Exterior of a tan medical building with windows and signage reading “Singing River Health System” and “Singing River Medical Park.”

Healthcare

/

Mississippi's Singing River Health probes potential cyber incident

MyChart restored after health system shut down select systems to assess "potential threat"

By Joseph Topping

/ 26 Dec 2025

Exterior view of Evergreen Printing’s building with a freestanding “Evergreen Printing Company” sign and the word “EVERGREEN” on the facade.

Private Sector

/

Ransomware at New Jersey printer disrupts newspaper mailings

Evergreen Printing says it is investigating; customer papers rebuild subscriber lists

By DysruptionHub Staff

/ 23 Dec 2025

Education

/

Eanes school district in Texas faces unverified ransomware claim after outage

By Joseph Topping

/ 22 Dec 2025

Tree-lined walkway leading to the entrance of an Eanes ISD building, with an “EISD” sign above the covered entry.

Government

/

Mitchell County, North Carolina, ransomware attack tied to days of phone, email outages

By Joseph Topping

/ 19 Dec 2025

white, two-story courthouse with a clock tower and U.S. flag out front, photographed from across the street with parked vehicles in the foreground.

Education

/

Clarksville school district in Texas reports outage; ransomware claim unverified

By Joseph Topping

/ 19 Dec 2025

Enjoying Our Work?
A small tip keeps our reporting, hosting, and tools running for everyone.

Tip us

U.S. Cyber Incident Alerts
Get concise updates on incidents impacting the United States—no spam.

Sign up now

Become a Long-Term Supporter
Your monthly or annual pledge sustains independent coverage and uptime.

Become a Supporter

Analysis

Analysis, reports, and opinion that look beyond individual incidents. We examine trends, tactics, and sector-wide risks; connect dots across cases; and publish periodic research and explainers. Expect context, data-driven takeaways, and clear points of view to help readers understand what matters, why it happened, and what to watch next.

All in Analysis

Handwritten sign taped to a glass door reading “CLOSED DUE TO CYBERATTACK UNTIL FURTHER NOTICE” with a sad face at the bottom, indicating the business is shut because of a cyber incident.

Analysis

/

Why we don't cover every cyber incident

How we use documented disruption and DD-CIT to focus on U.S. incidents that actually break services.

By DysruptionHub Staff

/ 10 Dec 2025

Analysis

/

We have seen no evidence that sensitive data was accessed

By Joseph Topping

/ 5 Dec 2025

Collage of several black-and-white pages filled with text where large sections are covered by thick black redaction bars, representing censored or withheld information.

Analysis

/

Opinion: When local TV "breaks" the story you already reported

By DysruptionHub Staff

/ 29 Nov 2025

Opinion: When local TV "breaks" the story you already reported

Analysis

/

The Black Knight Breach That Never Was

By Joseph Topping

/ 24 Nov 2025

A row of tall black server cabinets with green and blue status lights in a dimly lit data center corridor.

Analysis

/

After the Breach: Wexford County, Michigan

By Joseph Topping

/ 10 Nov 2025

Front view of the Wexford County Courthouse in Cadillac, Michigan, showing a brick and stone building with tall columns, a U.S. flag flying in front, and trees framing the scene.

Critical Infrastructure

Energy, water and wastewater, transportation, communications, and financial systems that keep communities running. Coverage focuses on outages, service degradation, and operational risk from cyber incidents, sabotage, or vendor failures that disrupt essential services.

All in Critical Infrastructure

Street-level view of the PES Energize headquarters, a two-story light-colored office building with long rows of windows and a central entrance facing an intersection in Pulaski, Tennessee.

Critical Infrastructure

/

Cyber incident knocks out PES Energize phones in Pulaski, Tenn.

Pulaski municipal utility closes customer lobby, shifts outage reporting to backup channels as investigation continues

By Joseph Topping

/ 5 Dec 2025

Critical Infrastructure

/

Kansas telecom cyber event disrupts Rainbow phone lines

By Joseph Topping

/ 18 Nov 2025

Critical Infrastructure

/

Harrisburg, Pa., airport PA system hijacked; flight delayed

By DysruptionHub Staff

/ 15 Oct 2025

Roadway approaching Harrisburg International Airport with a multi-level parking garage and large blue HIA billboard on the left, the glass-and-steel terminal ahead.

Critical Infrastructure

/

Ransomware outage at Michigan-based MuniOS forces presale bond filings to regulator site

By DysruptionHub Staff

/ 15 Oct 2025

Exterior view of ImageMaster LLC’s two-story headquarters at 1182 Oak Valley Drive in Ann Arbor, Michigan, operator of the MuniOS bond disclosure website hit by ransomware in 2025.

Critical Infrastructure

/

Cyberattack Forces Town of Bar Harbor in Maine to Disconnect Critical Systems

By DysruptionHub Staff

/ 1 Aug 2025

Two-story brick Bar Harbor fire station with open bay doors, a red fire engine and a red SUV parked out front, antennas on the roof, daytime street scene.

Healthcare

Hospitals, clinics, public health agencies, payers, and health IT providers. We track incidents affecting patient care, ER diverts, EHR downtime, and PHI breaches, emphasizing operational impact, restoration status, and what patients and providers need to know.

All in Healthcare

Exterior view of Pit River Health Service with a freestanding sign reading “Pit River Health Service, 36977 Park Ave.” in front of the clinic building and pine trees.

Healthcare

/

Pit River Health Service cyber incident disrupts records access in California

Rural clinic says some information was copied; appointments continue with paper workarounds

By Joseph Topping

/ 17 Dec 2025

Healthcare

/

Family Health West cyberattack forces Colorado hospital systems offline

By DysruptionHub Staff

/ 29 Oct 2025

Healthcare

/

Massachusetts hospitals Heywood, Athol say outage was a cybersecurity incident

By Joseph Topping

/ 17 Oct 2025

Exterior of Athol Memorial Hospital with main entrance and signage visible.

Healthcare

/

New Hampshire's Coös County Health Impacted by Cyberattack

By DysruptionHub Staff

/ 25 Jul 2025

Exterior of the Coös County Family Health Services Colebrook Clinic with a sign reading “Coös County Family Health” near the entrance.

Healthcare

/

Cyberattack Disrupts Hampton Regional Medical Center in South Carolina

By DysruptionHub Staff

/ 24 Jul 2025

Sign outside Hampton Regional Medical Center showing directions to the emergency entrance and patient drop-off/pick-up area, with the brick hospital building in the background.

Public Services

Public-facing city and county services other than critical infrastructure: 911/PSAP, EMS and fire, transit, libraries, housing, and social services. We report on outages, call routing issues, payment portals, and case-management systems that limit access to services.

All in Public Services

Red West Pierce Fire & Rescue ladder truck parked outdoors in daylight with equipment and “West Pierce” signage visible on the side.

Public Services

/

Cyber incident disrupts Washington's West Pierce Fire & Rescue

West Pierce Fire & Rescue says 911 and emergency response remain fully operational while it works with the FBI.

By Joseph Topping

/ 13 Dec 2025

Public Services

/

Oregon's Deschutes Public Library closes after data breach

By DysruptionHub Staff

/ 12 Dec 2025

Exterior of the Downtown Bend Library in Bend, Oregon.

Public Services

/

Chester County, Pennsylvania, libraries hit by dayslong outage; staffer cites ransomware

By Joseph Topping

/ 6 Oct 2025

Stone-clad Chester County Library & District Center in Exton, Pa., on a sunny winter day with snowbanks in the parking lot and bare trees.

Public Services

/

Cyberattack disrupts New Mexico Game & Fish online payments

By DysruptionHub Staff

/ 30 Aug 2025

Stone sign reading “New Mexico Game and Fish” at the agency’s headquarters, 1 Wildlife Way, Santa Fe, NM, with desert vegetation and cloudy sky (Sept. 2024, Google Street View).

Public Services

/

Cyber incident disrupts some Maryland Transit Administration systems

By DysruptionHub Staff

/ 25 Aug 2025

A white Maryland Transit Administration bus numbered 9966 is parked at a curb near the University of Maryland Transit Center, with Maryland flag banners visible along the street.

Government

Federal, state, local, tribal, and territorial governments. Coverage focuses on operational impact, public notifications, restoration timelines, and risks to civic functions and records.

All in Government

Wide exterior view of the United Keetoowah Band tribal complex building in Tahlequah, Oklahoma.

Government

/

United Keetoowah Band in Oklahoma cites IT issue as ransomware site lists tribe

Rhysida claim appears on ransomware tracking site, but tribe has not confirmed an attack

By Joseph Topping

/ 12 Dec 2025

Government

/

Oklahoma MedPortal woes draw state cyber team, hack denied

By DysruptionHub Staff

/ 9 Dec 2025

Close-up of dense green cannabis leaves overlapping on several marijuana plants.

Government

/

AI porn spam hits Washington government sites amid multi-state .gov abuse

By DysruptionHub Staff

/ 8 Dec 2025

Front view of the Washington State Capitol Legislative Building in Olympia, Washington, showing wide stone steps leading up to tall columns and a large dome against a light blue sky.

Government

/

Leavenworth, Kansas cyberattack disrupts city services

By Joseph Topping

/ 6 Dec 2025

Front view of Leavenworth City Hall in Kansas with trees showing fall colors.

Government

/

Fargo Park District in North Dakota discloses October cyber incident

By Joseph Topping

/ 5 Dec 2025

Exterior of the Fargo Parks Sports Center, a modern gray building with a glass entrance and Fargo Park District signage on a sunny day.

Education

K–12 districts, higher education, and community colleges. We cover closures, remote learning disruptions, SIS and E-Rate impacts, and breaches of student records. Vendor incidents land here when they disrupt teaching, learning, or campus operations.

All in Education

Front entrance of Minersville Area Junior/Senior High School with an arched entryway, two flagpoles flying the U.S. and blue flags, and a grassy lawn in front on an overcast day.

Education

/

Ransomware closes Minersville Area schools in Pennsylvania

District cancels Tuesday classes after taking network offline; parent email cites ransomware while Facebook post mentions only closure

By DysruptionHub Staff

/ 16 Dec 2025

K-12

/

North Dakota’s Fessenden-Bowdon School reports email security incident

By Joseph Topping

/ 15 Dec 2025

North Dakota’s Fessenden-Bowdon School reports email security incident

K-12

/

Cyber incident closes Zion, Illinois schools

By Joseph Topping

/ 1 Dec 2025

Brick sign reading “Zion Elementary School District 6” in front of a grassy lawn and low school buildings with trees in the background.

Education

/

North Carolina’s Jackson County schools close after DDoS cyberattack

By DysruptionHub Staff

/ 26 Nov 2025

North Carolina’s Jackson County schools close after DDoS cyberattack

Education

/

Carlsbad, N.M., schools hit by cyber incident in late Oct.

By Joseph Topping

/ 21 Nov 2025

Exterior of beige, low-slung Carlsbad Municipal Schools Administration building with trees and a stone sign on a grassy lawn.

Private Sector

Companies and nonprofits whose incidents affect customers, supply chains, or communities. Includes MSPs, SaaS, media, retail, manufacturing, logistics, and insurers. Vendor events that disrupt hospitals, schools, or governments are cross-tagged but filed under the impacted sector.

All in Private Sector