The biggest data breaches in 2024

An overview

The year 2024 was characterized by numerous cyberattacks that affected companies and millions of people worldwide. From hacked cloud platforms to compromised health data — here are the ten biggest data breaches and what we can learn from them! Read more about these cyber breaches in 2024 below!

Are you prepared for cyber attacks?

With the DEFENDERBOX you are one step ahead of cyber threats: Strengthen your company’s resistance to hacker attacks — especially in your own environment!

Would you like to know how secure your company is? Find out with a test installation!

1. Major cloud provider: Vulnerability in data connectors exploited  

In June 24, sensitive business data of prominent customers was exposed in an attack on a cloud storage provider. A vulnerability in a data connector was the gateway. Despite rapid countermeasures, the security of cloud-based architectures remains a hotly debated topic.

2. Dell: Phishing campaign affects over 10,000 employees

A targeted phishing attack in September 24 resulted in sensitive employee data and internal documents being compromised. The attack shows how vulnerable even large companies are to social engineering tactics.

3. AT&T: Call and SMS data leaked  

In April 24, an AT&T third-party cloud system was hacked. Call and SMS data from millions of customers was affected, including location information. However, the content of messages remained protected.  

4. Synnovis: Patient data exposed through API leak

An outdated API endpoint led to medical data such as diagnoses and laboratory results being publicly accessible. This incident underlines the importance of regular security checks in the healthcare sector.

5. Microsoft: Target of “Midnight Blizzard”

The Russia-linked group used 24 novel methods to steal emails and source code from Microsoft in January. Most alarmingly, the attack targeted executives and used an innovative RDP technique.

6. Change Healthcare: Ransomware attack paralyzes the healthcare sector

A ransomware attack in February 24 affected 100 million people and brought the healthcare sector in the USA to a standstill. The parent company paid a ransom of 22 million US dollars to restore operations.

7. Cencora: Data stolen from pharmaceutical patients

Over 540,000 people were affected by an attack on the pharmaceutical service provider Cencora. Sensitive information such as health diagnoses and prescriptions were exfiltrated. 

8. Trello: 15 million user data published

In January, hackers used a public API to access user data such as names and emails. The stolen data was later sold on hacking forums.

9. France Travail: Hack on employment agency

In March 24, data from 43 million users of the French employment agency was exposed. Particularly critical: social security numbers and contact details fell into the hands of attackers.

10. TeamViewer: Phishing risk for employees

A hacked account led to an attack on the contact information of TeamViewer employees in July 24. Financial data was not affected, but the risk of targeted phishing attacks increased significantly.

What we can learn from this:

These incidents show that no size or industry is safe from cyber attacks — whether SMEs, technology, healthcare or public institutions. Prevention, regular security checks and a strong cyber defense are essential to prevent such attacks.

✅ DEFENDERBOX is at your side as a reliable partner to protect your company in this dynamic threat environment. Contact us to make your cybersecurity strategy fit for 2025 and beyond.