Welcome to DBD. On March 8th 2026, DBD celebrated it's sixth anniversary and 
Dentons Senior Analyst, Washington D.C.
Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 18th May and 24th May 2026.19th May
7-Eleven confirms April cyberattack after ShinyHunters leak claims
7-Eleven confirms data breach claimed by the ShinyHunters gang
7-Eleven Confirms Hack After Appearing on ShinyHunters Leak List
A 6-step guide for responding to the Foxconn ransomware/supply chain incident
AdvancedHEALTH Ransomware Claim Includes 2.3 Million Patient Data Lines
Agentic AI Accelerates Software Builds and Mobile App Attacks
AI Raises the Bar on Vulnerability Awareness and Secure-by-Design Software
Are Suspected Iranian Intrusions Into Gas Station Automated Tank Gauges (ATGs) a Precursor to Larger Attacks?
Attackers Abuse Kuse.ai to Host Phishing Pages
Attackers turn ancient Windows utility MSHTA into Swiss Army knife of hacking
Australian College of Business Intelligence investigating Qilin ransomware claims
Austria: Police recorded 500 cyber attack attempts on Eurovision
Austria Blocks Eurovision Cyberattack During Contest Week
CISA Admin Exposes AWS GovCloud Credentials on GitHub
CISA Contractor Exposed AWS GovCloud Keys in Public GitHub Repository
CJ Group Employee Data Breach Highlights Corporate Security Vulnerabilities
Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer
Critical NGINX Vulnerability CVE-2026-42945 Now Under Active Attack
Critical PostgreSQL Flaws Enable Code Execution and SQL Injection
Crook leaks 468k+ records, claims they pwned Portugal’s postal carrier
Cyber insurers are becoming the industry’s ‘swat team’ as ransomware threats escalate
Deutsche Telekom data breach fears grow after customer data hits cybercrime forum
DirtyDecrypt Proof-of-Concept (PoC) Released for Linux Kernel CVE-2026-31635 LPE Vulnerability
Dutch minister questions whether hackers deleted stolen patient data as ChipSoft claims
Echo Protocol Exploit Sees Hacker Mint Unauthorised eBTC Worth $76.7 Million
Echo Protocol Loses $77 Million as Admin Key Breach Hands Hacker Control of eBTC
Endue Software Agrees to $870,000 Data Breach Settlement
Fake Google Software Update Used by macOS Malware For Persistence
French Vacation Giant Belambra Hit by Data Leak Claim Exposing 402,000 Customers, Many of Them Kids
Gentlemen Ransomware Targets Windows, Linux, NAS, BSD, and ESXi Systems
Global Banks Scramble After AI Tool Exposes Cyber Weaknesses
Grafana Labs Confirms Hackers Stole Source Code
Hackers Actively Exploit ‘Nginx Rift’ Vulnerability Affecting NGINX, F5 Products
Hackers Bypass Security Tools to Target Users Directly
Hackers have compromised dozens of popular open source packages in an ongoing supply chain attack
Hundreds arrested in first large cybercrime operation in Middle East and North Africa (MENA) region
INTERPOL Busts Massive Cybercrime Network Across Middle East and North Africa (MENA), 201 Arrested
INTERPOL’s Operation Ramz: Disruption of Transnational Cybercrime Networks, Over 200 Individuals Arrested
Interpol's 'Operation Ramz' has arrested over 200 people for phishing scams, malware threats, and security breaches
Ireland: Revenue staff are warned about passwords after 137 employees caught up in data breach
Jaguar Land Rover (JLR) Profit Drops 99 Percent After Cyber-Attack
Jaguar Land Rover’s £1.9 billion Cyber Attack: Is The Sector Still Underestimating the Risk?
Kimsuky APT Targets Crypto Users and Defense Officials With LNK Lures
Medi-Rents Data Breach Exposes Health Information
Microsoft Busts "Fox Tempest" - A Dark Web Service That Sold Fake Code Signatures to Ransomware Gangs
Microsoft Details Storm-2949 Cloud Attack on Azure and Microsoft 365
Microsoft disrupts cybercrime service that abused software verification systems en masse
Microsoft disrupts Fox Tempest malware-signing-as-a-service platform tied to ransomware gangs
Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’
Microsoft disrupts service selling fake certificates to ransomware gangs
Microsoft promises to keep saved passwords out of Edge browser until needed
Microsoft reveals record surge in QR code phishing, highlights evolving threats to Irish organisations
Microsoft Takes Down Fox Tempest for Providing Ransomware-Enabling Signing Tool
Millions of users caught in “anonymous” video chat leak
Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account
New Gentlemen Ransomware Attacks Multiple Platforms Including ESXi and NAS
New macOS infostealer impersonates Apple, Microsoft, and Google in a single attack chain
New Shai-Hulud malware wave compromises 600 npm packages
North Korea-Linked Hackers Deploy AI Deepfake Spear-Phishing Campaign Targeting Korean Officials
Northern Ireland: £40 million of public money now paid out in PSNI data breach - but hundreds of claims still to come
Northern Ireland: Almost £40 million paid out in PSNI data breach compensation
Northern Ireland: More than £40 million paid to officers and staff over PSNI data breach
Northern Ireland: PSNI data breach compensation of almost £40 million paid to officers and staff in past few days
NYC Health + Hospitals Data Breach Exposes Sensitive Biometrics of 1.8 Million Individuals
NYC Health + Hospitals says mega data breach allowed hackers to steal personal data, medical records, and fingerprints scans of around 1.8 million people
Operation Ramz Dismantles 53 Servers Used in Scam and Malware Campaigns
Operation Ramz Seizes 53 Servers Linked to Cyber Scams and Malware Threats
Police Service of Northern Ireland (PSNI) data breach: Almost £40 million paid to officers in recent days
Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials
Public Instagram posts provide raw material for AI phishing campaigns
PureLogs infostealer is stealing credentials worldwide
Ransomware Attacks makes Latin America top in the list
SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access
SHub Infostealer Variant Reaper Compromises macOS Systems, Steals iCloud Data
Small Businesses Struggle With Cybersecurity Costs: How SSL, Automation, and Email Trust Can Reduce Risk
Supply chain hit once again: single NPM account pushes 600+ compromised packages, used by millions
Surge in QR code phishing highlights evolving threats to Irish organisations
Tampa Bay Dental Data Breach Impacts 6,400: Social Security Numbers Exposed
The Glasswing Warning: What Companies Outside the Inner Circle Must Do Now
To pay, or not to pay...That is the existential ransomware question
Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps
Two-Thirds of Nonhuman Accounts Are Unseen and Unmanaged
UAC-0184 Hackers Abuse bitsadmin and HTA Files In Malware Campaign
US cyber agency CISA exposed reams of passwords and cloud keys to the open web
Vacation Myrtle Beach Data Breach Hits 10,750 - 11 Months After Hack
Voice Phishing Managers Arrested After 'High-Income Job' Offer
WantToCry ransomware remotely encrypts files
18th May
5 ways to fortify your network against the new speed of AI attacks
7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand
7-Eleven Data Breach Exposes Personal Information of Individuals
201 arrests in first-of-its-kind cybercrime operation in Middle East and North Africa (MENA) region
201 arrested in INTERPOL disruption of phishing and fraud networks
123,000 Impacted by American Lending Center’s Year-Old Breach
AI is drowning software maintainers in junk security reports
AI shrinks vulnerability exploitation window to hours
AI-powered email attacks surge worldwide, billions of emails analyzed
Aintree hospital staff illegally accessed Southport knife attack victims' care details
Amazon recall text scam comes with red flags
Anthropic to brief on Mythos AI after warning it could "crack the whole cyber-risk world open"
Attackers accessed, downloaded code from Grafana Labs’ GitHub
Attackers are exploiting critical NGINX vulnerability (CVE-2026-42945)
Bank of England, Financial Conduct Authority (FCA) and Treasury Raise Alarm Over Frontier AI
Chanhassen Dinner Theatres Cancels Performances Following Cyber Attack
Cloud attacks are getting faster and deadlier - 4 ways to secure your business
Consumers face increasing online scams, as AI fuels sophisticated attacks
Critical n8n Flaw Expose Automation Nodes to Full RCE
Critical FunnelKit Bug Leaves WooCommerce Stores Open To Attacks
Crypto Users Warn of Official-Looking Phishing Emails: Exchange and DeFi Users Targeted
Cyber Insurers Now Want Evidence That Companies are Fixing Security Risks
Cybersecurity Breaches Survey: Why Phishing Now Beats Ransomware – And What To Do
Data breach exposes medical, financial, biometric data of 1.8 million
Developer Workstations Are Now Part of the Software Supply Chain
Device Code Phishing Targets Microsoft 365 Users
Experts warn of privacy risks as AI firms looks to connect to financial accounts
Exploit available for new DirtyDecrypt Linux root escalation flaw
Fidelity Investments is settling a 2024 data breach class action for $2.5 million
FIFA World Cup scams target fans and businesses
First Shai-Hulud Worm Clones Emerge in NPM Supply Chain
Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware
Foxconn Suffers Ransomware Attack With Important Project Files From Apple Stolen
Gamaredon Deploys GammaDrop and GammaLoad In Phishing Campaigns
Game over for 74 suspected scammers after Dutch cops plastered their faces on billboards
Gîtes de France among three booking websites to be hit by cyberattack
Glendora Surgery Center Data Breach Exposes Medical Information of Patients
Global Supply Chains at Risk of Cyber Breaches and Phishing
Government Backed Hackers Abuse Cloudflare in Malaysian Espionage Campaign
Grafana Confirms Breach After Hackers Claim They Stole Data
Grafana Labs Announces GitHub Breach Following Coinbase Cartel Claims
Grafana Labs Breach Exposes GitHub Repositories and Codebase
Grafana Labs says hacker gained access to codebase through leaked token
Grafana pushes back on blackmail after breach: Will monitoring dashboards now be used against defenders?
Grafana refuses to pay ransom after codebase theft
Grafana Rejects Ransom Demand After GitHub Breach Exposes Codebase Theft
Grafana says stolen GitHub token let hackers steal codebase
Gremlin Stealer Abuses .NET Resource Files To Conceal Malware Payloads
Hacker Steals Over $11 Million From Verus-Ethereum Bridge
Hackers earn $1,298,250 for 47 zero-days at Pwn2Own Berlin 2026
Hackers exploit calendar invites to hijack accounts using CalPhishing
Hackers Exploit Critical NGINX RCE Vulnerability in the Wild
HDFC Asset Management Company discloses cybersecurity incident after anonymous threat claim
HDFC Asset Management Company IT infrastructure Under Cyber Attack: Investigation Underway
Inside the Foxconn Cyber Attack: Ransomware & Stolen Data
Interpol Launches Sweeping Cybercrime Crackdown in Middle East and North Africa (MENA) Region
INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests
INTERPOL ‘Operation Ramz’ seizes 53 malware, phishing servers
Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws
JDownloader Website Hacked To Deliver Weaponized Linux and Windows Installers
Kenya: Safaricom Ordered to Pay KES 9.9 Million Over Customer Data Breach in Landmark Privacy Ruling
Latin America Leads Globally in Ransomware Attacks
Leaked Shai-Hulud malware fuels new npm infostealer campaign
Ledger and Trezor Mail Phishing Hits Your Mailbox - What to Do
Lumexa Imaging Data Breach Exposes Patient Personal and Health Info
Lumio Dental Data Breach Exposes Sensitive Personal and Health Information
Marimo Security Flaw Enables remote code execution Attacks
Middle East and North Africa (MENA) Region Runs First-of-its-Kind Cybercrime Operation, 201 Arrested
Millions Impacted Across Several US Healthcare Data Breaches
MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems
More than 200 arrested in cyber raids aimed at Middle East scam networks
More than $9,000 misappropriated from Visit Baton Rouge; audit attributes to theft, phishing
National Cyber Security Centre (NCSC) Calls for Tight Security and Human Oversight as Agentic AI Use Expands
National Cyber Security Centre (NCSC) Publishes Guidance on Securing Agentic AI Use
New Phishing Scam Uses Google Email System to Target Crypto Users
New Reaper Malware Uses Fake Microsoft Domain to Steal macOS Passwords
Nitrogen Ransomware on a Manufacturer Attack Spree
NYC Health + Hospitals Data Breach Affects 1.8 Million People
NYC Health + Hospitals says hackers stole medical data and fingerprints during breach affecting at least 1.8 million people
OpenAI responds to TanStack supply chain cyber attack
Open source tool maker Grafana Labs says hackers stole its code, refuses to pay ransom
Pakistan: ‘Dil Ka Rishta’ App Hit by Serious API Data Breach
Paper Werewolf APT Disguises EchoGather RAT As Adobe Reader Installer
PawsRunner Loader Uses Steganography To Deploy PureLogs Infostealer
Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations
Pro-Iran Hacker Group Claims DDoS Attack on Spotify
Public Amazon bucket leaks sensitive guest data from Japanese hotel platform Tabiq
Q1 2026 Android Threat Landscape: Banking Trojans, Triada.ag Backdoor Surge
Qilin ransomware group claims responsibility for Generation Life hack
Race to tear down open source: copycats reusing TeamPCP’s code in NPM attacks
Ransomware attack on Extant Aerospace exposed sensitive personal data
Ransomware Attacks on West Pharmaceutical and Foxconn Highlight Growing Cyber Risks to Manufacturing Sector
Ransomware group ‘The Gentlemen’ suffers internal breach, exposing operations
Reframing MFA Bypass: Four Identity Gaps Attackers Exploit
Revenue staff warned not to use work passwords for personal reasons after data breach
Security Researchers Find 47 Zero-Days at Pwn2Own Berlin
Shadow AI Is Growing in Silence While Enterprise Security Falls Behind
ShinyHunters hack 7-Eleven: franchisee data and Salesforce records exposed
SHub macOS infostealer variant spoofs Apple security updates
The AI backdoor your security stack is not built to see
The Gentlemen Ransomware Gang Hit by Internal Breach, Operations Exposed
The impossible choice Canvas faced shows why ransomware payment bans won't work
The Netherlands: Privacy regulators outline 3 urgent steps companies must take as data breaches hit 44K
Tycoon2FA phishing kit evolves with device-code attacks on Microsoft 365
Tycoon 2FA Returns With OAuth-Based Phishing to Bypass Microsoft 365 Security
Vacation Myrtle Beach Data Breach Exposes PHI and PII of 10k
Verber Dental Group Data Breach May Have Exposed Patient Information
Vindictive researcher gains complete Windows control using 6-year-old Google bug report
Was Adobe Suite breached? This is what we know
What the Foxconn Cyber Attack Reveals About Tech Supply Risk
When ransomware hits, confidence doesn’t restore endpoints
Your Peace Sign Selfie Is a Hacker’s New Favorite Photo
Zara confirms 200,000 customers’ data exposed in alleged ransomware attack
Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 4th May and 10th May 2026, kindly assisted by our partners.
