like Zero Trust<\/a> and passwordless authentication<\/a> can keep your organization off the list in 2025.<\/p>\n\n\n\n

The Top 5 Data Breaches of 2024<\/h2>\n\n\n\n

National Public Data<\/h3>\n\n\n\n

In April, a staggering cyberattack on National Public Data, a company that provides background checks and fraud prevention, may have affected as many as 2.9 billion records<\/a> and exposed the sensitive information of individuals across the U.S., Canada, and the U.K.<\/p>\n\n\n\n

A hacker gained access to a zip file containing passwords that were used to access the consumer database. The stolen data was put up for sale on the dark web, including names, birthdates, email addresses, phone numbers, and social security numbers. <\/p>\n\n\n\n

National Public Data cooperated with law enforcement and investigators in addition to implementing stricter security protocols that made it incompatible with some browsers. <\/p>\n\n\n\n

Despite the measures, National Public Data\u2019s parent company was forced to file chapter 11 bankruptcy<\/a> in October in order to cover the legal costs and liabilities that resulted from the breach.<\/p>\n\n\n\n

Change Healthcare<\/h3>\n\n\n\n

The notorious cybercriminal group ALPHV\/BlackCat breached Change Healthcare\u2019s<\/a> network via a ransomware attack in February. Hackers gained access to a trove of information including medical and health insurance records, social security numbers, and other sensitive patient data. Over 100 million people were affected by the attack.<\/p>\n\n\n\n

Change shut down its servers immediately after learning of the attack, disrupting services and causing outages across the entire healthcare industry for weeks. It was reported that UnitedHealth Group, Change\u2019s parent company, paid a $22 million ransom \u2014 but then fell prey to a double extortion attempt.<\/p>\n\n\n\n

Change\u2019s HIPAA compliance practices were investigated by the U.S. Department of Health and Human Services. The cost of mitigating the breach, fines, and legal fees added up to over $870 million in expenses for UnitedHealth.<\/p>\n\n\n\n

At a hearing, chief executive Andrew Witty admitted that the breach was carried out using a single set password, meaning one of the most damaging cyberattacks on the healthcare system in history could have been prevented using a readily available security feature like multi-factor authentication<\/a> (MFA).<\/p>\n\n\n\n

Ticketmaster<\/h3>\n\n\n\n

Hacking group ShinyHunters breached Ticketmaster via a third-party database, using phishing<\/a> to steal the credentials of a Snowflake<\/a> employee. The group then deployed malware inside Ticketmaster\u2019s systems<\/a> that exposed 1.3 terabytes of data from 560 million customers. <\/p>\n\n\n\n

It took several days before Ticketmaster\u2019s parent company Live Nation revealed the breach to the public, drawing scrutiny from regulators and criticism from customers whose data was compromised. Calls for stricter security policies and laws followed. <\/p>\n\n\n\n

Fallout from the attack is ongoing, with costs estimated to reach tens or even hundreds of millions of dollars. The breach prompted the U.S. Department of Justice to file an antitrust lawsuit against Live Nation. <\/p>\n\n\n\n

Ticketmaster was further confounded when Snowflake denied any responsibility, claiming the breach was caused by compromised customer credentials<\/a>. Better insights<\/a> into their supplier\u2019s security practices might have helped Ticketmaster prevent this attack.<\/p>\n\n\n\n

AT&T<\/h3>\n\n\n\n

In March, a data breach broker posted 73 million AT&T customer records<\/a> onto a dark web forum. Information included names, phone numbers, emails, addresses, and social security numbers for over 7.9 million current customers. Many customers confirmed their leaked data was accurate.<\/p>\n\n\n\n

After the data was published, a security researcher discovered that the leaked information also included encrypted passcodes, giving anyone with the information access to customer accounts. AT&T forced a mass-reset<\/a> of millions of customer passcodes.<\/p>\n\n\n\n

AT&T\u2019s public statements regarding the incident have been limited. At this point, it\u2019s still unclear if the breach happened through AT&T\u2019s network or through a third-party vendor. It\u2019s believed that credential stuffing was used in the original attack, but it has not been confirmed or denied by the company. Costs related to the breach are estimated to be in the tens of millions of dollars.<\/p>\n\n\n\n

If credential stuffing was the culprit, better password policies or conditional access<\/a> controls may have helped to prevent the attack.<\/p>\n\n\n\n

While AT&T was in the middle of dealing with this breach, news dropped that hackers had stolen phone numbers and call records for almost all of AT&T\u2019s entire customer base during part of 2022<\/a>. The attack was carried out on Snowflake, a third-party cloud vendor AT&T uses to house data. Snowflake said the attack could have been avoided if customers had opted in to multi-factor authentication on their accounts \u2014 an option Snowflake offers customers but does not require.<\/p>\n\n\n\n

Dell Computers<\/h3>\n\n\n\n

Over 49 million customer records<\/a> were obtained and apparently sold on the dark web, in a breach on Dell\u2019s systems in May. The attack looks to have been launched with credential stuffing on Dell customer sales portal. The attackers obtained information covering transactions and order details between 2017 \u2013 2024, but there were no reported thefts of more sensitive information like credit cards or phone numbers.<\/p>\n\n\n\n

Then a hacker identified as \u201cMelenik\u201d put the information up for sale on a cybercriminal forum. The post was quickly taken down, likely because a buyer was found. Though the information wasn\u2019t highly sensitive, Dell urged at-risk customers to be aware of phishing attempts that looked like they were official emails coming from the company and could lead to ransomware and malware attacks. <\/p>\n\n\n\n

Better access and Zero Trust<\/a> monitoring controls could have mitigated the initial breach.<\/p>\n\n\n\n

\n
\n \"JumpCloud\"\n <\/div>\n
\n

\n Zero Trust Demystified <\/p>\n

\n Zero Trust isn\u2019t out of reach. Download this whitepaper to learn why it's essential, where to start, and what to watch out for. <\/p>\n <\/div>\n

\n Download Today<\/a>\n <\/div>\n<\/div>\n\n\n\n\n

Monthly Breakdown of 2024 Data Breaches<\/strong><\/h2>\n\n\n\n

Attacks against healthcare and financial institutions were on the rise, but data breaches impacted all types of organizations in 2024. Hackers continued to exploit weaknesses related to increased adoption of hybrid work environments going back to the pandemic and 2021<\/a>. Third-party software and cloud vulnerabilities continued to pose a problem for many companies, as well employees using shadow IT<\/a>. <\/p>\n\n\n\n

With data privacy<\/a> laws coming into play across the globe, penalties and legal costs will continue to make breaches more costly every year. Security teams will need to find new ways<\/a> to address ongoing vulnerabilities.<\/p>\n\n\n\n

Let\u2019s break down the most notable breaches by month.<\/p>\n\n\n\n

January 2024<\/h3>\n\n\n\n

LoanDepot<\/a> fell victim to a ransomware attack by the malicious group ALPHV\/BlackCat. Almost 17 million customers had their data stolen, including social security numbers, financial data, and account details. LoanDepot quickly shut down its systems to contain the attack, and provided customers two years of identity monitoring and credit protection. <\/p>\n\n\n\n

Hackers exposed email addresses of over 15 million Trello<\/a> users by using a public-facing API that cyber criminals manipulated to link Trello profiles to email addresses. Only email addresses were leaked, but Trello warned the threat for phishing or other malicious activity would increase to follow.<\/p>\n\n\n\n

A security misconfiguration<\/a> at Mercedes-Benz<\/a> gave hackers access to the company\u2019s GitHub repository, revealing source code, designs, and passwords. A cybersecurity firm alerted Mercedes to the breach, and security teams were quickly able to patch<\/a> the problem and pull the repository. <\/p>\n\n\n\n

February 2024<\/h3>\n\n\n\n

Almost $300 million in cryptocurrency was stolen from blockchain gaming giant PlayDapp<\/a>. Hackers initially gained access to the platform via a compromised private key and then through multiple strikes they created and made off with nearly 2 billion PLA tokens, the platform\u2019s native cryptocurrency.<\/p>\n\n\n\n

The U.S. Cybersecurity and Infrastructure Agency (CISA) revealed that malicious actors launched a cyberattack against an unidentified government agency by exploiting a former employee\u2019s account. The attackers used the ex-employees admin account to breach a VPN, infiltrate the network, steal more credentials, and escalate their privileges within the system. The attack could leave the agency vulnerable for an extended time frame.<\/p>\n\n\n\n

Lurie Children\u2019s Hospital<\/a> suffered a crippling attack at the hands of ransomware group Rhysida. The healthcare provider was forced to shut down their systems and delay care for many patients. The attackers encrypted stolen data and put it up for auction on the dark web, demanding a $3 million bitcoin ransom.<\/p>\n\n\n\n

March 2024<\/h3>\n\n\n\n

A third-party security incident compromised the credit card details of scores of American Express customers<\/a>. Though full details have yet to be disclosed, the company quickly alerted customers to monitor their accounts for fraudulent activity. The incident prompted fears of similar attacks on other third-party vendors, and highlighted the need for better vendor monitoring and IT unification<\/a> protocols.<\/p>\n\n\n\n

Hackers got inside Harvard Pilgrim Health Network\u2019s<\/a> system for over two weeks during a period in 2023. In March 2024 the company revealed the sensitive health information of almost 3 million patients was stolen. The investigation into the source of the breach is still ongoing.<\/p>\n\n\n\n

The International Monetary Fund<\/a> (IMF) was attacked in an apparent phishing scam that compromised the accounts of several workers. The attack was contained quickly and may have prevented malicious actors from gaining access to sensitive data. The IMF revealed few details, but assured the media that top officials’ accounts were not affected by the attack.<\/p>\n\n\n\n

April 2024<\/h3>\n\n\n\n

The United Nations Development Program<\/a> was hit by notorious ransomware group 8Base. The hackers leaked sensitive government information including employee data, contracts, invoices, and vendor information. <\/p>\n\n\n\n

A cyberattack that launched against Omni Hotels<\/a> in January wasn\u2019t discovered until April. The sophisticated breach involved multiple steps that used a compromised admin account to create backdoors and harvest credentials. Hacking group Daixin demanded a $3.5 million ransom to return stolen customer data. It\u2019s unclear whether Omni paid the ransom or not.<\/p>\n\n\n\n

Chinese retail giant Pandabuy suffered a data breach affecting well over 1 million customers and exposed sensitive data. The company reportedly met the hackers ransom demands, but was then hit with a double extortion attempt. Pandabuy has made few public comments regarding the incident.<\/p>\n\n\n\n

May 2024<\/h3>\n\n\n\n

Hackers infiltrated the BBC<\/a> through a cloud storage service, gaining access to over 25,000 employees’ pension information and related data. The BBC is investigating the incident and urged affected individuals to be vigilant for signs of fraud.<\/p>\n\n\n\n

Dropbox<\/a> revealed a data breach to users of its Dropbox Sign service. Hackers accessed email addresses, phone numbers, passwords, and MFA details. Dropbox storage cloud users were not affected.<\/p>\n\n\n\n

An unchecked software vulnerability left over 450,000 JP Morgan Chase<\/a> retirement plan members exposed for years, allowing thieves to steal personal information, plan information, payment information, and social security numbers. The bank was required to disclose the breach to the Maine Attorney General\u2019s office and quickly took steps to remediate the issue.<\/p>\n\n\n\n

June 2024<\/h3>\n\n\n\n

Millions of Tile customers could have been compromised in a data breach on Tile<\/a>, a popular Bluetooth tracking device company. Hackers were said to have demanded a ransom from Tile, though Tile assured customers that no credentials, location data, or credit card info was stolen.<\/p>\n\n\n\n

Truist Bank<\/a> first revealed a data breach that occurred in October 2023, after employee data went up for sale online in June of 2024. Hacking group Sp1d3r demanded a $1 million ransom for the data. The leak was initially linked to a string of other incidents involving third-party cloud storage provider Snowflake, but Truist has since denied this.<\/p>\n\n\n\n

In another attack with ties to Snowflake, retailer Neiman Marcus<\/a> reported a data breach that affected almost 70,000 customers. Hackers gained access to personal records and gift card numbers in the breach. Later, Neiman Marcus revealed a second breach that exposed 31 million customer email addresses.<\/p>\n\n\n\n

July 2024<\/h3>\n\n\n\n

Hackers got into internal Slack accounts at Disney<\/a> stealing over 1.3 terabytes of data and gaining access to proprietary designs, artwork, and concepts for upcoming projects. Disney subsequently dropped Slack from its suite of technology providers.<\/p>\n\n\n\n

After ongoing investigations into an April 2024 breach, debt collection firm FBCS disclosed<\/a> that up to 4 million customers may have had names, social security numbers, birthdates, and driver\u2019s license numbers stolen. The company initially believed 1.9 million users were affected but discovered the breach was much more damaging than thought.<\/p>\n\n\n\n

August 2024<\/h3>\n\n\n\n

Semiconductor designer AMD suffered a data breach where cybercriminals reportedly stole internal information including employee files, assignment groups, source codes, and proprietary plans. AMD is currently investigating the incident and has yet to confirm the hackers\u2019 claims.<\/p>\n\n\n\n

Malicious actors ZeroSevenGroup reportedly stole over 240GB worth of data from Toyota Motors\u2019<\/a> U.S. operations. The data was leaked onto a dark web forum and includes contract and financial records, customer and employee data, and business plans. The hackers also said they gained access to network infrastructure and credentials, leaving the door wide open for additional attacks. Toyota claimed the data was stolen from a third-party provider, but refrained from naming the company.<\/p>\n\n\n\n

September 2024<\/h3>\n\n\n\n

Third-party payment processor Slim CD<\/a> revealed that credit card information of up to 1.7 million customers was stolen by hackers. The company did not reveal additional information about the attackers or the attack vector.<\/p>\n\n\n\n

Fortinet<\/a>, a widely used internet security vendor, suffered a data breach that affected nearly 800,000 customers. The cybercriminals gained access to data on a third-party SharePoint server, once again highlighting the trend to attack vulnerabilities on third-party systems. Fortinet said its corporate offices were not targeted in the attack.<\/p>\n\n\n\n

Secure Your Organization with JumpCloud<\/h2>\n\n\n\n

In today\u2019s cloud-based environment, security teams are often left unaware of vulnerabilities or unable to find the resources to address issues with third parties. <\/p>\n\n\n\n

Learn how<\/a> JumpCloud\u2019s centralized user and device management and security access tools can help protect your organization in this challenging environment. <\/p>\n\n\n\n

Sign up<\/a> for a free trial to see how tools like single sign-on<\/a> (SSO) and password management<\/a> improve your users\u2019 security experience.<\/p>\n\n\n\n

\n
\n \"JumpCloud\"\n <\/div>\n
\n

\n <\/p>\n

\n Learn how you can protect against threats and support growth with IT unification. <\/p>\n <\/div>\n

\n Download Today<\/a>\n <\/div>\n<\/div>\n\n","protected":false},"excerpt":{"rendered":"

Learn about the top five biggest data breaches in 2024, as well as a month-by-month breakdown of other notable breaches.<\/p>\n","protected":false},"author":120,"featured_media":117671,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[42],"tags":[],"collection":[2775],"platform":[],"funnel_stage":[3016],"coauthors":[2537],"acf":[],"yoast_head":"\nTop Data Breaches in 2024 (Updated Nov'24) - JumpCloud<\/title>\n<meta name=\"description\" content=\"Learn about the top five biggest data breaches in 2024, as well as a month-by-month breakdown of other notable breaches.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/top-data-breaches\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Top Data Breaches in 2024\" \/>\n<meta property=\"og:description\" content=\"Learn about the top five biggest data breaches in 2024, as well as a month-by-month breakdown of other notable breaches.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/top-data-breaches\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:published_time\" content=\"2024-11-04T20:46:45+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-12-20T18:38:13+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/11\/GettyImages-1942927607.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"719\" \/>\n\t<meta property=\"og:image:height\" content=\"485\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Sean Blanton\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sean Blanton\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"12 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches\"},\"author\":{\"name\":\"Sean Blanton\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/0c2a749d55fd9ade81d9f810c8d5aaa3\"},\"headline\":\"Top Data Breaches in 2024\",\"datePublished\":\"2024-11-04T20:46:45+00:00\",\"dateModified\":\"2024-12-20T18:38:13+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches\"},\"wordCount\":2332,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/11\/GettyImages-1942927607.jpg\",\"articleSection\":[\"News\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches\",\"url\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches\",\"name\":\"Top Data Breaches in 2024 (Updated Nov'24) - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/11\/GettyImages-1942927607.jpg\",\"datePublished\":\"2024-11-04T20:46:45+00:00\",\"dateModified\":\"2024-12-20T18:38:13+00:00\",\"description\":\"Learn about the top five biggest data breaches in 2024, as well as a month-by-month breakdown of other notable breaches.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/top-data-breaches\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/11\/GettyImages-1942927607.jpg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/11\/GettyImages-1942927607.jpg\",\"width\":719,\"height\":485,\"caption\":\"An illustration of a silhouetted thief in motion running while carrying a stolen fingerprint. This could represent individuality, identity, privacy concerns, or a concept of personal data being in motion or at risk. The combination of the human form with the unique identifier of a fingerprint offers a visual metaphor for themes such as identity theft, digital security, or the trace we leave behind in a digital age. The overall aesthetic is bold and dynamic, fitting for topics of cybersecurity, personal identity, or discussions about the intersection of humanity and technology.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/top-data-breaches#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Top Data Breaches in 2024\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/0c2a749d55fd9ade81d9f810c8d5aaa3\",\"name\":\"Sean Blanton\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/0f493278829cf832b6cf8a58926a4585\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/596d142d20c23a1783684d7960968d4e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/596d142d20c23a1783684d7960968d4e?s=96&d=mm&r=g\",\"caption\":\"Sean Blanton\"},\"description\":\"Sean Blanton is the Director of Content at JumpCloud and has spent the past decade in the wide world of security, networking and IT and Infosec administration. When not at work Sean enjoys spending time with his young kids and geeking out on table top games.\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Top Data Breaches in 2024 (Updated Nov'24) - JumpCloud","description":"Learn about the top five biggest data breaches in 2024, as well as a month-by-month breakdown of other notable breaches.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/top-data-breaches","og_locale":"en_US","og_type":"article","og_title":"Top Data Breaches in 2024","og_description":"Learn about the top five biggest data breaches in 2024, as well as a month-by-month breakdown of other notable breaches.","og_url":"https:\/\/jumpcloud.com\/blog\/top-data-breaches","og_site_name":"JumpCloud","article_published_time":"2024-11-04T20:46:45+00:00","article_modified_time":"2024-12-20T18:38:13+00:00","og_image":[{"width":719,"height":485,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/11\/GettyImages-1942927607.jpg","type":"image\/jpeg"}],"author":"Sean Blanton","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Sean Blanton","Est. reading time":"12 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/top-data-breaches#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/top-data-breaches"},"author":{"name":"Sean Blanton","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/0c2a749d55fd9ade81d9f810c8d5aaa3"},"headline":"Top Data Breaches in 2024","datePublished":"2024-11-04T20:46:45+00:00","dateModified":"2024-12-20T18:38:13+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/top-data-breaches"},"wordCount":2332,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/top-data-breaches#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/11\/GettyImages-1942927607.jpg","articleSection":["News"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/top-data-breaches","url":"https:\/\/jumpcloud.com\/blog\/top-data-breaches","name":"Top Data Breaches in 2024 (Updated Nov'24) - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/top-data-breaches#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/top-data-breaches#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/11\/GettyImages-1942927607.jpg","datePublished":"2024-11-04T20:46:45+00:00","dateModified":"2024-12-20T18:38:13+00:00","description":"Learn about the top five biggest data breaches in 2024, as well as a month-by-month breakdown of other notable breaches.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/top-data-breaches#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/top-data-breaches"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/top-data-breaches#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/11\/GettyImages-1942927607.jpg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/11\/GettyImages-1942927607.jpg","width":719,"height":485,"caption":"An illustration of a silhouetted thief in motion running while carrying a stolen fingerprint. This could represent individuality, identity, privacy concerns, or a concept of personal data being in motion or at risk. The combination of the human form with the unique identifier of a fingerprint offers a visual metaphor for themes such as identity theft, digital security, or the trace we leave behind in a digital age. The overall aesthetic is bold and dynamic, fitting for topics of cybersecurity, personal identity, or discussions about the intersection of humanity and technology."},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/top-data-breaches#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Top Data Breaches in 2024"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/0c2a749d55fd9ade81d9f810c8d5aaa3","name":"Sean Blanton","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/0f493278829cf832b6cf8a58926a4585","url":"https:\/\/secure.gravatar.com\/avatar\/596d142d20c23a1783684d7960968d4e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/596d142d20c23a1783684d7960968d4e?s=96&d=mm&r=g","caption":"Sean Blanton"},"description":"Sean Blanton is the Director of Content at JumpCloud and has spent the past decade in the wide world of security, networking and IT and Infosec administration. When not at work Sean enjoys spending time with his young kids and geeking out on table top games."}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/117669"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/120"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=117669"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/117669\/revisions"}],"predecessor-version":[{"id":119173,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/117669\/revisions\/119173"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/117671"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=117669"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=117669"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=117669"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=117669"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=117669"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=117669"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=117669"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}