Editor's Message

Welcome to DBD. Cybercrime made global headlines in 2025. Attacks on well-known brands and organisations raised public awareness of the severity, frequency and impact of cyber attacks. Ransomware attacks were the highest ever recorded, and 2026 could be worse, as cyber criminals continue to extort their victims, with little chance of being brought to justice. It's a dangerous world out there, so please be extra vigilant and mindful of the risks and threats. Wishing you all the best for the New Year. Thanks again for all your support. Stay safe. :)

“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington D.C.

Tuesday, 10 February 2026

Ransomware Operator Claims - Week 6 2026

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 2nd February and 8th February 2026, kindly assisted by our partners.

DBD discovered and researched 182 Ransomware Victims over 38 Countries and Islands claimed by 34 Data-Leaking Ransomware Operators, including 2 Newly Discovered Ransomware Operators last week.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.

Posted by at
Labels:

Monday, 9 February 2026

Data Breaches Digest - Week 7 2026

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 9th February and 15th February 2026.


13th February

8,000+ ChatGPT API Keys Left Publicly Accessible

Adversaries Exploiting Proprietary AI Capabilities, API Traffic to Scale Cyberattacks

AI-Driven Phishing and QR Code Quishing Surge in 2025 Spam and Phishing Report

AI-driven ransomware attacks surge, most go unreported

Attackers are moving at machine speed, defenders are still in meetings

Canandaigua Emergency Squad Warns About Email Phishing Attempt

Check Point Warns of 44% Surge in Valentine’s Day Phishing Ahead of 14th February

Chez Switch Data Breach Exposes 19,000 Customer Records

CISA flags critical Microsoft SCCM flaw as exploited in attacks

CISA orders federal agencies to patch exploited SolarWinds, Apple, Microsoft bugs within weeks

CISA Warns of Actively Exploited SQL Injection Flaw in Microsoft Configuration Manager

Coupang denies allegations that hacker tried to blackmail company with list of adult product customers

Coupang Denies Blackmail Claims Over Data Breach

Cyber risk is becoming a hold-period problem for private equity firms

Data Theft Surges to 96% of Ransomware Attacks

Dragonforce Ransomware Breaches Yelete Group and Empire Express

Dutch Carrier Odido Discloses Data Breach Impacting 6 Million

Dutch Telecom Operator Odido Suffers Major Data Breach Affecting Over 6 Million Accounts

Emergency Medical Services Authority & Compassion Health Care Settle Data Breach Litigation

Europe may roll back some of its strict privacy rules

Fake AI Assistants in Google Chrome Web Store Steal Passwords and Spy on Emails

Gmail Users Beware: Scary ‘Subpoena’ Email Scam Strikes Hard

Guernsey: Data Protection Authority sanctions First Contact Health following phishing breach

Gustave Data Breach: Fleet Management Database for Sale

Hacker Linked to Epstein Removed from Black Hat Conference: Vincenzo Iozzo Scrubbed from the Website

Hackers haven’t replaced humans with AI yet, but they’re certainly trying

Hackers probe, exploit newly patched BeyondTrust RCE flaw (CVE-2026-1731)

Hefty sanctions against Louis Vuitton, Christian Dior and Tiffany: luxury brands fined billions for massive data leaks

IcedID malware creator fakes own death to escape FBI, still gets busted

Increased email spam & phishing threats in APAC region detected

Industrial Ransomware Threats Are Escalating

Major telco breach sees 6.2 million users have personal info leaked - here's what we know so far

Malicious Chrome Extensions: AiFrame Exploits AI Popularity, Another Steals Meta Business Suite Data

Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History

Millions of smart homes at risk as Shelly flaw lets hackers open doors and garages

Munich Security Conference: Cyber Threats Lead G7 Risk Index, Disinformation Ranks Third

Municipalidad Distrital de Mejía Data Breach Exposes Citizen Form Data

New XWorm RAT Campaign Leverages Phishing and CVE-2018-0802 Excel Exploit to Bypass Detection

New XWorm RAT Campaign Uses Themed Phishing Lures and CVE‑2018‑0802 Excel Exploit to Evade Detection

Nigeria: 23 victims freed from scam slavery - death and organ harvesting for missed quotas

Odido cyberattack exposes personal data of 6.2 million customers in the Netherlands

OysterLoader Evasion Tactics Exposed: Advanced Obfuscation and Rhysida Ransomware Ties Uncovered

OysterLoader Multi‑Stage Evasion Loader Uncovered with Advanced Obfuscation and Rhysida Ransomware Links

Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google Meet

Police arrest distributor of JokerOTP password-stealing bot

Progress Foundation Data Breach Exposes SSNs

Qilin ransomware gang claims theft of 1TB of data from Romania’s oil pipeline operator Conpet

Ransomware attacks up almost 50 percent in 2025

Ransomware Hackers Targeting Employee Monitoring Software To Access Computers

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Safeguarding Solar Energy Through Smarter Cybersecurity

Should you pay ransomware actors?

Siem Srl Targeted by SpaceBears Ransomware Attack

South Korea fines LVMH brands $25 million over customer data breach

South Korea publishes investigation results into Coupang data breach

State-Backed Hackers Use Gemini AI for Cyberattacks Aimed at Cyber Espionage

Surge in AI-Driven Phishing Attacks and QR Code Quishing in 2025 Spam and Phishing Report

Texas Probes Massive Health Data Breach Impacting Millions

The $17 Billion Wake-Up Call: Securing Crypto in the Age of AI Scams

Two teenagers accused of 'highly sophisticated' £39 million cyber-attack on Transport for London (TfL) are kept behind bars as trial date is confirmed

Welcome Savings Bank Seomyeon branch prevents 16 million won voice phishing loss

Why secure Operational Technology (OT) protocols still struggle to catch on

Windscribe Confirms Dutch Authorities Seized One of Its VPN Servers

Winona County gives update on ransomware incident affecting computer network

Winona County provides update on recent ransomware attack

12th February

83% of Ivanti EPMM Exploits Linked to Single IP on Bulletproof Hosting Infrastructure

42,900 OpenClaw Exposed Control Panels and Why You Should Care

A Match Made in Heaven: How Valentine’s Day Fuels Seasonal Phishing Attacks

After Poland cyberattacks, CISA warns US energy sector to change default passwords

AI is Supercharging Romance Scams with Deepfakes and Bots

AI Skills Represent Dangerous New Attack Surface

AMOS infostealer targets macOS through a popular AI app

APGO Taiwan Data Breach: 12,000 Customer Records Leaked

ApolloMD Data Breach Impacts 626,000 Individuals

ApolloMD data breach impacts 626,540 people

Apple Fixes Exploited Zero-Day Affecting iOS, macOS, and Apple Devices

Apple fixes zero-day flaw exploited in targeted attacks (CVE-2026-20700)

Atlas Air attackers warn Boeing intellectual property at risk in suspected supply chain hack

Bithumb warns against phishing posing as compensation for misdirected bitcoin

Black Hat Removes Hacker Linked To Epstein

BlackFog’s 2025 State of Ransomware Report Reveals 49% Increase in Attacks Year on Year

BQTLock and GREENBLOOD Target Organizations With Ransomware Attacks

Bryan Texas Utilities (BTU) restores credit card payments after vendor ransomware attack

California fines Disney $2.75 million for data privacy violations

Cedar Point Health Data Breach Exposes PII and PHI

Claude AI assistant is one calendar invite away from total system compromise

Cloud teams are hitting maturity walls in governance, security, and AI use

Cottage Hospital data breach exposes 1,600 personal records

Critical Apple Flaw Exploited in ‘Sophisticated’ Attacks, Company Urges Rapid Patching

Critical BeyondTrust RCE flaw now exploited in attacks, patch now

CryptoXScanner Data Breach - 14,000 User Records Leaked

Cyber attack on North Ferry’s payment system

Cybercriminals Exploit Employee Monitoring and SimpleHelp Tools in Ransomware Attacks

Dark Web Profile: The Gentlemen Ransomware

Data breach incidents at Yorkshire Ambulance Service 'on the rise'

Data extortion intrusions spike

‘Dead’ Outlook add-in hijacked to phish 4,000 Microsoft Office Store users

Discord Voluntarily Pushes Mandatory Age Verification Despite Recent Data Breach

DragonForce Ransomware Group Expands Its Influence with Cartel-like Operations and Targeting 363 Companies Since 2023

DragonForce Ransomware Group Targets 363 Companies, Expands Cartel-Like Operations Since 2023

Dutch mobile phone giant Odido announces data breach

Dutch police arrest 21-year-old for alleged involvement in JokerOTP password stealer

Dutch telco Odido suffers data breach exposing data of 6.2 million customers

EgyptAir refutes allegations of employee data breach

Fake AI Chrome extensions with 300K users steal credentials, emails

Fishman, Larsen & Callister Data Breach Exposes PII

Food and Ag-ISAC reports 82% surge in ransomware attacks as Qilin, Akira and CL0P lead campaigns against sector

Global Cyber Attacks Rise In January 2026 As Ransomware Activity Increases And GenAI-Driven Data Exposure Expands

Google Exposes AI Weaponization in Cyber Attack Wave

Google Reports State Hackers From Four Nations Exploited Its Gemini AI

Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support

Google says hacker groups are using Gemini to augment attacks - and companies are even ‘stealing’ its models

Google says hackers are abusing Gemini AI for all attacks stages

Google Says Scam Tactics Are Evolving Through AI Usage

Google Threat Intelligence Group (GTIG) Analysis Exposes Growing Cyber Threats To Military Infrastructure

Hacker linked to Epstein removed from Black Hat cyber conference website

Hacker Reveals Over 3 Billion Emails in Massive Data Leak

Hackers ditch noisy ransomware for stealthy data theft

Hackers Hijack Outlook Add-In to Steal 4,000+ Microsoft Accounts

Hackers turn bossware against the bosses

Healthcare Remains the Sector Most Targeted by Ransomware Groups as Attacks Increase 49% YOY

Huge OneFly data breach sees traveler IDs and payment details leaked

INC Ransomware Hits Tourigny, Chadwick, Aux, and HF Planners

India: How Central Bureau of Investigation (CBI) busted a national cyber gang that used thousands of illegal SIMs to dupe people

India Brings AI-Generated Content Under Formal Regulation with IT Rules Amendment

Institute for Human Resources and Services Data Breach Exposes Sensitive PII and PHI

iOS 26.3 Fixes an Important Security Flaw Exploited in Targeted Hacker Attacks. Update Now!

IRS Data Breach Sparks Outcry Over Immigration Deal

Java security work is becoming a daily operational burden

Kenya: Phone hacker busted in Eldoret with 13 stolen phones and hacking equipment

Kenya: Suspected phone hacker nabbed in Turbo as police recover flashing tools, devices

Korean units of Louis Vuitton, Dior, Tiffany fined $24.9 million over customer data leaks

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

Malicious Microsoft Outlook Add-in Stole 4,000 Account Credentials and Credit Card Details

Malicious Outlook Add-In ‘AgreeToSteal’ Compromises 4,000 Accounts via Subdomain Takeover

McDonald’s faces data breach as AI recruitment chatbot shared applicants’ info

Microsoft: New Windows LNK spoofing issues aren't vulnerabilities

Microsoft Outlook Add-in Stolen 4,000 Microsoft account Credentials and Credit Card Numbers

Microsoft’s February Patch Tuesday Fixes 6 Zero-Days Under Attack

Minnesota Sends $1.2 Million to Aid St. Paul Cyber Attack Recovery

More than half of Denmark’s municipalities warned over Google data violations

More US investors sue South Korean government over handling of Coupang data breach

Naming and shaming: How ransomware groups tighten the screws on victims

Nation-State Hackers Embrace Gemini AI for Malicious Campaigns

Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding, Google says

Nonprofit health system hit by two data breaches settles class-action lawsuit for $14 Million

Odido cyber attack: Hackers gained access to 6.2 million people's data

Odido data breach exposes personal info of 6.2 million customers

Odido Telecom Suffers Cyberattack - 6.2 Million Customer Accounts Affected

Payroll Fraud: Direct Deposit Attacks Target Payroll Systems Like Workday via Social Engineering

Peabody Residents Victimized In Cyber Attack On City Systems

Personal data of 6.2 Million Odido customers breached

Personalis Data Breach Potentially Exposes PII and PHI

Phishing campaign chains old Office flaw with fileless XWorm RAT to evade detection

'Pinay Gold Medalist' Video Links Going Viral: What to Know About Zyan Cabrera's Clips Before Clicking

'Pinay Gold Medalist' Viral Video Links Found Mostly On Telegram? Why Scandal, Phishing Links Spread On Messaging App

Poisoning of AI Buttons for Recommendations Rise as Attackers Hide Instructions in Over 50 Web Links, Microsoft Warns

Polish hacker charged seven years after massive Morele.net data breach

Promptware - Hackers Can Use Google Calendar Invites to Stream Victims’ Cameras via Zoom

Promptware Attack Lets Hackers Weaponize Google Calendar Invites to Spy via Zoom Camera

Qilin Ransomware Breaches Sakata Seed, Conectados, Campbell Rappold, Derbez, Ducasse, and On-Point Defense

Ransomware Attacks Amplified by Employee Monitoring Software Exploits

Ransomware gang abuses legitimate software for network persistence

Repediu Data Breach Exposes Over 21 Million Customer and User Records

Romania's oil pipeline operator Conpet confirms data stolen in attack

Security experts warn Discord age checks create "identity honey pot" as teens find bypasses

Shadow AI: The Invisible Insider Threat

SmarterMail facing widespread attacks targeting critical flaws

SmarterMail flaw exploited in China-linked ransomware push

SMS and OTP Bombing Campaigns Found Abusing API, SSL and Cross-Platform Automation

South Korea confirms scale of Coupang data breach

South Korea fines Louis Vuitton, Dior and Tiffany $24.9 million over customer data breaches

Supply chain attacks now fuel a 'self-reinforcing' cybercrime economy

Suspected JokerOTP phishing tool seller arrested in Netherlands

Taiwan Government Agencies Faced 637 Cybersecurity Incidents in H2 2025

Telegram Data Breach allegedly exposes details of 200 million Users

Terry Reilly Health Services Data Breach: 5,421 Affected

Texas attorney general investigates massive data breach affecting 4 million Texans

The FBI Recovered “Deleted” Nest Cam Footage - Here’s Why Every CISO Should Panic

The Gentlemen Breaches Clark Foam, Ghana Bauxite, Thammasat, Erg Otoyol, and WCT Holdings

The Mortgage Firm Data Breach Exposes PII

These 4 critical AI vulnerabilities are being exploited faster than defenders can respond

Threat Actors Leveraging Employee Monitoring and SimpleHelp Tools to Deploy Ransomware Attacks

Time to Exploit Plummets as N-Day Flaws Dominate

Toll of Georgia health firm hack exceeds 620K

Travel company hit by prolonged data breach leaving thousands of customers' details exposed for months

Trenchant Boss Sold Advanced Cyber Tools that Could Compromise Millions of Computers Worldwide to Russian Broker

Volvo Falls Victim of a Data Breach

Volvo Group says 16,991 employees affected as Conduent data breach grows to 25 million people

WebKit flaws lead Apple to release urgent update for iPhones and block hacker attacks

When security decisions come too late, and attackers know it

Who's the bossware? Ransomware slingers like employee monitoring tools, too

Windows Notepad Markdown feature opens door to RCE (CVE-2026-20841)

WordPress plugin with 900k installs vulnerable to critical RCE flaw

World Leaks Ransomware Group Adds Stealthy, Custom Malware ‘RustyRocket’ to Attacks

You may now remove your ID from Google search results, but will it disappear from the web?

'Your data is public': Hacker warns victims after leaking 6.8 billion emails online

11th February

25 Million Americans’ sensitive data at risk in one of the biggest US data breaches

A cyberattack on the U.S. healthcare system: The wife of the Kazakh hacker arrested in Italy: "Don't extradite him."

AI Agents Leak Data via Messaging App Link Previews as AI Adoption Has Outpaced Security Governance

AI to Supercharge Cyber Threats in 2026: Global Ransomware Losses Expected to Near ₹6.1 lakh crore

Apple fixes zero-day flaw used in 'extremely sophisticated' attacks

APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities

APT36 Targets Linux Systems With New Disruption Tools

Arts Centre Melbourne deploys MDR services to contain phishing incident

Automotive Giant Volvo Employee Information Exposed via Third-Party Conduent Data Breach

BeyondTrust critical vulnerability: thousands of hosts and nearly 200K web properties discovered

BravoX Hits Vatier, John O’s, Fusion Hill, SPEC, WVPCA, Hood River

Bring Your Own Vulnerable Driver (BYOVD) technique embedded in nascent Reynolds ransomware

Canadians lost $43 million to spear phishing in 2025: Here’s how scammers use social media to target you

Cephalus Ransomware Emerges as Go-Based Double-Extortion Threat Exploiting Exposed RDP Access

Cephalus Ransomware Emerges as Go-Based Double-Extortion Threat Targeting Exposed RDP

Cephalus Ransomware Exploits Exposed RDP in Double-Extortion Attacks

CISA flags six actively exploited Microsoft zero-days

Cl0p Ransomware Attacks Anstech, Hudson Executive, CFDT, and 22 Others

Coinbase Cartel Prioritizes Data Theft in Targeted Extortion Campaign

Conduent Breach Hits Volvo Group: Nearly 17,000 Employees’ Data Exposed

Conduent data breach might have been much worse than initially expected

Coupang Delivery Data Breach: 140 Million Accesses Considered Leaks

Coupang Delivery Info Accessed 140 Million Times in Hack

Crazy ransomware gang abuses employee monitoring tool in attacks

Critical Notepad vulnerability reignites criticism of Microsoft’s forced AI features

Critical UUID Flaw in Fiber v2 on Go 1.24+ Enables Session Hijacking and CSRF Bypass

Cyber Attack Disrupts Local Government Payment Systems

Cyberattacks shift to stealthy, long-term access over ransomware

Cybersecurity expert explains impact of ransomware attack halting online payments for Bryan Texas Utilities (BTU) customers

Cybersecurity Lapses Cost FIIG Securities ₹13.5 Crore as Court Imposes Landmark Penalty

Data breach affecting 11 physician practices confirmed to impact 627K patients

Data breach reported at Tulsa International Airport, no impact in operations

Department of Justice (DOJ) says Trenchant boss sold exploits to Russian broker capable of accessing ‘millions of computers and devices’

Desktop Window Manager Zero-Day Vulnerability Allows Privilege Escalation

Digital squatters are weaponizing your muscle memory to steal passwords

Emerging Ransomware BQTLock and GREENBLOOD Drive Rapid Business Disruption

Evolving Phishing Tactics: Understanding the Psychological Manipulation Behind Cyberattacks in 2026

Fake Azure Support Scams Spread via Malicious Bing Advertisements

First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials

FortiOS Authentication Bypass Vulnerability Allows Attackers to Bypass LDAP Login

Forum of Incident Response and Security Teams (FIRST) Forecasts Record-Breaking 50,000+ CVEs in 2026

From 10 Million to 25 Million: Conduent Breach Balloons Into One of 2025’s Largest

GDQuest Data Breach: 37,000 User Records Leaked

Generative AI Cyber Threats 2026: Deepfake Fraud Scams and Synthetic Identity Fraud Deepfakes Surge

Georgia healthcare company data breach impacts more than 620,000

Georgia housing authority hit by Qilin ransomware, applicant data exposed

Global cyberattacks rise in January 2026 as ransomware activity increases and GenAI-driven data exposure expands

Google and Shein pay up: French data watchdog hands out €486M in fines

Google Search introduces new ways to remove sensitive personal information and explicit images

Hacker reveals 6.8 billion emails online and warns victims “your data is public”

Hackers Use LLM to Create React2Shell Malware, the Latest Example of AI-Generated Threat

India: 12 Lakh SIM Cards Cancelled, over 3 Lakh IMEI Numbers Blocked as Centre Intensifies Crackdown on Cybercrime

Ivanti Endpoint Manager Vulnerability Allows Remote Attackers to Leak Arbitrary Data

Ivanti EPMM exploitation: Researchers warn of “sleeper” webshells

Japan Airlines says up to 28,000 users affected by data breach

Joint probe finds 33.67 million accounts affected in Coupang data breach

Kaspersky identifies 50 cyber-attack victims of Stan Ghouls

LummaStealer infections surge after CastleLoader malware campaigns

McLaren Health agrees to $14 Million settlement over two data breaches

Microsoft February 2026 Patch Tuesday Fixes 54 Vulnerabilities, Including 6 Zero-Days

Microsoft Fixes Six Zero Day Vulnerabilities in February Patch Tuesday

Microsoft Patch Tuesday: 6 exploited zero-days fixed in February 2026

Microsoft Patch Tuesday February Update Flags Exchange and Azure Vulnerabilities as High-Priority Risks

Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days

Microsoft says hackers are exploiting critical zero-day bugs to target Windows and Office users

Microsoft Store Outlook add-in hijacked to steal 4,000 Microsoft accounts

Microsoft Word Zero-Day Vulnerability Allows Attackers to Bypass Security Features

North Ferry’s payment system victim of cyber attack: Pass holders will still gain access to ferries

North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations

North Korean Hackers Use Deepfake Video Calls to Target Crypto Firms

North Korean Operatives Impersonate Real Professionals on LinkedIn, the Security Alliance Warns

Northern Ireland police officers offered data breach compensation

0APT ransomware group rises swiftly with bluster, along with genuine threat of attack

Ohio: Wooster-area counseling center submits notice of data breach

OneFly Data Breach: 1000s of IDs & Credit Cards Leaked

Onesource Industries Takes Website Offline Following Phishing Attack Detection

Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms

Phishing campaign exploits Pride Month to target employees

Phishing emails posing as Momo e-invoice prize notices circulate in Taiwan

Phishing in The Philippines Jumps 423 Percent as Cyber Threats Intensify in 2025

Phishing scams exploit Bithumb Bitcoin mispayment across South Korea

Phishing Scams in 2026: How to Spot and Avoid Them

Phishing Sites in the Philippines Jump 423% in 2025

Police arrest seller of JokerOTP MFA passcode capturing tool

Qilin admits Georgia housing authority breach, leaks files

Qilin Breaches Cox & Sanchez, Andringa Law, Mt Barker Co-Op

Ransomware attack targets Tulsa International Airport

Ransomware hackers say NO to Data Exfiltration and YES to Encryption

Reynolds ransomware uses BYOVD to disable security before encryption

Romance, Fake Platforms, $73 Million Lost: Crypto Scam Leader Gets 20 Years

Security teams are paying for sprawl in more ways than one

Singapore: Public warned of Land Transport Authority (LTA) and Royal Malaysia Police phishing scams targeting travellers

Singapore travellers lose S$24,000 in Malaysia toll phishing scam

Singapore travellers to Malaysia lose S$24,000 in phishing scams

SmarterMail Users Urged to Update After Ransomware Exploitation by Storm-2603

South Korea blames Coupang data breach on management failure, not sophisticated attack

South Korea jails Thai voice-phishing team leaders up to 14 years

Southern Oregon neurosurgery clinic sued over data breach

SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits

Surge in Ransomware Incidents Prompts Federal Cybersecurity Guidance and Enforcement Across Sectors

Telegram Data Breach: Over 200 Million User Records Exposed

Telemon SRL Data Breach Exposes 42,000 User Records Including Debt Data

Thousands of Volvo customers possibly affected in major data breach - 17,000 affected, here's what we know

Travelers beware: thousands of customer IDs and full payment details leaked

Tulsa International Airport hit with ransomware attack

Tulsa International Airport Reports Ransomware Attack, Says Flights Not Impacted

US Court Hands Crypto Scammer 20 Years in $73m Case

Volvo Group hit in massive Conduent data breach

Wales: Too many firms unprepared for cyber attack risk

Weaponising AI: The New Cyber Attack Surface

What is Phishing?

Windows 11 Notepad flaw let files execute silently via Markdown links

Windows Shell Zero-Day Vulnerability Allows Attackers to Bypass Authentication

10th February

10K Claude Desktop Users Exposed by Zero-Click Vulnerability

200 Million+ Telegram user records shared on a data leak forum

AI hacking platform WormGPT has user data leaked, attackers claim

AI-Generated Malware Exploits React2Shell Vulnerability as LLM-Assisted Cyberattacks Target Cloud Infrastructure

APT36 Hacker Group Attacking Linux Systems with New Tools to Disturb Services

Archive.today is hiding a script that turns visitors into DDoS attackers

Armed with new tools, North Koreans ramp up attacks on lucrative crypto sector

Attackers exploit SolarWinds vulnerability to deploy ransomware

Attackers Weaponize Windows Shortcut Files to Deploy Global Group Ransomware

Attackers Weaponizing Windows Shortcut File to Deliver Global Group Ransomware

Australia Alerts Frequent Flyers as Qantas Loyalty Points Become Prime Target in Nationwide Phishing Surge

Betterment data breach exposes 1.4 million accounts

Bloody Wolf Hackers Deploy NetSupport RAT In Targeted Attacks

Capita data-breach claims can go ahead, rules High Court

Chinese crypto scammer sentenced in absentia to 20 years after fleeing US

Claude Desktop Extensions Zero-Click RCE Flaw Exposes Over 10,000 Users to Silent Attacks

Coupang obstructed Korean probe into data breach, Korean ministry says

Criminals blackmail toothbrush manufacturer Trisa

Critical Gogs Vulnerability Enables Remote Command Execution and 2FA Bypass

Cyberattack disrupts Senegal ID department’s operations

Cybersecurity group identifies person behind Manage My Health hack

Data breach that went unnoticed in October 2024 may have left millions of Americans vulnerable

“Digital Parasite” Warning as Attackers Favor Stealth for Extortion

Discord users will have to scan their entire face for full access after hackers stole 70,000 government IDs in data breach

Discord’s Mandatory Face Scan Faces Backlash Amid Data Breach

Dutch Authorities Confirm Ivanti Zero-Day Exploit Exposed Employee Contact Data

ENISA Updates Its International Strategy to Strengthen EU’s Cybersecurity Cooperation

European Commission hit by cyber attack targeting mobile presence

European Governments Breached in Zero-Day Attacks Targeting Ivanti

European Union probes cyberattack on mobile device management systems after limited staff data exposure

Expect “relentless barrage” of cyberattacks on defense industry, Google says

Face scans and ID checks are coming to Discord

Fake Out: 0APT Data-Leak Ransomware Group Branded a Scam

Fancy Bear Hackers Abuse Microsoft Zero-Day in Email Theft Campaign

Federal Communications Commission (FCC) Urges Communications Providers to Strengthen Ransomware Defenses

Federal Trade Commission (FTC) Details Ransomware Threat, Tech Support Scams in Annual Cyber Report

FIIG Securities faces $2.5m fine following 2023 cyber attack

FIIG Securities Fined AU$2.5 Million Following Prolonged Cybersecurity Failures

Foreign state spies infiltrate high-profile Signal accounts without hacking: two tricks abused

Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution

From Ransomware to Residency: Inside the Rise of the Digital Parasite

Fugitive behind $73 Million 'pig butchering' scheme gets 20 years in prison

Germany warns of state-linked phishing campaign targeting journalists, government officials

Google sent personal and financial information of student journalist to ICE

Hackers siege Ivanti EPMM with thousands of IPs, dozens of organizations compromised

How AI is reshaping attack path analysis

Huge stalkerware data breach sees 500,000 records leaked by hacktivists

Inc Ransomware Claims Attack on US Construction Firm Core Supply

Indonesia Investigates Claims of 58 Million Student Data Breach

Instructing AI to “act drunk” may help bypass security guardrails

Ivanti Zero-Day Vulnerabilities Exploited in Global Cyberattacks, Dutch Government Breached, Possibly European Commission

Joint probe finds 33.6 million accounts exposed in Coupang data breach, dwarfing initial claim

Joint Team Finds Data from over 33 Million Users Comprised in Coupang's Data Breach

Just 11% of UK healthcare breaches account for 65% of data exposed

Legal Aid Service Data Breach Exposes Sensitive PHI and PII

Lone Star Pain Relief Data Breach Exposes PII of 500 Texans

Malicious 7-Zip site distributes installer laced with proxy tool

Malicious LNK Files Used to Deploy Global Group Ransomware Worldwide

Microsoft February 2026 Patch Tuesday fixes 6 zero-days, 58 flaws

Montana Department of Labor warns of email phishing scam

Most Engagement Data Is Compromised and That’s a Major Security Problem

National Cyber Security Centre (NCSC) Issues Warning Over “Severe” Cyber-Attacks Targeting Critical National Infrastructure

New Cybercrime Group 0APT Accused of Faking Hundreds of Breach Claims

New Linux botnet SSHStalker uses old-school IRC for C2 comms

New Mobile Spyware ZeroDayRAT Targets Android and iOS

New Ransomware Embeds BYOVD Technique to Evade Endpoint Detection

North Korean hackers targeted crypto exec with fake Zoom meeting, ClickFix scam

North Korean hackers use new macOS malware in crypto-theft attacks

North Korean IT Workers Impersonate Professionals On LinkedIn To Secure Remote Jobs

North Korean Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies

Panda Express to automatically pay Americans $5,000 thanks to $2.45million data breach settlement

Panda Express to Pay Americans Up to $5,000 After Data Breach

Pavlus Travel Hit by PEAR Ransomware: 380GB Data Allegedly Stolen

Phorpiex malware delivers global group ransomware via phishing

Phorpiex Phishing Delivers Low-Noise Global Group Ransomware

'Pinay Gold Medalist' Zyan Cabrera Videos Are Stealing Your Social Media Passwords - Here's How

Poor cybersecurity leaves consumers exposed to ransomware

Possible Data Breach of Japan Airlines (JAL) Same-Day Baggage Delivery Service Reservation System

Pride Month Phishing Targets Employees via Trusted Email Services

Prometei Botnet Targets Windows Servers to Gain Remote Access and Deploy Malware

Qantas Warns Customers of Phishing Scams Targeting Unused Loyalty Points

Ransomware encryption to regain traction amid weakening data exfiltration tactics

Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools

Security measures helpless against critical Xiaomi Redmi Buds vulnerability

Senegal Confirms Cyberattack on Agency Managing National ID and Biometric Data

Senegal Confirms National ID Agency Breach After Ransomware Attack, Threat Actors Claim Stealing 139 GB of Data

Senegal data breach disrupts national ID issuance

Senegal shuts National ID office after ransomware attack

Senegal shuts national ID systems after ransomware group claims data theft

Sermo Data Breach Impacts 2,674: Exposes SSNs

Singapore: Police warn of phishing scams impersonating Land Transport Authority (LTA), targeting Singaporean travellers to Malaysia

Singapore says China-backed hackers targeted its four largest phone companies

Singapore Takes Down Chinese Hackers Targeting Telco Networks

Singapore telcos breached in China-linked cyber espionage campaign

Sleeperware Surges As Hackers Switch From Ransomware

Smarter machine-learning models can improve phishing website detection

SmarterMail vulnerabilities exploited in ransomware campaigns

South Korea Blames Coupang Data Breach on Management Failure, Not Sophisticated Attack

South Korea blames Coupang data breach on 'management failures,' not cyber attack

Stalkerware Data Breach: Hacktivist Leaks Over 530,000 Customer Records

Stalkerware vendor data breach exposes over half a million customer records

Staten Island University Hospital Settles Lawsuit Over Business Associate Data Breach

Trojanized 7-Zip downloads turn home computers into proxy nodes

Understanding Breaches Before and After They Happen: What Every Organization Should Know

University of Pennsylvania data leaked after University refused to pay $1 million ransom, hacker group says

Unpatched SolarWinds WHD instances under active attack

Volvo Group North America customer data exposed in Conduent hack

Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server

What Minimum Viable Cybersecurity Really Looks Like for K–12 Districts

When dating apps get hacked, your private life goes public

Windows shortcut files targeted by ransomware gang Global Group

Windows shortcut weaponized in Phorpiex-linked ransomware campaign

Workers’ Compensation Insurer Beacon Mutual Dealing With Ransomware Attack

WormGPT.AI Data Breach Exposes 19,000 Users and Payment Data

YouTube tutorials spread fake 7-zip downloads as brand impersonation and domain mix-ups put PCs at risk

ZeroDayRAT malware grants full access to Android, iOS devices

9th February

Another active exploitation of SolarWinds Web Help Desk detected

Beware of Apple Pay Phishing Attack that Aims to Steal Your Payment Details

BeyondTrust Fixes Critical Pre-Auth RCE Vulnerability in Remote Support and Privileged Remote Access (PRA)

BeyondTrust warns of critical RCE flaw in remote support software

Black Basta Ransomware Actors Embeds BYOVD Defense Evasion Component with Ransomware Payload Itself

Black Basta Ransomware Integrates BYOVD Technique to Evade Defenses

Bloody Wolf Targets Uzbekistan, Russia Using NetSupport RAT in Spear-Phishing Campaign

BridgePay Confirms Ransomware Attack, No Card Data Compromised

BridgePay hit by ransomware attack, disrupting payment gateway services

BridgePay payments system knocked offline by ransomware attack

BridgePay ransomware attack triggers nationwide card processing outage

China-Linked DKnife Spyware Hijacking Internet Routers Since 2019

Chinese cyberspies breach Singapore's four largest telcos

ClickFix access broker campaign hits Windows with Python-driven backdoors

CoinbaseCartel hacker claims American audio behemoth Dolby

Cyber Attack Hits European Commission Staff Mobile Systems

Discord faces backlash over age checks after data breach exposed 70,000 IDs

Discord to introduce face scans or ID checks for all users in global rollout, months after admitting data breach

Discord to require video selfies or government IDs to verify all users’ ages

Discord will soon ask for a face scan or ID to access sensitive content

Don’t Pay The Ransom Demand After A Ransomware Attack: Cyber Storage Resilience To The Rescue

EgyptAir Data Breach: 104k Records and HR Data Allegedly Leaked

EgyptAir Data Breach Alert: Massive Employee Records Allegedly Leaked Online

EU Officials Respond After Cyber-Attack Exposes European Commission Mobile Devices

EU, Dutch government announce hacks following Ivanti zero-days

European Commission Contains Cyber-Attack Targeting Staff Mobile Data

European Commission discloses breach that exposed staff data

European Commission hit by cyberattackers targeting mobile management platform

European Commission Hit by Mobile Management Data Breach

European Commission mobile infrastructure targeted in cyber-attack

European Commission probes cyberattack on mobile device management system

European Commission responds to cyber-attack on its central mobile infrastructure

Farcaster Data Leak Exposure: 1.3GB of Wallet and Profile Data

Fédération Française de Tir Data Breach Impacts 35,000 Members

FIIG Securities Faces $2.5M Penalty After Cyber Attack Exposes Weak Incident Response

Flickr confirms data breach, tells customers their private info may have been affected - here's what we know

Flickr Data Breach Exposes User Info via Email Provider

Flickr issues warning over possible user data exposure

Flickr moves to contain data exposure, warns users of phishing

Flickr says it may have suffered a third-party data breach

Flickr warns of data breach

Flickr’s 35 Million Users Affected by Third-Party Data Exposure

From Fileless Attacks to Identity Abuse: The Hard Truth About Ransomware in 2026

German intelligence warns of state-sponsored phishing attacks on messaging apps

Gold Medalist Viral Video Scandal 2026 Turns Out To Be A Phishing Scam: Here's What Could Happen If You Click It

Hacker Attack hits Uffizi Museum

Hacker behind one of Poland’s biggest data leaks arrested after 8 years

Hacker behind Poland’s largest ever data leaks caught after eight-year hunt

Hackers breach Dutch privacy regulator, employee data compromised

Hackers breach SmarterTools network using flaw in its own software

Hackers Deliver Global Group Ransomware Offline via Phishing Emails

Hackers exploit SolarWinds WHD flaws to deploy DFIR tool in attacks

Hackers fuel panic with claims linking crypto data leak to recent kidnappings in France

Hackers Leveraging Free Firebase Developer Accounts to Send Phishing Emails

Hackers Use Signal QR Codes to Spy on Military and Political Leaders

High Court blocks Capita bid to throw out data breach claims

High Court clears way for thousands to pursue Capita data breach claims

Illinois Man Charged in Massive Snapchat Hacking Scheme Targeting Hundreds of Women

Irish consumers warned devices such as dodgy boxes may have been compromised in cyber attack

Jacobite Matrimony Database Leak Exposes Over 1,000 User Records

Kenya’s Hidden Cybercrime Battles and the Cost of Keeping Them Private

KillSec Ransomware Group Claims Cyberattack on Nigerian Fintech Getly

Leaked technical documents show China rehearsing cyberattacks on neighbors’ critical infrastructure

Loxam reports data breach

Matomo Analytics Alleged Data Breach Exposes 12.6GB SQL Database

Men charged in FanDuel scheme fueled by thousands of stolen identities

New Federal Trade Commission (FTC) Report Says Ransomware Makes Up Just 2% of Fraud Reports

New Telegram Phishing Attack Abuses Authentication Workflows to Obtain Full Authorized User Sessions

New Telegram Phishing Scam Hijacks Login Flow to Steal Fully Authorized User Sessions

New Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines Fix

Old meets new: Kaspersky reviews the evolution of phishing threats in 2025

Payment tech provider for Texas, Florida governments working with FBI to resolve ransomware attack

Phishing Alert: Cyber criminals target politicians, military officials, journalists on Signal Messenger

Phishing and Social Engineering pose biggest cybersecurity risks for South African organisations

Possible EgyptAir Cyberattack: 104,000 Records and Sensitive Documents Allegedly For Sale

Ransomware group breached SmarterTools via flaw in its SmarterMail deployment

Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics Falter

Record rise in digital squatting fuels phishing wave

Researchers Find 40,000+ Exposed OpenClaw Instances

'Reynolds' Bundles BYOVD With Ransomware Payload

Russia grants asylum to Spanish professor wanted for alleged pro-Moscow cyber operations

Rutherford Investment Company Hit by Anubis Ransomware

Senegal confirms breach of national ID card department after ransomware claims

Signal Accounts Targeted by State-Backed Phishing Campaign - Here’s How to Stay Safe

Signature Phishing Up 200% As January Losses Pass $6 Million

Singapore: 4 telcos targeted in cyber attack by threat group, no sensitive data leaked

Singapore: Telecom Cyberattack Contained, No Data Breach

Singapore launches largest coordinated cyber defense operation after targeted attack on all major telcos

Singapore Launches Largest-Ever Cyber Defense Operation After UNC3886 Targets All Major Telcos

Singapore telcos hit by China‑linked hackers UNC3886; cyber agency says no disruption, no data breach

SmarterTools hacked via its own product

SmarterTools Hit by Ransomware via Vulnerability in Its Own Product

Social Media Platforms Earn Billions from Scam Ads

SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers

Someone’s phishing with the Vancouver Giants

Substack CEO apologises for security breach affecting personal data

Substack Discloses Major Data Breach

TeamPCP Worm Exploits Cloud Infrastructure to Build Criminal Infrastructure

Thousands of exposed Moltbot control panels may be vulnerable to takeover

Two Connecticut Men Charged In Alleged $3m Gambling Fraud Scheme

UNC3886 Cyber Espionage Group Linked to Singapore Telecom Infrastructure Cyberattacks: Singtel, StarHub, M1, Simba Telecom

US Agencies Told to Scrap End of Support Edge Devices

Use of XMRig Cryptominer by Threat Actors Expanding

VoidLink Malware Exhibits Multi-Cloud Capabilities and AI Code

Vortex Werewolf Attacking Organizations to Gain Tor-Enabled Remote Access Over the RDP, SMB, SFTP, and SSH Protocols

Vortex Werewolf Targets Organizations With Tor-Enabled RDP, SMB, SFTP, and SSH Backdoors

Warlock Gang Breaches SmarterTools Via SmarterMail Bugs

Why Ransomware Is a Growing Threat to UCaaS and CPaaS Providers in 2026

Zimbabwe: 11 Hackers Arrested Over US$61,000 EcoCash Phishing Scam

Posted by at
Labels:
Subscribe to: Comments (Atom)