Fluke Corporation data breach impacts over 18,000, Clop claims responsibility
Fluke Corporation notified over 18,000 people of a data breach that occurred between August 10 and October 7, 2025. The breach, resulting from an exploited vulnerability in a third-party application, compromised highly sensitive personal information including SSNs, birth dates, and disability status. The Clop ransomware group claimed responsibility.
Signal context
First seen: May 22, 2026
Last updated: Jun 24, 2026
Status: Public signal
Key points
- Over 18,000 individuals affected.
- Breach occurred August-October 2025 via third-party app vulnerability.
- Compromised data includes SSNs, birth dates, and disability status.
Signal analysis
BetaIt helps compare this signal with other published signals without treating the labels as final determinations.
Likely country: Location not provided
Watch ransomware, endpoint compromise and business interruption exposure.
- Source type: outside the affected organization
Impact area: Confidentiality, Availability
Likely asset: User or customer data
- 1 signal in the same sector
- 69 signals with the same likely impact area
- 1 signal linked to this organization/domain
External sources
Fluke Data Breach: SSNs and Health Records Compromised for 18k Individualshttps://www.claimdepot.com/data-breach/fluke-2026Public source from claimdepot.com.
Everett-based Fluke Corp. failed to prevent data breach, lawsuit says | HeraldNet.comhttps://www.heraldnet.com/2026/06/12/everett-based-fluke-corp-failed-to-prevent-data-breach-lawsuit-says/Public source from heraldnet.com.
Related signals
Grouped by why the signal is relevant.
Tampa Bay Dental Implants & Prosthetics discloses ransomware attack and data exposure
Tampa Bay Dental discovered unauthorized access to its network on January 19, 2026, when ransomware was used to encrypt files on a legacy server containing a backup of electronic medical records. Patient data, including names, contact information, birth dates, treatment notes, clinical histories, and for some, Social Security numbers, was exposed.
Cl0p Ransomware Group Exploits Oracle E-Business Suite Zero-Day
The Cl0p ransomware group launched a large-scale extortion campaign by exploiting a zero-day vulnerability (possibly CVE-2025-61882) in Oracle's E-Business Suite (EBS). This led to critical data breaches for dozens of large corporations, with over 100 companies allegedly impacted. The exploitation activity was observed as early as August 9, 2025, weeks before a patch was available, and suspicious activity dated back to July 10, 2025. The threat actors exfiltrated a significant amount of data from impacted organizations and sent high-volume emails to executives demanding payment.
Beacon Mutual Insurance Co. Ransomware Attack Compromises 131,000 Rhode Islanders' Data
Beacon Mutual Insurance Co., Rhode Island's largest workers' compensation insurer, disclosed that highly sensitive personal information belonging to over 131,000 Rhode Islanders was compromised in a ransomware attack earlier in the year. An unauthorized person gained access to the company's system between January 7th and January 14th, accessing files containing names, Social Security numbers, driver's license numbers, financial account numbers, health insurance information, and/or medical treatment details.
Iranian Hackers Blamed for Los Angeles County Metropolitan Transportation Authority Breach
Iranian hackers were reportedly responsible for a breach of the Los Angeles County Metropolitan Transportation Authority (LA Metro) that disrupted parts of the transit environment in California. The investigation involved exposed internal data and operational disruption. Security researchers linked the intrusion to Iran-aligned Ababil activity, with reports describing stolen emails, backups, and a video showing access inside the target network.
Vikor Scientific (Vanta Diagnostics) Data Breach Affects 140,000 Patients via Vendor
On February 23, 2026, U.S.-based healthcare diagnostic company Vikor Scientific (rebranded as Vanta Diagnostics) disclosed a data breach that compromised the personal information of 139,964 individuals. The incident stemmed from a security incident at one of its revenue cycle management vendors, Catalyst RCM, where an unauthorized login occurred between November 8-9, 2025. The Everest ransomware group claimed responsibility for the attack.
University of Mississippi Medical Center Hit by Ransomware Attack
In February 2026, the University of Mississippi Medical Center (UMMC) experienced a ransomware attack that forced the closure of most of its clinics and the cancellation of elective procedures. The attack impacted its IT network and many systems, including its Epic electronic medical record system. UMMC confirmed contact with the attackers, but the name of the group was not disclosed initially, though later reports attributed it to Medusa ransomware.