Editor's Message

Welcome to DBD. On March 8th 2026, DBD celebrated it's sixth anniversary and PRiSM celebrated it's third anniversary. Both projects have made a huge impact on my life and I'd like to thank each and everyone of you who have supported me, with special thanks to those individuals and communities who have helped me build up my knowledge on cybercrime and ransomware over the years. Thanks again for all your continued support. Stay safe. :)

“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington D.C.

Monday, 20 April 2026

Data Breaches Digest - Week 17 2026

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 20th April and 26th April 2026.


20th April

10 Biggest Data Breaches in Germany

52 Million-Download protobuf.js Library Hit by RCE in Schema Handling

58% of Organizations Spend Over 10 Hours a Month Securing AI-generated Code

₹165 Crore Phishing Empire Crushed: FBI Busts Global Cyber Fraud Network

$221K Lost In Ethereum Phishing Attack What Went Wrong

2024 NHS Ransomware Attack Still Causes Healthcare Disruption, 122 Patient Safety Incidents Recorded

After Tycoon 2FA Takedown, MFA‑Bypass Phishing Techniques Spread Across New Platforms

AI platform ATHR makes voice phishing a one-person job

Anthropic Model Context Protocol (MCP) Design Vulnerability Enables RCE, Threatening AI Supply Chain

App host Vercel says it was hacked and customer data stolen

Apple Account Change Alert Emails Exploited in New Phishing Campaign

Apple's account change notifications send phishing emails

Arizona & Texas Clinics Notify Patients About Ransomware Incidents

Arnold Clark Faces Data Breach Class Action In Scotland

ATHR Fuels Large-Scale AI Vishing and Phone Phishing Attacks

Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet

Attackers Exploit Windows Zero-Days to Bypass Microsoft Defender

Australia: Don’t be tricked by phishing scams

Australia: New South Wales (NSW)-based Strata Republic allegedly breached by Kairos ransomware group

Bluesky blames app outage on ‘sophisticated’ DDoS attack

Booking.com data breach customers fall prey to Reservation Hijacks

Brit pleads guilty amid Scattered Spider hacking spree claims

British Hacker Admits Stealing Millions in Virtual Currency From Targeted Companies

British hacker tied to Scattered Spider campaign pleads guilty in $8 Million scheme

British Hacker Tyler Buchanan Pleads Guilty to $8 Million Hacking Scheme in US

British Scattered Spider Hacker Pleads Guilty in the US

British Scattered Spider hacker pleads guilty to crypto theft charges

Brute-Force Authentication Attacks Targeting Network Devices On The Rise

Champhunt Data Breach Exposes Over 224,000 User Records

Cisco Patches Critical Identity Services Engine (ISE) Vulnerabilities Allowing Remote Code Execution Attacks

Critical Anthropic Model Context Protocol (MCP) Vulnerability Enables Remote Code Execution Attacks

Critical Gardyn Smart Gardens Vulnerabilities Let Attackers Control Devices Remotely

Crypto Exchange Grinex Blames Western Spies for $13m Theft

Data breach at French National Agency for Secured Documents (ANTS) portal exposes personal user information

Drivers eligible for Arnold Clark cyber attack compensation claim

Dutch ecommerce site Bol.com investigates claims of a data breach

Dutch healthcare tech giant ChipSoft confirms patient records stolen

Everest Group Breaches Frost Bank, Citizens Bank, Tokoparts, Complete Aircraft Group, Umiles, Nutrabio

Fake TikTok Downloaders on Chrome and Edge Spying on 130,000 Users

Formbook Malware Campaign Uses Multiple Obfuscation Techniques to Avoid Detection

Gravesend Panic Room owners put in 'difficult position' following cyber attack

Hacker “Jeffrey Epstein” leaks 400K records from Netherlands' largest webshop

Hackers Abuse Apple Alerts to Bypass Spam Filters

Hackers Exploit AppDomain Hijacking To Weaponize Intel Utility

Hackers Exploit CVE-2024-3721 To Deploy Nexcorium Malware On TBK DVRs

Hackers Use FUD Crypt To Deliver Microsoft-Signed Malware With C2 Capabilities

Indian Agency Arrests Key SIM Card Supplier of a Broader Cyber Fraud Network

Inside the Booking.com Data Breach - Should You Be Worried?

Instituto Maria Schmitt Investigates Email Inbox Data Breach

Investigation into Blue Cross Blue Shield of Montana data breach moves forward

Iran’s Ministry of Intelligence and Security (MOIS) Tied to Coordinated Cyber Campaign Using Multiple Hacker Personas

iTerm2 Flaw Abuses SSH Integration Escape Sequences to Turn Text Into Code Execution

JanaWare Ransomware Hits Turkish Users via Tailored Adwind RAT

Mastodon says its flagship server was hit by a DDoS attack

Microsoft, Meta, Google shamelessly track you even if you opt out

MiningDropper Campaign Targets Android Users with RATs and Data-Stealing Apps

Morocco’s Al Barid Bank Denies Data Breach, Says Customer Accounts Remain Secure

National Cyber Security Centre (NCSC) Outlines Coordinated Plan to Boost National Health Service (NHS) Cyber Resilience

New Malware Campaign Delivers Gh0st RAT With CloverPlus Adware

Next.js Creator Vercel Hacked

Nigeria: Confusion as Corporate Affairs Commission (CAC) suspends portal operations over cyber attack

NIST Shifts to Risk-Based National Vulnerability Database (NVD) Model as Common Vulnerabilities and Exposures (CVE) Submissions Surge 263% Since 2020

North Korea hackers blamed for $290 Million crypto theft

Over 200 Japanese firms paid ransomware attackers, 60% fail to recover data

Phishing attack warning issued following Booking.com data breach

Public Notion Pages Expose Profile Photos and Email Addresses of Editors

QEMU Hijacked as Stealth Backdoor for Credential Theft, Ransomware

Ransomware’s Next Phase: From Data Encryption to Business Extortion

Read notice on the website that FBI has taken down for stealing millions from internet users across the world

Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination Operational Technology (OT) Systems

Researchers Link Iran’s Ministry of Intelligence and Security (MOIS) To Coordinated Hacker Persona Operation

Revolution Dancewear Discloses Data Breach Compromising Personal Info for 5,841 Individuals

Secretaría de Seguridad del Estado de México Data Breach

SEO Poisoning Attack Abuses Microsoft Binary To Deploy RMM Tools

Standard Bank data breach fallout deepens

Study finds ransomware payments largely ineffective for Japanese firms

The Chartered Institute of Bankers of Nigeria Data Breach

Third-party AI hack triggers Vercel breach, internal environments accessed

Top 3 Cyber Insurance Incident Claims

Tycoon 2FA Loses Dominance as Phishing Attacks Surge Across Emerging Platforms

UAE Cyber Security Council Warns 1 in 4 Public Files Contain Sensitive Personal Data

Vercel: Data breach exposes customer credentials

Vercel Breach Originated from an Employee’s AI Tool

Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials

Vercel breached via compromised third-party AI tool

Vercel CEO blames highly sophisticated AI for speeding up the massive internal data breach

Vercel Confirms Breach as Hacker Demands $2 Million Ransom

Vercel Confirms Data Breach - Hackers Claim Access to Internal Systems

Vercel Confirms Data Breach Linked to AI Tool, Hackers Demand $2 Million Ransom

Vercel confirms data breach linked to third-party AI tool: All you need to know

Vercel Confirms Security Breach as Hacker Demands $2 Million and Claims to Sell Internal Access

Vercel Data Breach Exposes Customer Credentials After AI Tool Compromise

Vercel Data Breach Linked to Context AI Hack Reportedly Exposes Information

Vercel Data Breach Linked to Earlier Context.ai Compromise

Vercel hacked after fatal OAuth misstep: granting “Allow All” permissions

Vercel hacked, hacker using ShinyHunters name to sell data for $2 million

Vercel Incident Linked to AI Tool Hack, Internal Access Gained

Vercel Reports Data Breach Amid Claims of Compromised Internal Infrastructure

Vercel Security Breach: Hacker Demands $2 Million as Crypto Projects Scramble to Secure Keys

'We've identified a security incident': Vercel breach confirmed after hackers claim stolen data for sale online

What the ransom note won't say

Why proactive cybersecurity beats ransomware threats

Why security experts believe we should manage software flaws like a critical illness

ZionSiphon Launches Sabotage Attacks On Israel’s Water Infrastructure

ZionSiphon Malware Targets Water Infrastructure Systems

Posted by at
Labels:

Thursday, 16 April 2026

Ransomware Operator Claims - Week 15 2026

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 6th April and 12th April 2026, kindly assisted by our partners.

DBD discovered and researched 166 Ransomware Victims over 42 Countries and Islands claimed by 36 Data-Leaking Ransomware Operators, including 4 Newly Discovered Ransomware Operators last week.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.

Posted by at
Labels: ,

Monday, 13 April 2026

Data Breaches Digest - Week 16 2026

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 13th April and 19th April 2026.


19th April

5 most common types of AI-enabled attacks

$300 Million stolen in cross-chain bridge hack, largest DeFi exploit of 2026

Apple account change alerts abused to send phishing emails

Australia: Redland council issues phone phishing warning

Booking.com data breach: Unknown persons access booking data - Group changes PINs

British Man Pleads Guilty in U.S. ₹74.70 Crore Virtual Currency Theft Case

Carnival Corporation probes data breach after claims of 8.7 Million records theft

Hacker stole 1.2TB of data from Standard Bank of South Africa

Indonesia suspends game rating system after data breach

Kenya: Office of the Data Protection Commissioner (ODPC) faults LOLC Kenya over data breach, orders deletion of client data

National Institute of Standards and Technology (NIST) to stop rating non-priority flaws due to volume increase

‘Part-time job’ in voice phishing lands young Korean in prison

Phishing and Infostealer Dominate Cyber Attacks Throughout 2025

Ransomware attacks cripple two elderly care institutions in the US

Singapore: Police warn against phishing scams via Google Meet video calls involving fake cops

South Korea: 20s individual sentenced to one year for voice phishing role

South Korea: Phishing Scams Surge as Airlines Cancel Flights Amid Oil Price Spike

The Panic Room family entertainment centre in Gravesend targeted by hacker again

Vercel confirms breach as hackers claim to be selling stolen data

Web3 hosting backbone Vercel confirms breach as supposed hacker demands $2 million ransom

18th April

$13.74 Million Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims

Alaska Air Group Federal Credit Union Data Breach Impacts 10,000 Members

Ameriprise Data Breach Impacts 47,876 People

Amtrak data breach enters Have I Been Pwned (HIBP) after leak claim

Cookeville Regional Medical Center (CRMC) cybersecurity incident results in significant data breach

Critical flaw in Protobuf library enables JavaScript code execution

Dundee Hacker Cops To $8 Million Crypto Text-Scam Heist

Dundee hacker could face 22 years in prison over role in £6 million phishing scam in USA

Georgia Heritage Data Breach Affects 43,077 People

Impac Mortgage Holdings Data Breach Exposes Social Security Numbers

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

Nearly $50 Million on the Table - Here’s What the Regal Medical Group Data Breach Really Cost Patients

New Ransomware Threat Alarm: ‘Payouts King’ Hides Inside Virtual Machines to Dodge Detection

Nigeria: Corporate Affairs Commission (CAC) shuts registration portal for 3 days after cyber attack

Nigeria Data Protection Commission (NDPC) Probes Alleged Data Breach At Corporate Affairs Commission (CAC)

Operation PowerOFF: 75K Users of DDoS-for-Hire Services Identified and Warned

Scottish hacker facing decades in jail over £6 million phishing scam in USA

Scottish hacker facing decades in jail over £6 million phishing scam in USA

Scottish Man Pleads Guilty in $8 Million Phishing, Crypto Theft Scheme

ShowDoc Vulnerability Patched in 2020 Now Used in Active Server Takeovers

Supreme Court hacker gets 1 year of probation for multiple infiltrations

The Phishing Paradox: The World’s Most Trusted Brands Are Cybercriminals’ Entry Point of Choice

US Supreme Court system hacker handed one year of probation

What happened in the $8 million crypto fraud case as British hacker pleads guilty in US

What’s ‘reservation hijacking’? Canadian travellers warned after Booking.com data breach

Zara owner Inditex reports unauthorised access to transaction databases

Zara, Carnival, 7-Eleven hit by ShinyHunters, 9 Million+ records at risk in “pay or leak” warning

17th April

2.5 Million records leaked after ShinyHunters hits US home security giant Alert 360

$3.75 Million Settlement Resolves Data Breach Lawsuit Against Chattanooga Heart Institute

10bis Data Breach Exposes 1.4 Million User Records

$15 Million Grinex Hack Forces Trading Halt After Major Crypto Wallet Breach

75,000 DDoS-for-Hire Users Reprimanded as Authorities Seize Dozens of Domains

414,000 user accounts restored after cyber attack that saw some schools specifically targeted

Alleged Data Breach: Nigeria Data Protection Commission (NDPC) Investigates Corporate Affairs Commission

Amtrak data breach exposed information of 2.1 million accounts

Another DraftKings Hacker Sentenced to Prison

Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation

Apple AirTag tracking can be misled by replayed Bluetooth signals

Arnold Clark faces group legal action over cyber breach

ATHR platform automates voice phishing attacks with AI

Attackers Use Google Cloud URLs to Spread Remcos Through Fake Drive Pages

Beware of emails from these brands as it may be a phishing scam

Bluesky confirms DDoS attack is cause of continued app outages

Bluesky Outage: Coordinated Traffic Attack Causes Widespread Errors

Bluesky under “sophisticated” DDoS attack

Booking.com data breach: what affected customers need to know

Brand Impersonation: Microsoft Retains Top Spot, Apple Climbs to No.2 in Q1 2026

Canutillo Independent School District issues phishing alert for ‘Dinner & Drinks’ email

Carlson Maintenance Breach Exposes Social Security Numbers

Censys Warns 6 Million Public FTP Servers Remain Exposed Online in 2026

CISA flags Apache ActiveMQ flaw as actively exploited in attacks

City of Burlington, Vermont, Issues Alert on Phishing Scam Targeting Permit Applicants

Clothing Retailer Patches Website Flaw Exposing Customer Data

Commercial AI Models Show Rapid Gains in Vulnerability Research

Cookeville Regional Medical Center breach impacted over 337,000 individuals

Credix Fibextelecom Data Breach Exposes Customer Info

Cyberattack Targets Israeli Desalination Plants With Sabotage Malware

Cybercrime goes plug and play with voice fraud-as-a-service platform

Cybercriminals Hit Freight and Trucking Companies In Cargo Theft Scheme

Data Breach Hits Grand Theft Auto V (GTA V) and Red Dead Redemption 2 Maker Rockstar Games

DDoS-For-Hire Services Disrupted by International Police Action in ‘Operation PowerOff’

DraftKings hacker sentenced to 30 months for credential stuffing scheme

DraftKings hacker sentenced to prison, ordered to pay $1.4 Million

EU’s New Age Verification App Can Be Hacked Within 2 Minutes, Researchers Claim

Europol DDoS Crackdown: Operation PowerOFF Dismantles Over 50 Domains, Targets 75,000 Criminals Worldwide, Secures 4 Arrests

Europol-Supported Global Operation Targets Over 75,000 Users Engaged In DDoS Attacks

Four arrested in latest ‘PowerOFF’ DDoS-for-hire takedown

Global Hotel Giant Booking.com Hit by Customer Data Breach: Is Your Information Safe?

Google wipes out 602 million scam ads with Gemini on duty

Grinex Crypto Exchange Announced Cyberattack Resulting in $13 Million Theft

Grinex exchange blames "Western intelligence" for $13.7 Million crypto hack

Hackers are abusing unpatched Windows security flaws to hack into organizations

Hackers dodging security tools by dropping secret QEMU virtual machines inside Windows

Hackers Exploit TP-Link Router Flaw To Spread Mirai Malware

Hackers publicly release data stolen from Standard Bank

Hackers Use ATHR to Run AI-Powered Vishing, Credential Theft, and Phone-Based Phishing at Scale

Hackers who stole millions of crime tip records now selling them, claim they “need to eat”

Half of Phishing Texts Impersonate Financial Institutions in Q1

Handala Claims Breach of Israeli Cloud Giant

Here’s What Canadians Need To Know About Booking.com’s Recent Data Breach

Hugging Face Abused To Spread Blockchain-Based Backdoor In CVE-2026-39987 Attacks

In defeat for Trump, House extends electronic spying program for just 10 days

Industrial Control Systems Hit By Surge In Email-Delivered Worm Campaigns

Insurance giant Humana reveals second data breach in as many months

International hacker group hits major education website

Iran-Backed Hacker Group Claims Major Breach of Israel's Top Cloud Provider

Iran-linked hacker group claims massive breach of Israel’s largest cloud provider

IRS Tax Refund Scams Spike: What To Watch For

IT system for Northern Ireland schools ‘largely restored’ after cyber attack

IT system for Northern Ireland schools ‘largely restored’ following cyber attack

Jamaica: Additional arrests made in $80 million phishing scam case

Jamaica: Two more charged by Major Organised Crime and Anti-Corruption Agency (MOCA) in $80 million National Commercial Bank (NCB) phishing scam

Jamaica: Two people charged in connection with $80 million phishing scam at National Commercial Bank (NCB)

Kuwait Banks Deploy Real-Time War Room to Fight Growing Cyber Fraud Threats

Man gets 30 months for selling thousands of hacked DraftKings accounts

Man who hacked US Supreme Court filing system sentenced to probation

McGraw Hill Data Breach Exposes 1.35 Million Users After Salesforce Flaw

medicalnetworks CJ GmbH Hit By DragonForce Ransomware

Mercer Faces Data Breach Lawsuits

Microsoft, Apple, and Google are among the brands most used in phishing attacks

More than half of Scotland’s small businesses ‘vulnerable’ to cyber-attack and what needs to be done

National Institute of Standards and Technology (NIST) changes spark European cyber sovereignty push

National Institute of Standards and Technology (NIST) Limits CVE Enrichment After 263% Surge in Vulnerability Submissions

New CGrabber and Direct-Sys Malware Spread Through GitHub ZIP Files

New Mirai Variant Nexcorium Hijacks DVR Devices for DDoS Attacks

New Phishing Attack Turns n8n Into On-Demand Malware Machine

New Ransomware Group Payouts King Linked To Former BlackBasta Members

New RecruitRat, SaferRat, Astrinox, Massiv Android Malware Found Targeting 800 Apps

New ZionSiphon Malware Discovered Targeting Israeli Water Systems

Nigeria: Data commission investigates alleged data breach at Corporate Affairs Commission (CAC)

Nigeria Data Protection Commission (NDPC) Begins Inquiry Into Suspected Data Breach at Corporate Affairs Commission

Nigeria Data Protection Commission (NDPC) Launches Investigation into Data Breach at Corporate Affairs Commission (CAC)

Nigeria Data Protection Commission (NDPC) Launches Probe Into Alleged Data Breach At Corporate Affairs Commission (CAC)

Nigeria Data Protection Commission (NDPC) Probing Corporate Affairs Commission (CAC) Over Alleged Data Breach

North Korean hacker group targets Apple computers in new phishing campaign

Northern Ireland: 414,000 user accounts restored after cyber attack that saw some schools specifically targeted

Northern Ireland: C2K school services restored following cyber attack

Northern Ireland: School IT systems 'largely restored' after cyber attack

Northern Ireland school online system ‘largely restored’ after cyber attack

OpenClaw Exposes the Real Cybersecurity Risks of Agentic AI

Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts

Operation PowerOFF Takes Down 75,000 DDoS Attackers and 50+ Service Domains

Organisations delusional about ransomware recovery capability

Over 337K affected by Cookeville Regional Medical Center hack

Patient medical data stolen in Chipsoft ransomware attack

Payload Breaches TFE, Oriental, Sunlight, Marino & Franziskusschule

Payouts King ransomware uses QEMU VMs to bypass endpoint security

Payouts King Rises as New Ransomware Threat Linked to Former BlackBasta Affiliates

Privacy Study Finds Chrome Fingerprinting and Header Leaks Can Expose Users

Proof-of-Concept (PoC) Exploit Released for FortiSandbox Vulnerability that Allows attacker to execute commands

QEMU abused to evade detection and enable ransomware delivery

Ransomware attack continues to disrupt healthcare in London nearly two years later

Ransomware attacks against automotive sector escalate

Recently leaked Windows zero-days now exploited in attacks

Redland City Council alerts community to phone phishing activity

Redland City Council warns residents over phone phishing scam reports

Researcher drops two more Microsoft Defender zero-days, all three now exploited in the wild

Russian GRU Cyber Campaign Targets Western Logistics Firms Supporting Ukraine

Sanctioned Russian crypto exchange accuses Western intelligence of hack

Scattered Spider Hacker Pleads Guilty in US Federal Court

Scottish Man Plead Guilty in $8 Million Phishing and Crypto Theft Scheme

Slovenia’s civil aviation agency faces cyber attack

Sophisticated AI-enabled phishing campaign targeting education and research

South African Police Service (SAPS) medical aid scheme probes potential data breach

Stride Learning Company Data Extortion and Breach

Supreme Court hacker sentenced to year of probation

That data breach alert might be a trap

The missing layer in the fight you thought you understood

Thousands of drivers given green light to take legal action against UK car dealer due to major data breach

Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched

Trivy Supply Chain Compromise Enters Extortion Phase as Vect Ransomware Publishes First Victim

Two Senior Care Providers Affected by Ransomware Attacks

Tycoon 2FA Attacks Plummet 77% After Takedown, Yet Persist

Tycoon 2FA is down, but not out - researchers warn the phishing as a service operation is still a huge threat to businesses

Tycoon 2FA Phishers Scatter, Adopt Device Code Phishing

UAE issues warning: Are unused apps a hidden cyber threat?

Ukraine confirms suspected APT28 campaign targeting prosecutors, anti-corruption agencies

Warning for thousands of Arnold Clark car dealership customers

What Canadians should know about the Booking.com data breach

Windows Defender Zero-Day Leak Fuels Active Exploitation Campaigns

With US spy laws set to expire, lawmakers are split over protecting Americans from warrantless surveillance

Zara Parent Company Inditex Reports Third-Party Data Breach Affecting Transactions Database

ZionSiphon Malware Threatens Israeli Water Systems, Attempting to Sabotage Chlorine Levels and Pressure

16th April

1.2TB of Standard Bank data, including credit card details, stolen and leaked online

6-Year Ransomware Campaign Targets Turkish Homes & SMBs

133,862 Americans on East Coast Warned After Pharmaceutical Firm Suffers Major Data Breach, With Trove of Sensitive Data Potentially Exposed

337,000 exposed in ransomware attack on Tennessee's Cookeville Regional Medical Center

A.I. Agents Need Identity Before Cybercrime Scales Beyond Attribution

About 15,000 drivers can pursue Arnold Clark data breach claim

Adumo Data Breach: South African Payment Provider Compromised

AI platform n8n abused for stealthy phishing and malware delivery

AI Tools Enable Massive Mexican Government Data Breach

AI workflow platform n8n abused for phishing and device fingerprinting

'Almost foolproof': Why phishing scams targeting travellers are so dangerous

Americans lost $21 billion to online scams last year, FBI says - and the latest ‘e-vite’ trap is arriving from people you actually know

Anne Arundel Dermatology Pays $2.4 Million to Settle Data Breach Lawsuit

Anthropic tests user trust with ID and selfie checks for Claude

Anthropic's Mythos can accelerate cyberattacks, experts warn

APK Malformation Found in Thousands of Android Malware Samples

Australia: Queensland pharmacy chain allegedly breached by Kairos ransomware

Automotive Ransomware Attacks Double in a Year

Autovista confirms ransomware attack affecting European and Australian systems

Bank3 Data Breach Exposes Clients' SSNs and Financial Information

Booking.com: Customer data breach, but no financial information was stolen

Booking.com breach gives scammers what they need to target guests

Booking.com data breach as customers’ holiday information is stolen

Booking.com Data Breach Exposes Customer Information, Fuels Scam Concerns

Booking.com users urged to be vigilant as 'reservation hijacks' rise after data breach

BreachForums Announces VECT Partnership and Security Updates

Cargo theft malware actor spent a month inside a decoy network before researchers pulled the plug

Cargo thieving hackers running sophisticated remote access campaigns, researchers find

Charles River Insurance Data Breach Exposes SSNs and Medical Records

Cisco fixed four critical flaws in Identity Services and Webex

Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution

Cisco says critical Webex Services flaw requires customer action

Claude AI just learned how to hack Chrome: Will Mythos do it autonomously?

Concerns over patient data arise after data breach at ChipSoft

Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack

Cookeville Regional Medical Center hospital data breach impacts 337,917 people

Critical Cisco Identity Services Engine (ISE) Vulnerabilities Let Remote Attackers Execute Malicious Code

Cyberattacks hit Germany harder and faster than other European states, Google says

Cybersecurity Risks of Hiring a Virtual Assistant and How to Protect Your Business

Data Breach at Booking.com Exposes Customer Information

Data breach at edtech giant McGraw Hill affects 13.5 million accounts

Data Breach at Tennessee Hospital Affects 337,000

Data Breach Exposes Pavarini McGovern Construction Models

Data Breach Impacts National Society Sons of American Revolution

“Developers are not engineers:” Why Anthropic’s Mythos and other AI tools expose gaps in vulnerability reporting

Disgruntled hacker drops second zero-day Windows Defender exploit just hours after Microsoft patches first one

EU age verification app can be hacked in 2 minutes, claims security expert

EU cybersecurity standards are at risk if supplier ban passes

European police email 75,000 people asking them to stop DDoS attacks

Fashion retailer Express left customers’ personal data and order details exposed to the internet

FBI Warns of Russian Phishing Attacks on Messaging Apps

Fiverr denies data leak allegations linked to cloud storage exposure

Fortinet fixes critical FortiSandbox vulnerabilities (CVE-2026-39813, CVE-2026-39808)

Freight Hacker Wields Code-Signing Service to Evade Defenses

From Phishing to Deepfakes: Social Engineering Risks are Intensifying for Professional Service Firms

GitHub user warns LG Uplus links International Mobile Subscriber Identity (IMSI) to numbers, raising Korea security risks

Google expands Gemini AI use to fight malicious ads on its platform

Hacker Steals $18K from Somerville Restaurant's Delivery App

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Inditex data breach: Zara owner Inditex reports major data breach exposing customer transaction records

Interlock Exploits Cisco Firewall Management Center (FMC) Zero-Day Amid 31 High-Impact March Vulnerabilities

Iran-linked hacker group claims cyberattack on Israel’s Yad Vashem museum

Ireland: Wexford hotel warns of phishing attacks after data breach

Kenya: Eldoret Hospital Faces Ksh 525,000 Penalty After Patient Data Breach

Kenya: Eldoret Hospital Ordered to Pay KSh 525,000 Over Patient Data Breach

Kenya: Eldoret hospital to pay Sh525,000 over patient data breach

Loan scams surge as finance-themed phishing dominates in South Korea

Majority of Indian firms hit by ransomware in 2025 pay over Rs 12 crore on average

Malicious WordPress Plugins with Backdoors Compromise Thousands of Websites

Manhattan Judge Hammers ‘Fraud Is Fun’ Hacker Plug With Prison Term

Manufacturing leads ransomware targets in 2025

McGraw Hill Confirms Data Breach Exposing 13.5 Million Users’ Personal Data

McGraw Hill Data Breach Exposes 13.5 Million Accounts In Salesforce Attack

McGraw Hill data breach incident exposed 13.5 million accounts

McGraw-Hill Confirms Data Exposure, Hackers Claim 45 Million Salesforce Records Leaked

MiningDropper Turns Android Apps Into Multi-Stage Malware Delivery Systems

Mullinax Ford Data Breach Exposes 295 GB of Sensitive Personal Data

New ATHR vishing platform uses AI voice agents for automated attacks

New FBI warning reveals phishing attacks hitting private chats

New Jersey men given lengthy sentences for running North Korean laptop farms

New Microsoft Defender “RedSun” zero-day Proof-of-Concept (PoC) grants SYSTEM privileges

Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic

NIST admits defeat on National Vulnerability Database (NVD) backlog, will enrich only highest-risk CVEs going forward

NIST Drops National Vulnerability Database (NVD) Enrichment for Pre-March 2026 Vulnerabilities

North Korea accused of attacking crypto wallet, while novel threat campaign targets Obsidian app

NWHStealer Distributed Through Fake Proton VPN Pages and Malicious Gaming Mods

Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks

One year on from the M&S cyber attack: What did we learn?

Operation Atlantic Just Froze $12 Million in Stolen Crypto Across 30 Countries and Here Is How Approval Phishing Works

Operation PowerOFF identifies 75k DDoS users, takes down 53 domains

Over 13 Million Kemper Corporation records leaked on the dark web, hackers claim

Overconfidence on Identifying Phishing Schemes Fueling More Attacks

Payouts King Takes Aim at the Ransomware Throne

Phoenix Art Museum Data Breach Exposes Social Security numbers

Proof-of-Concept (PoC) Exploit Released for Microsoft Defender 0-Day Vulnerability

Ramona Students' Personal Data Potentially Exposed in PowerSchool Hack

Ransomware activity stays high as new groups surge

Ransomware Attacks Demanding Payments Confirmed Against South Korean SMEs

Ransomware attacks on automotive firms doubled in 2025

Ransomware disrupts Autovista's systems

Ransomware Hits Automotive Data Expert Autovista

Ransomware hits Korea as attackers pivot through IT maintenance firms

Ransomware reaches elevated ‘new normal’ as attack volumes hold steady into 2026, reshapes baseline risk expectations

Researchers hijack popular AI agents from Anthropic, Google, and Microsoft: vendors choose to stay silent

Researchers Map 1,250+ C2 Servers Across Russian Hosting Providers

Researchers Say Fiverr Left User Files Open to Google Search

Russia-linked Grinex crypto exchange suspends operations after cyber attack

Russian Hacking Campaign Targeting Ukraine and NATO, Attributed to APT28

Scotland: Lord Sandison approves for 15,000 motorists to pursue Arnold Clark

Scottish Motorists CAN sue Arnold Clark over dark web data leak

ScrogginsGrear Data Breach Exposes PHI and PII for 8,919 Individuals

South Korea: LG Uplus International Mobile Subscriber Identity (IMSI) Flaw Exposes Subscribers to Phishing Risk

SouthState Bank agrees to $1.5 million settlement over 2024 data breach affecting 2 million customers

Spain: New 'phishing' attempts via SMS impersonating the State Tax Administration Agency

Standard Bank data breach fallout deepens

Standard Bank data breach hacker claims 1.2TB stolen

Stolen Booking.com data already used in reservation hijacking scams

Sweden Thermal Plant Cyberattack Linked to Russian Threat Actors

Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads

Tails 7.6.2 patches vulnerability that could expose saved files

Targeted Cyberattack on Northern Ireland Schools Exposes Personal Data

Textbook titan McGraw Hill on ransomware crew's reading list after 13.5 Million records exposed

Thousands of drivers can pursue claim against Arnold Clark over data breach

Threat Actors Use Fake Adobe Reader Download To Deploy ScreenConnect

Top Security Experts Alarmed by Power of Anthropic’s New Hacker AI

turbo.cr/saint2.su Data Breach: 110K User Records Leaked

Two Americans sentenced for helping North Korea steal $5 million in fake IT worker scheme

Two New Jersey Individuals Sentenced to Prison in North Korea IT Worker Scheme

Two U.S. Nationals Sentenced in $5M North Korea IT Worker Scheme

Two US nationals jailed over scheme that generated $5 million for the North Korean regime

Tycoon 2FA didn’t die - it’s scattered everywhere

UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign

Ukrainian emergency services and hospitals hit by espionage campaign using new AgingFly malware

University of AlKafeel Data Breach Incident

US nationals behind North Korean IT worker 'laptop farm' sent to prison

US Nationals Jailed for Operating Fake Remote Worker Laptop Farms for North Korea

Windows is getting stronger RDP file protections to fight phishing attacks

Windows Snipping Tool Vulnerability Allows Attackers to Perform Network Spoofing

Zara owner Inditex reports data breach

Zara Parent Inditex Reports Third-Party Data Breach Involving Transaction Records

ZionSiphon malware designed to sabotage water treatment systems

15th April

$4 Billion OneCoin scam victims might get 1% of their losses back

13.5 Million Device Botnet Drives 2 Tbps DDoS Attacks on FinTech

55 years since its introduction, 6 million FTP servers are still exposed on the open internet

Active HanGhost Loader Campaign Targets Enterprise Payment and Logistics Workflows

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

Adobe fixes zero-day vulnerability, urges users to install update immediately

AI Companies to Play Bigger Role in CVE Program, Says CISA

Amtrak named in alleged ShinyHunters cyberattack involving 9.4 million records

April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More

Assurea Insurance Broker Suffers Massive Data Breach

Australian MedTech Firm EBR Systems Flags Possible Data Breach of Patient Records

Automotive data business Autovista blames ransomware for service disruption

Autovista confirms ransomware attack

Big tech fails to opt-out users requesting not to be tracked much of the time

Black Basta-linked attacks target executives via Teams phishing

Black Shrantac exposes industrial environments to stealth ransomware risk through Living Off the Land (LOTL), double extortion tactics

Booking.com: The data breach brings a new wave of “convincing fraud” in travel bookings

Booking.com Announces Data Breach

Booking.com Confirms Customer Data Accessed in Data Breach

Booking.com Confirms Customer Data Breach Tied to Reservation Records

Booking.com confirms data breach exposing customer booking details to unauthorised parties

Booking.com customers notified of data breach

Booking.com customers warned hackers could have accessed personal details

Booking.com customers warned of 'reservation hijacking' after data breach

Booking.com customers warned of 'reservation hijacking' after hack

Booking.com Data Breach: Customer Records and Reservation Details Leaked

Booking.com Data Breach Raises Scam Concerns

Booking.com discloses data breach exposing customer personal information

Booking.com hackers use hotel messaging to send fake requests to customers - is your vacation reservation protected?

Booking.com suffers data breach, says customer data possibly exposed

Boy arrested as police investigate cyber attack in schools across Northern Ireland

Bronzeville Hospital Patients Kept in the Dark for Months After Data Heist

Brute force surges, fast-moving ransomware, and ‘ClickFix’ attacks redefine enterprise risk

CISA flags Windows Task Host vulnerability as exploited in attacks

Citizens Initiative for Safety Awareness (CISA) Asks Nigeria Data Protection Commission (NDPC), Police to Act on Alleged Data Breach by National Institute for Policy and Strategic Studies (NIPSS)

Coordinated vulnerability disclosure is now an EU obligation, but cultural change takes time

Critical Nginx UI auth bypass flaw now actively exploited in the wild

Critical Nginx-ui MCP Flaw Actively Exploited in the Wild

Customer data potentially compromised after Booking.com suffers data breach

Customer info potentially compromised after Booking.com suffers data breach

Customized Adwind RAT Delivers JanaWare Ransomware To Turkish Victims

Cyber Warfare Shifts to System Destruction, Hacker Coalitions Emerge

Data breach at Booking.com: customer information exposed

Data resilience: What is it and why is it important in a ransomware age?

Dragon Boss Solutions Malware Exposes 25,000 Endpoints to Potential Supply Chain Attacks

Educational company McGraw Hill says Salesforce misconfiguration led to data leak

European Cybersecurity Agency ENISA Seeks Top-Tier Status in CVE Program

Fake Claude AI Installer Targets Windows Users with PlugX Malware

Fake Ledger Live App on Apple Store Linked to $9.5 Million Crypto Theft

First Sea Lord: "I will take full responsibility for Afghan data breach if found responsible"

Fiverr data breach exposes sensitive user data via Cloud

Fiverr users’ tax forms, licenses, private documents exposed on Google Search

Fortinet Patches 11 Vulnerabilities Across FortiSandbox, FortiOS, FortiAnalyzer and FortiManager

Fraud Surpasses Ransomware as Top Cyber Risk, But Insurance Can Help

French Education Ministry suffers major data breach in cyberattack

FUNNULL-Linked Triad Nexus Returns With 175+ Rotating CNAME Domains

Global Cybersecurity Risks Led by State-Sponsored Groups: China-Nexus Threat Activity Increases by 75%, Hacktivist Activity by 60%

Grand Theft Auto 6 (GTA 6) Rockstar Games Data Breach: ShinyHunters Leak Massive 78.6 Million GTA Online Records in Major Supply-Chain Cyberattack

Hallmark data leak surfaces online following ShinyHunters ransom threat

How Booking.com data breach could impact customers

India: Epicentre of Ransomware in Asia-Pacific 2025

India: Why data breach response is a board-critical cyber risk issue for Banking, Financial Services, and Insurance (BFSI)

India Becomes Hotspot for Ransomware Attacks on Manufacturing

Ivanti Neurons for ITSM Vulnerabilities Let Remote Attackers Obtain User Sessions

Ivanti Neurons ITSM Vulnerabilities Could Allow Session Persistence

JanaWare Ransomware Targets Turkish Users Through Adwind RAT Campaign

Kraken faces ransom demand after insider data breach

Krybit Ransomware Group Hacks Rival 0APT Infrastructure

Luxury retail giants hit: Lacoste, Ralph Lauren, Canada Goose data allegedly exposed

Luxembourg: Phishing is on the rise, with losses exceeding €10 million

Massive Chrome Extension Scam Exposes 20,000 Users to Data Theft

Massive leak hits Fiverr: user IDs, private documents, passwords found on Google

McGraw Hill Data Breach Caused by Salesforce Misconfiguration

McGraw-Hill confirms limited data exposure linked to Salesforce misconfiguration

Microsoft enhances Windows security against phishing with RDP file protections

Microsoft Fixes 167 Vulnerabilities in Latest Patch Tuesday Update

Microsoft Fixes Two Zero-Days in April Patch Tuesday

Microsoft Issues Massive Windows Patch for 160+ Bugs, Including Two Zero-Days

Microsoft Issues Patches for SharePoint Zero-Day and 168 Other New Vulnerabilities

Microsoft makes Remote Desktop phishing warnings noticeable

Microsoft SharePoint Server Zero-Day Vulnerability Actively Exploited in Attacks

Milan Court Accepts Meta Platforms Class Action Over Facebook Personal Data Scraping Affecting 35 Million Users

Morocco Probes Data Breach Affecting Nearly 100,000 Youth on Vocational Training Platform

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

n8n Webhooks Deliver Malware in Phishing Campaigns

National Institute of Standards and Technology (NIST) to limit work on CVE entries as submissions surge

New AgingFly malware used in attacks on Ukraine government, hospitals

New JanaWare Campaign Uses Adwind RAT to Hit Turkish Victims

New JanaWare ransomware targets Turkey with low-value, high-volume attacks

New Phishing Scam Targets Apple Users with Fake iCloud Deletion Warnings

New Zealand: Cyber attack hits bloodstock auction

Nigeria: Corporate Affairs Commission (CAC) suffers data breach amid surge in cyberattacks

Nigeria: Corporate Affairs Commission (CAC) suffers data breach, asks users to update login credentials

Northern Ireland: 16-year-old arrested as part of investigation into Education Authority cyber attack

Northern Ireland: Boy arrested following cyber attack on school IT system

Northern Ireland: Education Authority (EA) confirms personal data breach at schools after cyber attack as teen arrested in Police Service of Northern Ireland (PSNI) investigation

Northern Ireland: Everything you need to know as Education Authority release statement after cyber attack arrest

Northern Ireland: Teenage boy arrested after cyber attack on Education Authority system

Northern Ireland: Teenage boy arrested in Education Authority cyber attack investigation

Northern Ireland: Teenager arrested following cyber attack on school IT system

0APT threatens to expose Krybit ransomware operation’s data

Passwords are the Weakest Link in a Phishing-First World

Police Service of Northern Ireland (PSNI) arrest 16-year-old boy in Portadown over cyber attack on Northern Ireland schools' IT system

Pro-Iranian Threat Actor Claims Responsibility for Cyber Attack on Los Angeles County Metropolitan Transportation Authority

Ransomware Activity Remains Elevated as New Threat Groups Reshape the Landscape

Researchers Spot Surge in Brute-Force Attacks from Middle East

Salama Islamic Arab Insurance Company Data Breach Allegations

Security leaders overconfident about ransomware recovery

ShinyHunters Leak Rockstar Games Data, No Player Records Impacted

Signed Adware Operation Disables Antivirus Across 23,000 Hosts

Signed software abused to deploy antivirus-killing scripts

South Africa: Standard Bank Hit By Data Breach Investigation

South Africa: What you need to know about the Standard Bank data breach investigation

Stryker Cyberattack Has Impacted First Quarter Earnings

Sweden blames pro-Russian group for cyberattack last year on its energy infrastructure

Sweden blames Russian hackers for attempting ‘destructive’ cyberattack on thermal plant

Sweden says pro-Russian hackers attempted to breach thermal power plant

Teen arrested in Northern Ireland over cyberattack on school network

Teenager, 16, arrested over cyber attack on Northern Ireland schools IT system

The exploit gap is closing, and your patch cycle wasn’t built for this

True Microsoft 365 ransomware defense: 11 essential steps

Trusted adware app left 25,000+ systems open to a $10 supply-chain hijack

UK firms urged to bolster cyber security after breaches

UK warns businesses to address cyber risks amid Anthropic AI panic

Ukraine Warns of Surge in Cyberattacks on Hospitals, Local Governments by UAC-0247 Hackers

US: Average data breach cost hits $10.2 million

Vishing attacks on Okta identity systems on the rise

Voice Phishing Gang Impersonating Prosecutors, Financial Supervisory Service Arrested

Web3 Hacks Cost $482 Million in Q1 2026 as Hackers Lean on Phishing, Social Engineering

What are ransomware attacks and how do they work

What Booking.com's huge data breach means for holidaymakers - and how travel scams are getting harder to spot

What Mythos Actually Changes About Ransomware (And What It Doesn't)

Windows is getting stronger Remote Desktop Protocol (RDP) file protections to fight phishing attacks

WordPress ‘Essential Plugin’ Backdoor Disseminated to Over 20,000 Active WordPress Installations

WordPress plugin suite hacked to push malware to thousands of sites

WordPress plugins taken offline after a developer found 30 injected with malicious code

14th April

29 million leaked secrets in 2025: Why AI agents credentials are out of control

108 Malicious Chrome Extensions Steal Google and Telegram Data, Affecting 20,000 Users

Adobe fixes PDF zero-day security bug that hackers have exploited for months

Adobe Issues Emergency Patch for Critical PDF Flaw Exploited For Months

Agentic AI memory attacks spread across sessions and users, and most organizations aren’t ready

AI-Driven Pushpaganda Scam Exploits Google Discover to Spread Scareware and Ad Fraud

AMETEK Process Instruments Suffers Suspected Data Breach

As Booking.com suffers data breach, former FBI agent warns of travel sector vulnerability

Attacker sneaks 108 malicious Chrome extensions into official store, infecting thousands of users

Australian customers caught up in Booking.com data breach as personal information compromised

Axxcss Wireless Solutions Data Breach: Sensitive PII Exposed

Basic-Fit breach exposes bank details of 1 million members

Basic-Fit Confirms Major Data Breach Affecting Up to 1 Million Members Across Europe

Basic-Fit Data Breach Exposes 1 Million Member Records, Impacting at Least 200,000 Customers in the Netherlands

Basic-Fit data breach exposes details of a million gym members

Basic-Fit data breach exposes personal information of 1 million customers

Basic-Fit Data Breach Impacts 1 Million Members, Exposes Sensitive Personal and Banking Information

Basic-Fit gym group data breach exposes details of over 1 million members - here's what we know

Basic-Fit hack compromises data of up to 1 million members

BNY Mellon Data Breach Exposes SSNs and Financial Information

Booking.com confirms customer data accessed in cyber incident

Booking.com Confirms Data Breach - Hackers Accessed Customers’ Personal Information

Booking.com Confirms Data Breach as Hackers Access Customer Details

Booking.com confirms data breach exposing customer data

Booking.com confirms data breach in which customer data was stolen

Booking.com Confirms Data Breach, Hackers Access Customer Information

Booking.com Confirms Data Breach, Reservation PIN Codes Changed

Booking.com confirms massive data breach that could impact millions of travelers - how to stay safe

Booking.com confirms reservation data breach - tells customers hackers 'may have been able to access certain booking information'

Booking.com Data Breach: 4 Essential Steps to Secure Your Account and Travel Plans

Booking.com data breach: Customer reservation data exposed

Booking.com data breach affects customer details, financial data safe

Booking.com Data Breach Exposes Sensitive Customer Information

Booking.com Data Breach Exposes User Details, Triggers Phishing Alerts

Booking.com data breach exposes user reservation details

Booking.com Data Breach Shows Why Customer Experience (CX) Leaders Must Rethink Trust and Shared Risk

Booking.com Discloses Data Breach Exposing Customer Booking Details

Booking.com hack exposes reservation data as scammers target travelers

Booking.com suffers data breach, leaves guests’ personal details exposed

CIOs rank AI as a growing cyber risk

CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software

Crypto giant Kraken's fed payment account sparks concerns about risk

Crypto-exchange Kraken extorted by hackers after insider breach

Cyber Fraud Leads the Scene: 85% of Phishing Attacks Target the Middle East

Data breach at Booking.com: hackers steal sensitive customer information and trigger countermeasures

Denmark School District staff raise concerns over data breach response

Drivestream data breach impacted over 91,000 customers

Drummond Company Data Breach Exposes Personal Info Including SSNs

Europe’s Largest Gym Chain Says Data Breach Impacts 1 Million Members

Fake Ledger Live app on Apple’s App Store stole $9.5 Million in crypto

FBI: Ransomware Still a Top Threat to Critical Infrastructure

FBI Dismantles Global Phishing Operation That Targeted Over 17,000 Victims

FBI Takedown of W3LL Phishing Service Leads to Developer Arrest

FBI, Indonesian police take down global phishing scam in Atlanta

Full AMEX, Visa, Mastercard data allegedly exposed: act before your account is drained

Ginlong (Solis) Data Breach Exposes Solar Plant Operations

GitHub, Jira notification systems weaponized for phishing

Grand Theft Auto-Maker Rockstar Games Data Breach: Hackers Claim Theft Of Nearly 80 Million Records Through Anodot And Snowflake Vulnerability

Hackers Bypass Phishing Emails and Target Okta Identity Systems Instead

Hackers Exploit Kali Forms Vulnerability to Take Over WordPress Sites

Hackers leak and sell Hallmark stolen data weeks after ransom ultimatum

Hackers Still Target iPhone, Android Users in New Hack-for-Hire Phishing Campaign

Hackers stole $450K from American rock singer after malicious app slipped through Apple’s rigorous security checks

Hackers threaten to leak over 9 Million Amtrak records, including personal info

Hackers threaten to release Grand Theft Auto VI data following Rockstar Games cybersecurity breach

Has Black Basta returned? Former affiliates assemble for new campaign targeting business execs

How the rewards app Freecash scammed its way to the top of the app stores

India emerges as APAC ransomware hotspot as manufacturing cyberattacks surge

Insight Hospital patients advised to take precautions after last summer's data breach

Iowa Department of Health and Human Services data breach affects nearly 7,000 people, officials say

iPhone users warned: ‘Your photos will be deleted’ in new iCloud phishing scam

Iran-linked hacker group claims cyberattack on Saudi, Bahraini steel firms

Kloeckner Metals Corporation Data Breach Affects Individuals Whose Social Security Numbers Were Copied

Kraken crypto exchange resists extortion attempts

Kraken Exchange Faces Extortion After Insider Recorded System Footage

Kraken Says No Funds at Risk Despite Insider Data Breach Attempt and Blackmail Threats

Lamashtu Breaches Grupo Ronda, FILAIR, CNAOC & Others

Lone Peak Psychiatry Data Breach Exposes Medical Records

Major Scam Network Triad Nexus Adapts Operations to Avoid U.S. Scrutiny

Malicious Chrome Extensions Campaign Exposes User Data

Massive Cyberattack Hits Europe’s Largest Fitness Chain, Member Data Exposed

Massive Data Breach Hits Rockstar Games: ShinyHunters Strike Again

Massive Student Data Breach Confirmed: Names, Schools, Grades Stolen

McGraw-Hill confirms data breach following extortion threat

Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days

Mirax Android RAT Turns Devices into SOCKS5 Proxies, Reaching 220,000 via Meta Ads

More than 6,000 Iowa Medicaid members affected by a data breach

Nearly Half of UK Businesses Experiencing Cyber Security Breaches: Experts Reveal How to Avoid Becoming a Victim

New ‘JanaWare’ ransomware targeting Turkish citizens as cybercriminal ecosystem fragments

New JanaWare ransomware targets Turkey via Adwind RAT

New PHP Composer Flaws Enable Arbitrary Command Execution - Patches Released

New Zealand: Cyber attack halts New Zealand Bloodstock (NZB) National Online Yearling Sale

New Zealand: New Zealand Bloodstock (NZB) yearling sale hit by cyber attack

Nightclub Giant RCI Hospitality Reports Data Breach

No honor among thieves as 0APT threatens rival ransomware gang Krybit

Obfuscated Loader Chain Delivers VIPERTUNNEL Backdoor via Fake DLL

OneDigital Latest to Warn Clients of Salesforce Data Breach

Over 100 Chrome Web Store extensions steal user accounts, data

Personal data of 1 million gym members compromised in Basic-Fit security incident

Phishing Email on iCloud data storage exhaustion is a scam and fake

Phishing Scams: Maroc Telecom Warns Of Fake 0661 Number Offers

Pritchard Brown Data Breach: PHI and PII Exposed

Ransomware Hits Indian Manufacturers Hard As Cyber Threats Intensify

Ransomware-Linked ViperTunnel Malware Hits UK and US Businesses

Pro-Iranian Actor Claims Los Angeles Metro Cyberattack

Risk of fraud and disruption after data breach on Mexico port platform

Rockstar Data Breach: Hackers Confirm Leak Plans

Rockstar Games confirms breach after ShinyHunters leaks stolen analytics data

Rockstar Games Data Breach Reportedly Leaked Analytics via Prior Anodot Security Incident

Rockstar Games Data Breach: 78 Million Records Compromised

Rockstar Games data leaked: What's inside the Grand Theft Auto (GTA) makers' data dump?

Rockstar Games Targeted by ShinyHunters in Massive Cloud Data Breach

Rockstar’s Grand Theft Auto (GTA) Data Breach Exposes 78.6 Million Records Online

Scottish pet retailer falls into liquidation after cyber attack leaves firm with 'no future'

ShinyHunters claim the hack of Rockstar Games breach and started leaking data

ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers

ShowDoc vulnerability actively exploited

Someone planted backdoors in dozens of WordPress plug-ins used in thousands of websites

South Africa: Information Regulator raises alarm as data breaches hit 788 in Q1

Spring Lake Park Schools closed Monday, Tuesday due to suspected ransomware incident

Springfield Hospital Data Breach Exposes SSNs and Medical Information

Teen hacker sentenced to federal prison after major PowerSchool data breach exposes student records

The FBI Just Busted a Global Phishing Empire Targeting Microsoft 365 Accounts - Here’s How They Beat Multi-Factor Authentication (MFA)

The security risks of smarter, more connected devices

The State of Ransomware in Q1 2026

'This wasn’t just phishing - it was a full-service cybercrime platform': FBI reveals takedown of notorious W3LL phishing operation targeting thousands of victims

Thornton Township confirms data breach that included some residents’ personal information

Triad Nexus Expands Global Fraud Operations Despite US Sanctions

Venice Hydraulic Pump System Hacked, Hackers Claim Power to Create Floods

Virginia enacts ban on precise geolocation data sales as momentum for similar prohibitions builds

Warning issued after Booking.com data breach

Web3 Lost $464.5 Million to Hacks in Q1 2026

W3LL Phishing Kit Takedown Hits Global Credential Theft and MFA Bypass Operation

W3LL phishing service sold for $500 dismantled by the FBI

Wide Open Botnet Attackers Leave Credential Stuffing Network Vulnerable via Full Admin Leaks

wolfSSL Vulnerability Hits IoT, Routers and Military Systems, Update to 5.9.1 Now

13th April

$12 million frozen, 20,000 victims identified in crypto scam crackdown

73% of CISOs Unprepared for the Next Big Cyber Attack, Incident Response Readiness Report Reveals

Adobe issues emergency fix for Acrobat Reader flaw exploited in the wild (CVE-2026-34621)

Adobe Patches Acrobat Reader Zero-Day Vulnerability Exploited in the Wild

Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621

Adobe rolls out emergency fix for Acrobat, Reader zero-day flaw

Ahead Of Grand Theft Auto 6 (GTA 6), Rockstar Hacked By Ransomware Group Again

AI agents targeted via routers to inject payloads and steal your secrets

AI industry recruiting platform faces multiple lawsuits over data breach

AI staffing firm Mercor faces lawsuits over data breach

AI Tools Allegedly Used In Cyberattacks Targeting Government Agencies

Alleged German DDoS-for-Hire Kingpin Behind Fluxstress Caught in Thailand

Australian customers caught up in Booking.com data breach as personal information compromised

Authorities Dismantle ‘W3LL’ Phishing Empire Powering Global Business Email Attacks

Bangladesh Hydrological Information Management System Data Breach

Basic-Fit confirms data breach affecting one million gym members

Basic-Fit data breach exposes details of a million gym members

Basic-Fit data breach exposes details of gym members in Netherlands, elsewhere

Basic-Fit Data Breach Exposes Millions of Users Across Multiple Countries

Basic-Fit Says Data Breach Exposes Details of 200,000 Members in Netherlands

Basic-Fit Suffers Data Breach Affecting Millions Across Multiple Nations

BITTER APT Uses Signal, Google, and Zoom Lures to Spread ProSpy Spyware

Booking.com Alerts Customers After Data Breach Exposes Personal Details

Booking.com Alerts Customers to Data Breach, Names, Emails Accessed

Booking.com alerts Irish customers to possible 'data breach' on recent bookings

Booking.com confirms data breach, remains tight-lipped about details

Booking.com confirms hackers accessed customers’ data

Booking.com Customer Data Hacked, Exposed

Booking.com customers warned after suspicious data breach

Booking.com Customers Warned of Data Breach and Scam Calls

Booking.com customers warned of potential data breach amid rising scam concerns

Booking.com Data Breach: 5 things customers need to know after suspicious activity alert

Booking.com data breach: South African travellers warned of ‘suspicious activity’

Booking.com data breach: Travel company warns customers of ‘suspicious activity’ affecting reservations

Booking.com data breach affects South African users

Booking.com Data Breach Exposes a Familiar Travel Risk Hidden in Plain Sight

Booking.com data breach sparks alarm as South African travellers warned of suspicious activity

Booking.com Hack Exposes Customer Data, Sparks Travel Scam Fears

Booking.com Says Hackers Accessed User Information

Booking.com Suffers Data Breach, Warns Customers of Exposed Information

Booking.com warns customers about 'unauthorised third parties' accessing private information in major data breach

Booking.com warns customers after reservation data breach

Booking.com Warns Customers of Data Breach by Unauthorized Third Party

Booking.com warns customers of hack that exposed their data

Booking.com warns customers their private travel details may have been accessed by 'unauthorised party'

Booking.com warns of possible customer data breach

Booking.com warns of possible data breach

Booking.com Warns Some Customers of Potential Data Breach That May Have Compromised Personal Data

Canis C2 Surveillance Framework Exposed API Discovered Targeting Japan

Capita reveals data breach affecting 138 members of troubled Whitehall pension scheme

CISOs not ready for the Cyber Attack on their Businesses

Coinbasecartel Breaches Carters, Ralph Lauren, Helzberg

Critical flaw in wolfSSL library enables forged certificate use

Critical vulnerability affects wolfSSL, an encryption library protecting 5 billion devices and apps

Critical WordPress Plugin Bug Allows Authentication Bypass, Admin Takeover

Cyber Attack Impacts Department of Motor Vehicles (DMV), Vital Stats in Winona County, Minnesota

Data breach hits Basic-Fit gym members in Netherlands

Double-Check Your Travel Reservations. Booking.com Hit by Data Breach

DragonForce Hits RUDOLF Medical, Lift AG, Travel of America, EDTG, SGI, and Affordable Oil

Endpoint Detection and Response (EDR) Killers Broaden Ransomware Tactics

European Gym giant Basic-Fit data breach affects 1 million members

Fast-Moving Ransomware, Router-Based Espionage Threats Target Education and Small-Office Organizations

FBI And Indonesian Authorities Dismantle Global Phishing Network Linked To $20 Million Fraud

FBI announces takedown of phishing operation that targeted thousands of victims

FBI and Indonesian Police Dismantle W3LL Phishing Network Behind $20M Fraud Attempts

FBI Dismantles $20m Phishing Operation W3LL

FBI takedown of W3LL phishing service leads to developer arrest

FBI takes down website that stole millions from internet users across the world

FBI, Indonesia take down W3LL phishing tool

Fixing vulnerability data quality requires fixing the architecture first

Foodpapa.pk Data Breach Exposes 239K User and Driver Records

FreeCast Inc. Data Breach Exposes Confidential Documents

Global Crisis: Your Private Travel Dreams Compromised in Massive Booking.com Data Breach

Global crypto scam crackdown freezes $12 Million and exposes 20,000 victims

GrafanaGhost: The AI That Leaked Everything Without Being Hacked

Grand Theft Auto 6 (GTA 6) Data Breach Update: ShinyHunters Blackmailing Rockstar Games Over GTA 6 Data Leak. Hacker Group Claims Data Theft And Sets April 14th Deadline

Grand Theft Auto 6 (GTA 6) Developer Rockstar Games Confirms Data Breach, Hackers Threaten With Leak

Grand Theft Auto 6 (GTA 6) hackers give Rockstar a deadline to pay for stolen data

Grand Theft Auto 6 (GTA 6) Maker Hit By Data Breach, Hackers Demand Ransom

Grand Theft Auto 6 (GTA 6) Ransom Negotiations Fail: Hacker Threatens Leak, Rockstar Downplays Impact

Grand Theft Auto 6 (GTA 6) Studio Rockstar Confirms 3rd Party Data Breach, Claims It Won’t Affect The Company And Players

Grand Theft Auto (GTA) maker Rockstar Games hacked again but downplays impact

Grand Theft Auto Online and Red Dead Online affected by data breach, ‘limited’ info stolen

Hack at Anodot leaves over a dozen breached companies facing extortion

Hack at Dutch gym chain Basic-Fit exposes customer data in several EU countries

Hacker alleges InfoDesk breach affecting pharma, financial firms

Hacker exploits AI tools to breach 9 Mexican government agencies

Hacker group confirms it will release stolen Rockstar Games data

Hacker group threatens to release Grand Theft Auto VI data in Rockstar Games attack

Hackers access Booking.com user data, company secures systems

Hackers claim breach of Rockstar Games via cloud analytics platform

Hackers hijacked CPUID downloads, served STX RAT to victims

Hallmark data breach exposed information of 1.7 million accounts

Hallmark Data Breach Exposes 1.7 Million Customers via Salesforce Compromise, Including Hallmark+ Records

Handala Claims Cyber Attack Paralysis of Steel Giants Foulath and SULB

How a Hacker Used Claude and ChatGPT to Breach Multiple Government Agencies

How to defend infrastructure from physical and cyber attack

IFprofs Data Breach Exposes User Information and Records

Intoxalock Vehicle Breathalyzers Downed by Cyberattack, Leave Drivers Stranded

Iran-Backed CyberAv3ngers Sets Sights On Water and Industrial Control Systems

JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025

K Subsea Group Suffers Massive Data Breach by Everest Ransomware

Legend Senior Living Data Breach Exposes Personal and Financial Data

Luxembourg Basic-Fit customers among data breach victims

Mailbox Rule Abuse Emerges as Stealthy Post-Compromise Threat

Main Suspect in €6 Million Swedish Bank Scam with At Least 25 Victims Extradited from the US to Sweden

Majority of CISOs not ready for the next big cyber attack

Marimo RCE Vulnerability Exploited Within 10 Hours of Public Disclosure

Mirax Android Trojan Turns Devices Into Residential Proxy Nodes

MITRE releases a shared fraud-cyber framework built from real attack data

Nearly half of March ransomware attacks tied to just 3 groups

Netsync Network Solutions Suffers Source Code Data Breach

New Booking.com data breach forces reservation PIN resets

New Storm-2755 Campaign Redirects Salaries via Session Hijacking

Nigeria: Federal Government investigating Sterling Bank, Remita, Temu, loan sharks over data breach

North Korea's APT37 Uses Facebook Social Engineering to Deliver RokRAT Malware

Number of phishing cases drops in Hong Kong but victims lose more money

NYK alerts on data breach in bunker fuel procurement system

OpenAI Responds to Axios npm Supply Chain Attack, Rotates macOS Certificates

OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident

OpenAI rotates macOS certs after Axios attack hit code-signing workflow

OpenSSF Flags Malware Campaign on Slack Posing as Linux Foundation Figures

Operation Atlantic Seizes $12m in Crypto Losses

OrthoNY to pay $1.45 million to settle class action lawsuit over breach of 656k patients' data

Pakistani Food Delivery App FoodPapa Hit With Major Data Breach

Ransomware Attack on Dutch Software Vendor Disrupts Hospital Systems

Ransomware groups standardize double extortion and AI-assisted targeting

Ransomware Is Moving Faster Than SMBs Can Respond

Ransomware Lives On, Blending Hacktivism and Crime, Fueled by AI

RCI Hospitality Holdings Data Breach Exposes Sensitive Info Including SSNs

Reddit summoned to secret grand jury, ordered to unmask anonymous user critical of Immigration and Customs Enforcement (ICE)

Rockstar: Developer confirms data theft after internal attack

Rockstar addresses claims of Grand Theft Auto 6 (GTA 6) data breach

Rockstar confirms data breach as hackers threaten game developer to “pay or leak”

Rockstar confirms data breach, but also says it won't have an impact

Rockstar confirms major third-party data breach: GTA VI maker says 'no impact on our organization or our players'

Rockstar confirms recent data breach but notes there will be no impact on "our organisation or our players"

Rockstar Cyberattack Confirmed; ShinyHunters Claims Breach, Issues Extortion Threat

Rockstar Games affected by data breach, "limited amount of non-material information" accessed

Rockstar Games confirm data breach, but says “no impact on players” after ransom threat

Rockstar Games Confirms Data Breach Ahead of Grand Theft Auto 6 (GTA 6) Launch

Rockstar Games Confirms Data Breach Linked to Third-Party Platform

Rockstar Games confirms data breach, but says players are unaffected

Rockstar Games confirms data breach, read hacker’s 'open threat' message to Grand Theft Auto (GTA) maker

Rockstar Games Data Breach Hits Ahead of Grand Theft Auto VI (GTA VI) Launch Buzz

Rockstar Games has experienced a data breach, leading to the exposure of a "limited amount of non-material information"

Rockstar Games hit by data breach ahead of Grand Theft Auto 6 (GTA 6) launch, hackers demand ransom

Rockstar Games receives “pay or leak” warning after cyberattack

Rockstar Games Suffers Hack in Third-party Cloud Breach

Rocky Mountain Associated Physicians: Data Breach Affects 50,640

Scammers are posing as Booking.com after global data breach

Securing AI becomes top priority as CIOs rank AI alongside malware, ransomware and phishing as major cyber risk

ShinyHunters breached 'GTA 6' developer Rockstar Games in ransomware attack

ShinyHunters claims Rockstar Games data breach

South Africa: Information Regulator to probe Standard Bank over data breach

Spring Independent School District Employees on Leave After Data Breach Exposes Sensitive Info

Spring Lake Park schools closed after ransomware attack

Spring Lake Park Schools Closed After Suspected Ransomware Attack

Spring Lake Park Schools Shut Down After Suspected Ransomware Attack

Spring Lake Park Schools Shut Down by Ransomware Attack

Standard Bank breach: Some clients’ credit card details leaked

Stolen Rockstar Games analytics data leaked by extortion gang

The Feds Took Down a 'Full-Service Cybercrime Platform' Behind $20 Million in Phishing

Thousands Of Rockwell Automation Programmable Logic Controllers (PLCs) Exposed Online As Iranian APT Threats Intensify

Threat Actors Exploit GitHub and Jira Messages For Phishing Delivery

Three Ransomware Gangs Behind 40% of March Attacks

Too popular? Fake Claude website distributes malware to visitors

US, Indonesia shut down ‘sophisticated’ phishing kit

What Is a Black Hat Hacker?

Why Your Deprecated Endpoints Are an Attacker’s Best Friend: The Rise of Ghost APIs

Zimbabwe Boosts Cybersecurity as AI-Driven Cyber Fraud Surges

Zombie Microsoft bugs rise from the dead, pave way for criminals and ransomware scum

Posted by at
Labels:
Subscribe to: Comments (Atom)