Exterior view of the University of Mississippi Medical Center in Jackson, Mississippi, with a large campus sign in the foreground.

Healthcare

/

Mississippi medical center closes clinics amid cyberattack

University of Mississippi Medical Center says Epic records system is down; outpatient appointments canceled statewide

By DysruptionHub Staff

/ 19 Feb 2026

Front exterior of Huntington City Hall, a neoclassical cream-colored building with tall columns and several parked cars in front, in Huntington, West Virginia.

Government

/

Huntington, West Virginia addresses cybersecurity incident

City says suspicious activity was detected early; scope and service impacts not yet disclosed

By DysruptionHub Staff

/ 18 Feb 2026

Government

/

Oklahoma Cheyenne and Arapaho Tribes say ransomware disrupted tribal systems

By DysruptionHub Staff

/ 17 Feb 2026

Sign reading “Cheyenne & Arapaho Tribes” with tribal design elements and the Cheyenne-language name below.

Healthcare

/

Montana hospital restores phones as cyber-related network disruptions persist

By DysruptionHub Staff

/ 16 Feb 2026

Livingston HealthCare entrance sign in the foreground, with the hospital building and parking lot in the background.

Government

/

U.S. Virgin Islands Economic Development Authority hit by ransomware; systems locked

By DysruptionHub Staff

/ 12 Feb 2026

U.S. Virgin Islands Economic Development Authority hit by ransomware; systems locked

Enjoying Our Work?
A small tip keeps our reporting, hosting, and tools running for everyone.

Tip us

U.S. Cyber Incident Alerts
Get concise updates on incidents impacting the United States—no spam.

Sign up now

Become a Long-Term Supporter
Your monthly or annual pledge sustains independent coverage and uptime.

Become a Supporter

Analysis

Analysis, reports, and opinion that look beyond individual incidents. We examine trends, tactics, and sector-wide risks; connect dots across cases; and publish periodic research and explainers. Expect context, data-driven takeaways, and clear points of view to help readers understand what matters, why it happened, and what to watch next.

All in Analysis

Handwritten sign taped to a glass door reading “CLOSED DUE TO CYBERATTACK UNTIL FURTHER NOTICE” with a sad face at the bottom, indicating the business is shut because of a cyber incident.

Analysis

/

Why we don't cover every cyber incident

How we use documented disruption and DD-CIT to focus on U.S. incidents that actually break services.

By DysruptionHub Staff

/ 10 Dec 2025

Analysis

/

We have seen no evidence that sensitive data was accessed

By Joseph Topping

/ 5 Dec 2025

Collage of several black-and-white pages filled with text where large sections are covered by thick black redaction bars, representing censored or withheld information.

Analysis

/

Opinion: When local TV "breaks" the story you already reported

By DysruptionHub Staff

/ 29 Nov 2025

Opinion: When local TV "breaks" the story you already reported

Analysis

/

The Black Knight Breach That Never Was

By Joseph Topping

/ 24 Nov 2025

A row of tall black server cabinets with green and blue status lights in a dimly lit data center corridor.

Analysis

/

After the Breach: Wexford County, Michigan

By Joseph Topping

/ 10 Nov 2025

Front view of the Wexford County Courthouse in Cadillac, Michigan, showing a brick and stone building with tall columns, a U.S. flag flying in front, and trees framing the scene.

Critical Infrastructure

Energy, water and wastewater, transportation, communications, and financial systems that keep communities running. Coverage focuses on outages, service degradation, and operational risk from cyber incidents, sabotage, or vendor failures that disrupt essential services.

All in Critical Infrastructure

Exterior of BridgePay Network Solutions’ headquarters office building at 485 N. Keller Rd., Suite 525, in Maitland, Florida, with a blue-glass facade and landscaped entrance.

Critical Infrastructure

/

Florida payment gateway BridgePay says ransomware caused nationwide outage

Merchants reported card-processing failures as city payment portals went offline while the company worked with federal investigators on recovery.

By DysruptionHub Staff

/ 7 Feb 2026

Critical Infrastructure

/

California crosswalk audio hack traced to unchanged default passwords, records show

By DysruptionHub Staff

/ 9 Jan 2026

Close-up of a yellow crosswalk push-button unit with a placard and an icon of a pedestrian with a cane, with a sidewalk and planters in the background.

Critical Infrastructure

/

Utah’s Snyderville Basin Water Reclamation District cites Flax Typhoon but reports file encryption on GIS server

By Joseph Topping

/ 5 Jan 2026

A low tan office building with green trim and a flagpole flying U.S. and Utah flags, with parked vehicles and snow-dusted hills in the background.

Critical Infrastructure

/

Cyber incident knocks out PES Energize phones in Pulaski, Tenn.

By Joseph Topping

/ 5 Dec 2025

Street-level view of the PES Energize headquarters, a two-story light-colored office building with long rows of windows and a central entrance facing an intersection in Pulaski, Tennessee.

Critical Infrastructure

/

Kansas telecom cyber event disrupts Rainbow phone lines

By Joseph Topping

/ 18 Nov 2025

Healthcare

Hospitals, clinics, public health agencies, payers, and health IT providers. We track incidents affecting patient care, ER diverts, EHR downtime, and PHI breaches, emphasizing operational impact, restoration status, and what patients and providers need to know.

All in Healthcare

Exterior of a tan medical building with windows and signage reading “Singing River Health System” and “Singing River Medical Park.”

Healthcare

/

Mississippi's Singing River Health probes potential cyber incident

MyChart restored after health system shut down select systems to assess "potential threat"

By Joseph Topping

/ 26 Dec 2025

Healthcare

/

Pit River Health Service cyber incident disrupts records access in California

By Joseph Topping

/ 17 Dec 2025

Exterior view of Pit River Health Service with a freestanding sign reading “Pit River Health Service, 36977 Park Ave.” in front of the clinic building and pine trees.

Healthcare

/

Family Health West cyberattack forces Colorado hospital systems offline

By DysruptionHub Staff

/ 29 Oct 2025

Healthcare

/

Massachusetts hospitals Heywood, Athol say outage was a cybersecurity incident

By Joseph Topping

/ 17 Oct 2025

Exterior of Athol Memorial Hospital with main entrance and signage visible.

Healthcare

/

New Hampshire's Coös County Health Impacted by Cyberattack

By DysruptionHub Staff

/ 25 Jul 2025

Exterior of the Coös County Family Health Services Colebrook Clinic with a sign reading “Coös County Family Health” near the entrance.

Public Services

Public-facing city and county services other than critical infrastructure: 911/PSAP, EMS and fire, transit, libraries, housing, and social services. We report on outages, call routing issues, payment portals, and case-management systems that limit access to services.

All in Public Services

Red West Pierce Fire & Rescue ladder truck parked outdoors in daylight with equipment and “West Pierce” signage visible on the side.

Public Services

/

Cyber incident disrupts Washington's West Pierce Fire & Rescue

West Pierce Fire & Rescue says 911 and emergency response remain fully operational while it works with the FBI.

By Joseph Topping

/ 13 Dec 2025

Public Services

/

Oregon's Deschutes Public Library closes after data breach

By DysruptionHub Staff

/ 12 Dec 2025

Exterior of the Downtown Bend Library in Bend, Oregon.

Public Services

/

Chester County, Pennsylvania, libraries hit by dayslong outage; staffer cites ransomware

By Joseph Topping

/ 6 Oct 2025

Stone-clad Chester County Library & District Center in Exton, Pa., on a sunny winter day with snowbanks in the parking lot and bare trees.

Public Services

/

Cyberattack disrupts New Mexico Game & Fish online payments

By DysruptionHub Staff

/ 30 Aug 2025

Stone sign reading “New Mexico Game and Fish” at the agency’s headquarters, 1 Wildlife Way, Santa Fe, NM, with desert vegetation and cloudy sky (Sept. 2024, Google Street View).

Public Services

/

Cyber incident disrupts some Maryland Transit Administration systems

By DysruptionHub Staff

/ 25 Aug 2025

A white Maryland Transit Administration bus numbered 9966 is parked at a curb near the University of Maryland Transit Center, with Maryland flag banners visible along the street.

Government

Federal, state, local, tribal, and territorial governments. Coverage focuses on operational impact, public notifications, restoration timelines, and risks to civic functions and records.

All in Government

Front entrance of the State College Municipal Building, with a bed of red and white tulips in the foreground and the building’s sign visible on the brick facade.

Government

/

State College borough, Pennsylvania, says cyberattack disrupted network

Municipal offices stayed open, but officials warned of email delays as recovery work continued.

By DysruptionHub Staff

/ 12 Feb 2026

Government

/

Connecticut city investigates network disruption at New Britain City Hall

By DysruptionHub Staff

/ 29 Jan 2026

Exterior view of New Britain City Hall on West Main Street in downtown New Britain, Connecticut, on a clear day.

Government

/

Winona County, Minnesota, investigates ransomware incident on network

By DysruptionHub Staff

/ 23 Jan 2026

Close-up of a black sign reading “Winona County Justice Center” with smaller text: “Courthouse, Jail and Sheriff’s Office.”

Government

/

Edisto Beach, South Carolina probes potential email cyber incident

By DysruptionHub Staff

/ 23 Jan 2026

Close-up of a blue “Edisto Beach Town Hall” sign with the town seal featuring a pelican.

Government

/

Russell Township police email cut off for weeks after suspected intrusion flagged in Ohio county network

By Joseph Topping

/ 15 Jan 2026

Brick Russell Police building with an American flag out front and two marked police SUVs parked in front.

Education

K–12 districts, higher education, and community colleges. We cover closures, remote learning disruptions, SIS and E-Rate impacts, and breaches of student records. Vendor incidents land here when they disrupt teaching, learning, or campus operations.

All in Education

Front entrance of the Tulare City School District administration building with U.S. and California flags outside.

Education

/

California’s Tulare City School District probes network incident as extortion claim circulates

District says suspicious activity disrupted some systems and reports of suspicious emails surfaced

By Joseph Topping

/ 5 Feb 2026

Education

/

Oakland, Illinois school district says systems restored after cyberattack

By DysruptionHub Staff

/ 7 Jan 2026

Brick pillars frame a roadside sign reading “Oakland High School” and “International Baccalaureate World School,” set on a grassy lawn under a blue sky.

Education

/

Pell City Schools, Alabama, reports cyber incident; some IT systems disrupted

By Joseph Topping

/ 6 Jan 2026

Exterior of a brick building with white columns and a roadside sign that reads “Pell City Board of Education.”

Education

/

Eanes school district in Texas faces unverified ransomware claim after outage

By Joseph Topping

/ 22 Dec 2025

Tree-lined walkway leading to the entrance of an Eanes ISD building, with an “EISD” sign above the covered entry.

Education

/

Clarksville school district in Texas reports outage; ransomware claim unverified

By Joseph Topping

/ 19 Dec 2025

Private Sector

Companies and nonprofits whose incidents affect customers, supply chains, or communities. Includes MSPs, SaaS, media, retail, manufacturing, logistics, and insurers. Vendor events that disrupt hospitals, schools, or governments are cross-tagged but filed under the impacted sector.

All in Private Sector