Editor's Message

Welcome to DBD. On March 8th 2026, DBD celebrated it's sixth anniversary and PRiSM celebrated it's third anniversary. Both projects have made a huge impact on my life and I'd like to thank each and everyone of you who have supported me, with special thanks to those individuals and communities who have helped me build up my knowledge on cybercrime and ransomware over the years. Thanks again for all your continued support. Stay safe. :)

“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington D.C.

Tuesday, 21 April 2026

Ransomware Operator Claims - Week 16 2026

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 13th April and 19th April 2026, kindly assisted by our partners.

DBD discovered and researched 178 Ransomware Victims over 42 Countries and Islands claimed by 36 Data-Leaking Ransomware Operators, including 2 Newly Discovered Ransomware Operators last week.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.

Posted by at
Labels: ,

Monday, 20 April 2026

Data Breaches Digest - Week 17 2026

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 20th April and 26th April 2026.


23rd April

Apple Patches Bug Exposing Deleted Chat Messages via Logged Notifications

Apple patches bug that allowed FBI to recover deleted Signal messages, receives kudos

Apple Patches iOS Flaw That Stored Deleted Signal Notifications in FBI Forensic Case

Australia: New South Wales (NSW) Government declares significant cyber incident after alleged Treasury data breach

Checkmarx hit again, popular tools spreading credential-stealing malware

China-Linked GopherWhisper Infects 12 Mongolian Government Systems with Go Backdoors

Cyber attacks on universities rise 63% around the world

EU Rolls Out National Capabilities Assessment Framework (NCAF) 2.0 Framework to Boost National Cybersecurity Readiness

GDPR works, but only where someone enforces it

GopherWhisper APT group hides command and control traffic in Slack and Discord

Governments top cyber attack targets for second year running

Hacker Active Well Beyond Context.ai Compromise, Says Vercel CEO

High Court Backs UK Police Use of Live Facial Recognition Technology

Likes, leads and lures: Why TikTok for business is the new frontier for phishing

National Cyber Security Centre (NCSC) Backs Passkeys, Hailing a New Era of Sign-in

Northern Ireland: Pair facing terrorism charges linked to Police Service of Northern Ireland (PSNI) data breach to challenge evidence

Ransomware, fraud, and lawsuits drive cyber insurance claims to new peaks

Rituals Cosmetics Data Breach Targets Global Membership Records

ShinyHunters dumps Mytheresa, Zara, Carnival, 7-Eleven data in fresh leak wave

Smartproxy: Third of these proxy IPs trace back to a botnet network Google just dismantled

South Korea fines matchmaking firm Duo $815,000 over data breach affecting 420,000 users

Sri Lanka's Finance Ministry computer system hacked; $2.5 million stolen

UK Under Increasing Cyber Attack Threat with Officials Linking Incidents to Russia, China, and Iran

University of Warsaw Data Breach Exposes 200,000+ Sensitive Files on Darknet

Vercel Finds More Compromised Accounts in Context.ai-Linked Breach

VIPRE report says attackers shift to trusted services

22nd April

$10 Million in Assets Seized as Florida Ransomware Negotiator Pleads Guilty in Cyber Extortion Scheme

1,370+ Microsoft SharePoint Servers Exposed Online and Vulnerable to Spoofing Attacks

750,000 DNN websites in danger: a simple SVG upload can lead to complete compromise

Adaptavist Group investigates security breach amidst ransomware claims

Agoda refutes claims of massive data breach

Agoda responds as 82 Million records allegedly hit hacker forum after Booking.com breach

Anthropic investigates unauthorized Mythos access by Discord group

Anthropic’s Mythos finds 271 vulnerabilities in Firefox 150 ahead of release

Apple fixes bug that cops used to extract deleted chat messages from iPhones

Apple fixes bug that let the FBI recover deleted Signal messages

Apple Intelligence flaw kept stolen tokens reusable on another device

Attackers Use Microsoft-Signed Binary To Deploy LOTUSLITE In India-Focused Cyber Campaign

Australia: New South Wales (NSW) Treasury Official Charged in Major Data Breach Involving Sensitive Government Documents

Australia: New South Wales (NSW) Treasury worker arrested over data breach

Australia: Public servant charged for data breach

Australia: Public servant charged over mammoth alleged data breach

Australian passports compromised in alleged Favelle Favco data breach

‘Big Game Hunters’: UK ransomware volume drops significantly 'but the reality is more alarming' – big organizations are being hit harder and with greater success

Bluesky Back Online After DDoS Attack, as Iran-Linked 313 Team Takes Credit

Booking.com data breach exposes traveler data to scams

Central Bank of Nigeria (CBN) warns of surge in phishing scams, fake messages targeting bank accounts

China’s cyber capabilities now equal to the US, warns Dutch intelligence

Claude Mythos finds 271 Firefox flaws, Mozilla believes it shifts security toward defenders

ClickFix Cyber Attack Triggers Global Alert: Browsers, Wallets and Passwords at Risk

Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

Cosmetics chain Rituals hit in latest Dutch cyber attack

Cosmetics giant Rituals confirms data breach of customer membership records

Critical Bamboo Data Center and Server Vulnerability Enables Command Injection Attacks

Critical Spring Authorization Server Flaw Enables XSS, Privilege Escalation, and Server-Side Request Forgery (SSRF)

Cyberattack on French government agency triggers phishing alert

Cybersecurity Experts Warn of New Wave of North Korean Hacker Attacks

Data Breach Settlements Are Multiplying - and the Per-Person Payouts Are Getting Smaller Every Year

Discord-Linked Group Accessed Anthropic’s Claude Mythos AI in Vendor Breach

Facial recognition is catching twice as many London shoplifters, but privacy activists are worried

Fake Google Ads Used To Steal Seed Phrases and Drain Crypto Wallets

Fake Google Antigravity Installer Can Steal Accounts in Minutes

'Felony murder law does not require that a defendant pull the trigger': Ex-FBI chief calls for ransomware attackers to face homicide charges if attacks lead to deaths

Former FBI official calls for terrorism designations for ransomware groups that target hospitals and critical infrastructure

Former ransomware negotiator pleads guilty to BlackCat conspiracy

Former Ransomware Negotiator Pleads Guilty to Working For BlackCat Cyber Gang

France Confirms Data Breach After Hackers Claim Massive Data Leak

France confirms data breach at government agency that manages citizens’ IDs

France Titres data breach: 19 million records allegedly stolen

France's national agency for managing IDs and passports suffered a data breach last week

French Authorities Confirm Data Breach Amid Hackers’ Data Leak Allegations

French government agency admits data breach as hacker alleges up to 19 million sensitive records stolen - breach may have exposed 'data from individual and professional accounts'

French Government Data Breach: ANTS Confirms Cyber Incident, Hacker Claims Selling 19 Million Records

French police arrest suspected hacker behind dozens of data breaches

Hackers Claim 19 Million Records Stolen From French Government Agency

Hackers deployed wiper malware in destructive attacks on Venezuela’s energy sector

Hackers Impersonate IT Help Desk on Microsoft Teams to Gain Access, Steal Data

Hackers Use Lotus Wiper To Destroy Drives In Energy Sector Cyberattack

'Hacktivist attacks at scale’: UK could face hacktivist threats akin to some of the biggest ransomware incidents but with 'no option to pay a ransom to help recover'

Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API

Is Google sending fake Sign-In messages with Phishing links

Italian postal companies fined over €12.5 Million for scanning users' phones without proper consent

Jasper Sleet Posed As Fake IT Workers To Infiltrate Cloud Systems, Microsoft Says

K2 Electric Inc Targeted in Genesis Ransomware Attack

Kyber ransomware gang toys with post-quantum encryption on Windows

Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack

M&T Bank Data Breach: Sensitive Personal Information Exposed

MacOS Native Tools Enable Stealthy Enterprise Attacks

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious Namastex npm Packages Spread TeamPCP-Like CanisterWorm Malware

Malicious TikTok Downloader Extensions Quietly Compromised 130K Users

March 2026 Cyber Threat Landscape Fueled by Ransomware, Breaches, and Access Markets

Microsoft Patch Still Leaves 1,300 SharePoint Servers Exposed

Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug

Microsoft Releases Emergency .NET 10.0.7 Update to Fix Critical Privilege Escalation Flaw

Microsoft releases emergency patches for critical ASP.NET flaw

Millions of crypto users may be the targets, as hackers claim CoinMarketCap

Mozilla Fixes 271 Firefox Bugs Using Anthropic’s Mythos AI

Mustang Panda Hits India and South Korea with Updated LOTUSLITE Backdoor

Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles

New Apple Phishing Scam Uses Fake $899 iPhone Purchase Alert

New Firefox update patches a whopping 271 bugs with help from Claude Mythos

New GoGra malware for Linux uses Microsoft Graph API for comms

New iPhone phishing scam involves email sent from Apple servers

New law prohibits smart TVs from spying on users without consent

New Mirai campaign exploits RCE flaw in End-of-Life (EoL) D-Link routers

New Mirai variants target routers and DVRs in parallel campaigns

New NGate Malware Variant Discovered in Trojanized NFC App Stealing Payment Card PINs

New npm supply-chain attack self-spreads to steal auth tokens

New report reveals Hollywood studios still dangerously exposed to cyber risks

Nigeria: Fresh phishing wave targets bank customers, threatens personal accounts nationwide

North Korea: Hacker group suspected of stealing $300 million in cryptocurrency

North Korean hacker group Lazarus suspected behind US$300m crypto heist

North Korean hackers build “shiny new” macOS malware, but get hacked themselves

North Korean hackers siphon more than $12 million from crypto users in sprawling campaign

Over 1,300 Microsoft SharePoint servers vulnerable to spoofing attacks

Phishing - sometimes with AI’s help - topped initial-access methods in Q1

Phishing has cost Luxembourg around €10 million since 2023

Phishing reclaims the top initial access spot, attackers experiment with AI tools

Progress Software fixes sneaky WAF bypass vulnerability (CVE-2026-21876)

Qilin Breach: Sea Air, Kolin, INDCAR, PTS, Huonker, Ferguson, SEL, Sterimed, Avitrans, Rusk

Ransomware Attack on Hospital Caribbean Medical Center Affects 92,000 Individuals

Ransomware evolving into Big Game Hunting

Ransomware falls but victims rise as targeting intensifies

Ransomware is shifting towards infrastructure-led exploitation

Ransomware negotiator pleads guilty after leaking victims' insurance details to 'BlackCat' hackers - perp gave attackers a precise picture of exactly how much each target could afford to pay

Ransomware negotiator recruited by BlackCat ransomware gang pleads guilty to 2023 attacks, faces 20 years in prison

Researchers Uncover ProxySmart Software Powering 90+ SIM Farms

Rituals data breach - customer data affected

Rutan & Tucker Law Firm Suffers Data Breach by Silentransomgroup

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Shadow AI, deepfakes, and supply chain compromise are rewriting the financial sector threat playbook

Stolen Money Routed Through French Fintech Accounts In New Cybercriminal Scheme

Surge in Silent Subject Phishing Attacks Targets VIP Users

The Gentlemen ransomware: Using the SystemBC proxy malware

The Gentlemen Ransomware-as-a-Service (RaaS) Adds C-Based ESXi Locker To Cross-Platform Attacks

'The Gentlemen' Rapidly Rises to Ransomware Prominence

The Security Metric That’s Failing You

"Try Claude on Your Desktop"...Warning Issued for Claude-Impersonating Phishing Sites

Two major US banks targeted - Citizens Bank confirms breach, Frost Bank allegedly hit

UK: Leading universities paid to "spy" on student protestors and guest lecturers

UK could face ‘hacktivist attacks at scale’, says head of security agency

UK court determines police use of live facial recognition legal

UK cyber agency handling four major incidents a week as nation-state attacks surge

UK Faces a Cyber ‘Perfect Storm’ Driven by Tech Advances and Nation State Threats, National Cyber Security Centre (NCSC) Warns

UK government says 100 countries have spyware that can hack people’s phones

UK networks hit by 67 million attacks targeting Hikvision cameras

UK ransomware attacks fall sharply as hackers move to targeted 'big game' breaches

UK ransomware volumes fall as ‘Big Game Hunters’ focus on high-damage targets

Unauthorized Group Gains Access to Anthropic’s Exclusive Cyber Tool Mythos

Wales: Dyfed-Powys Police advises public of new phishing scam

Warren County, New York, $3.3 Million Phishing Scam Probe Continues

'We will reveal their identity photos, names, location, and other': Experts reveal extraordinary battle between rival ransomware gangs - and how victims can get their data back

ZeroFox data shows ransomware stabilizing at scale, with manufacturing absorbing nearly one in five attacks

21st April

22 BRIDGE:BREAK Flaws Expose Thousands of Lantronix and Silex Serial-to-IP Converters

6,000+ Apache ActiveMQ Instances Vulnerable to CVE-2026-34197 Exposed Online

Actively exploited Apache ActiveMQ flaw impacts 6,400 servers

Adaptavist Group breach spawns imposter emails as ransomware crew claims mega-haul

After Booking.com hack, 82 Million Agoda records surface on hacker forum

AI tool Vendor compromise leads to Vercel Data Breach

Alleged Adelaide hacker charged over 'cybercrime spree'

Ameriprise Discloses Second Data Breach in Less Than Six Months

Analog Gold Data Breach by Fulcrumsec Exposes Guyana Records

ANTS Hack: 19 million records exposed in French ID agency breach

Anubis Ransomware Attack Hits ViaQuest and Samuel I White PC

Arbitrum Freezes $71.1 Million in ETH: Decisive Blow Against Kelp DAO Hacker

Arbitrum Freezes KelpDAO Hacker’s $71 Million But Sparks Debate on Centralization

Arbitrum Pretends to Be a Hacker and “Steals Back” KelpDAO’s Lost Funds

Arbitrum takes back $71m from Kelp DAO hacker: ‘We did not make this decision lightly’

Australia: New South Wales (NSW)-based Strata company allegedly breached by ransomware group

Australia: Treasury staffer charged for New South Wales (NSW) government data breach

Bayside Dental Data Breach Exposes Personal and Health Information

Bluesky, Fast-Growing X Alternative, Hit by Sophisticated DDoS Attack

British Scattered Spider hacker pleads guilty to cryptocurrency theft

Chartered Institute of Bankers of Nigeria (CIBN) Allegedly Hit by 250GB Data Breach

CISA Adds 8 Exploited Flaws to Known Exploited Vulnerabilities (KEV), Sets April-May 2026 Federal Deadlines

CISA Adds 8 Exploited Vulnerabilities Affecting Cisco, Zimbra, TeamCity

CISA flags another Cisco Catalyst SD-WAN Manager bug as exploited (CVE-2026-20133)

CISA flags new SD-WAN flaw as actively exploited in attacks

CISA Warns Axios npm Package Was Compromised in Major Supply Chain Attack

Claude Code, Gemini CLI, and GitHub Copilot Vulnerable to Prompt Injection via GitHub Comments

Cloud platform Vercel says company breached through third-party AI tool

Columbia Bank Data Breach Exposes Sensitive PII

Credit Unions in Georgia, Alaska Hit by Ransomware and Data Breach Incidents

Crypto firms trade blame after biggest heist of 2026, $71 Million frozen

Cybercrime: Who are the initial access brokers, and why do they sell us so cheap?

Cybersecurity expert turns cybercriminal, pleading guilty to 'conspiracy to deploy ransomware'

Data breach: Citizens flags limited customer impact after vendor data incident amid ransomware claims

Developers Targeted in GitHub OAuth Phishing Campaign

DraftKings Hacker Who Helped Steal 600K Sentenced to 30 Months

Dutch consumers launch mass lawsuit against Odido over data breach affecting 6.2 million customers

Dutch E-Commerce Site Bol.com Investigates Claims of a Data Breach

Dutch warship compromised with $5 tracker and a postcard

Everything we know about the Vercel data breach so far

Fake TikTok Downloader Extensions Infect 130,000 Browser Users

Finland: Espionage probe added to state data breach

Finnish police suspect espionage in major state data breach

Florida man pleads guilty in ransomware conspiracy targeting U.S. companies

Florida ransomware negotiator pleads guilty to betraying clients to hackers

Formbook infostealer deployed in clandestine phishing campaigns

Former DigitalMint ransomware negotiator pleads guilty to extortion scheme

Former FBI official proposes terror designations for ransomware hackers targeting hospitals

Former ransomware negotiator pleads guilty to BlackCat attacks

France ANTS cyberattack: Millions at risk as data breach exposes personal details and sparks phishing fears - here's what you need to know

French government agency confirms breach as hacker offers to sell data

From floppy discs to Claude Mythos, how ransomware grew into a multibillion-dollar industry

Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution

Grinex crypto exchange shuts down, blames Western agencies for $13.7 Million breach

Guilt admitted by British hacker in $8 Million crypto theft scheme

Hackers Abuse GitHub Issue Notifications to Phish Developers Through Malicious OAuth Apps

Hacker defaces Seiko USA website and claims theft of 'entire customer database' - here's what we know

Hackers Could Weaponize GGUF Models to Achieve RCE on SGLang Inference Servers

Healthcare organizations in Illinois and Texas potentially leak data of 600,000 individuals

Iran Alleges US Networking Gear Was Deliberately Disabled

Jordan Customs warns of phishing scams targeting postal shipments

KelpDAO Crypto Theft: Lazarus Hackers Linked to $290 Million Heist

Lawmakers ponder terrorism designations, homicide charges over hospital ransomware attacks

Lovable AI App Builder Reportedly Exposes Thousands of Project Data via API Flaw

Lovable data breach? AI app builder responds to claims

Lovable goes on ego trip denying vulnerability, then blames others for said vulnerability

Lovable under fire over data breach

Madison Area YMCA Data Breach Exposes Social Security Numbers

Malicious OAuth Apps Turn GitHub Issue Notifications Into Phishing Lures

Manufacturing Absorbed More Ransomware Claims in March Than the Next Three Verticals Combined

Massive police data breach raises national security alarm in South Africa

Mastodon DDoS Attack Disrupts Flagship Server Temporarily

Microsoft Vulnerabilities Drop, But Critical Flaws Double, Report Warns

Millions at risk as hackers target Frost Bank and Citizens Bank

Most Firms Overestimate Cyber Recovery Readiness, Survey Finds

Most Organizations Fail to Fully Recover After Ransomware Attacks

Murder, she wrote: Ex-FBI chief wants some ransomware criminals charged with homicide

National Insurance Producers Registry (NIPR) Warns Agents of Email Phishing Attempts

Nepal: National Cyber Security Centre warns public against rising ransomware attacks

Nepal Government Issues Ransomware Alert Amid Rising Cyberattacks

New Lotus data wiper used against Venezuelan energy, utility firms

New NGate Malware Uses AI To Masquerade As NFC Payment Apps

New PureRAT Campaign Uses PNG Files To Conceal Fileless Payloads

New ransomware group The Gentlemen hits 300+ victims

New Top-Level Domains (TLDs) and phishing risk: What security teams should know

NGate Android malware uses HandyPay NFC app to steal card data

NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs

NGate NFC malware targets Android users through trojanized payment app

North Korea-Linked UNC1069 Hacks Crypto Pros via Fake Meetings

North Korean Blamed for $290m KelpDAO Crypto Heist

North Texas Behavioral Health Authority Data Breach Affects 285K Individuals

Oman: E-commerce scams account for 85% of financial phishing

OpenAI’s Chronicle feature lets Codex read your screen, raising privacy concerns

Personal Data Exposed on ANTS Portal, French Authorities Investigate

Phishing and MFA exploitation: Targeting the keys to the kingdom

Poste Italiane and Postepay Fined €12.5 Million for Illegally Processing Personal Data of Millions ⁠of Users

Poste Italiane, Postepay Fined €12.5 Million for Unlawful User Data Processing

QR Code Phishing Evolves: How to Keep Up

Ransomware and Crypto: Why Paying Isn’t Always the Answer

Ransomware negotiator admits role in attacks he was hired to resolve

Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks in 2023

Ransomware Negotiator Pleads Guilty to BlackCat Scheme

Ransomware negotiator pleads guilty to helping ransomware gang

Reliance Jio Infocomm Hit By Alleged Trading Data Breach

Restaurant Management Company Data Breach Affects 120,426

Roca Asociados Data Leak Exposes Client Information

Sapphire Sleet Targets macOS Users In New Social Engineering Campaign, Microsoft Warns

Scammers plant 26 fake crypto apps in Apple’s Chinese App Store

Scattered Spider hacker pleads guilty to stealing $8 million in cryptocurrency

‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty

Scottish Hacker Pleads Guilty to US Cyber Heists

Seiko USA Data Breach: Hackers Steal Customer Database, Issue 72-Hour Ransom Ultimatum

Seiko USA website defaced, customer data breach claimed

SideWinder Targets Government Webmail With Bogus Chrome PDF Viewer and Zimbra Phishing Clone

SideWinder Uses Fake Chrome PDF Viewer and Zimbra Clone to Steal Government Webmail Credentials

South Korea: 46 Voice Phishing Ring Members Repatriated from Cambodia Sentenced to Prison in First Trial

Spotting the spyware: How modern spies are weaponizing phishing

SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation

SystemBC botnet linked to Gentlemen ransomware attacks

The Gentlemen: A New Ransomware Threat Climbing the Charts - Fast

The Gentlemen: The Rapid Rise of a Sophisticated New Ransomware Threat

The Gentlemen Ransomware: 300+ Victims and a Hidden Threat You Need to Understand

The Gentlemen Ransomware Expands With Rapid Affiliate Growth

The Gentlemen ransomware is scaling fast - and rewriting the rules of cybercrime growth

The United States to press Felony charges against ransomware hackers

Third US Security Expert Admits Helping Ransomware Gang

TikTok video downloader extensions infect over 130K users with covert spyware

Treat Ransomware Criminals Like Terrorists, House Subcommittees Advised

Trojanized Android App Fuels New Wave of NFC Fraud

Türkiye arrests 11 cybercriminals in major data breach operation

Tycoon 2FA takedown: Phishing ecosystem shifts, competitors rise

Unauthorized group has gained access to Anthropic’s exclusive cyber tool Mythos, report claims

Unchecked AI Agents Cause Cybersecurity Incidents at Two Thirds of Firms

US: Tampa Ransomware Fixer Flips, Admits He Was Working for the Hackers

Vect formalizes BreachForums and TeamPCP alliance to push model for industrialized ransomware, scale RaaS operations

Vercel Confirms Cyber Incident After Sophisticated Attacker Exploits Third‑Party Tool

Vercel Customer Data Breach Highlights CX Risks of “Shadow AI” Tools

Vercel data breach: How hackers targeted the cloud company and offered its data for sale for $2 million

Vercel data breach exposes South Africa developer community

Vercel reaches out to users following data breach confirmation

Warren County identifies stolen $3.3 Million from phishing scam

Watch Out for Unexpected Apple Account Change Emails. It's a Phishing Scam

With US spy laws set to expire, lawmakers are split over protecting Americans from warrantless surveillance

Yet another ex-ransomware negotiator admits turning rogue after payoff from crimelords

20th April

10 Biggest Data Breaches in Germany

52 Million-Download protobuf.js Library Hit by RCE in Schema Handling

58% of Organizations Spend Over 10 Hours a Month Securing AI-generated Code

₹165 Crore Phishing Empire Crushed: FBI Busts Global Cyber Fraud Network

$221K Lost In Ethereum Phishing Attack What Went Wrong

2024 NHS Ransomware Attack Still Causes Healthcare Disruption, 122 Patient Safety Incidents Recorded

2026’s Breach List So Far: FBI Hacked, 1 Billion Androids at Risk, 270 Million iPhones Vulnerable

Add Hasbro to the growing list of defendants facing a class-action lawsuit over a data breach

After Tycoon 2FA Takedown, MFA‑Bypass Phishing Techniques Spread Across New Platforms

AI cloud company Vercel breached after employee grants AI tool unrestricted access to Google Workspace - hacker seeking $2 million for stolen data

AI platform ATHR makes voice phishing a one-person job

Ameriprise Data Breach Affected Nearly 48,000

Ameriprise Data Breach Impacts More Than 47,000 People

Amtrak Data Breach Exposes 2.1 Million Records, Reports Suggest Larger Leak

Anthropic Model Context Protocol (MCP) Design Vulnerability Enables RCE, Threatening AI Supply Chain

App host Vercel says it was hacked and customer data stolen

Apple Account Change Alert Emails Exploited in New Phishing Campaign

Apple account notifications abused for iPhone purchase phishing scams

Apple's account change notifications send phishing emails

Arizona & Texas Clinics Notify Patients About Ransomware Incidents

Arnold Clark Faces Data Breach Class Action In Scotland

ATHR Fuels Large-Scale AI Vishing and Phone Phishing Attacks

Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet

Attackers Turn QEMU Into a Stealth Backdoor for Credential Theft and Ransomware

Attackers Exploit Windows Zero-Days to Bypass Microsoft Defender

Australia: Don’t be tricked by phishing scams

Australia: New South Wales (NSW)-based Strata Republic allegedly breached by Kairos ransomware group

Bluesky blames app outage on ‘sophisticated’ DDoS attack

Bluesky Disrupted by Sophisticated DDoS Attack

Booking.com data breach customers fall prey to Reservation Hijacks

Brit pleads guilty amid Scattered Spider hacking spree claims

British Hacker Admits Stealing Millions in Virtual Currency From Targeted Companies

British hacker tied to Scattered Spider campaign pleads guilty in $8 Million scheme

British Hacker Tyler Buchanan Pleads Guilty to $8 Million Hacking Scheme in US

British Scattered Spider Hacker Pleads Guilty in the US

British Scattered Spider hacker pleads guilty to crypto theft charges

Brute-Force Authentication Attacks Targeting Network Devices On The Rise

Caribbean Medical Center Data Breach Affects 92,000

Champhunt Data Breach Exposes Over 224,000 User Records

China's Apple App Store infiltrated by crypto-stealing wallet apps

Chrome Privacy Concerns Rise as Expert Warns of Fingerprinting Risks

Cisco Patches Critical Identity Services Engine (ISE) Vulnerabilities Allowing Remote Code Execution Attacks

Critical Anthropic Model Context Protocol (MCP) Vulnerability Enables Remote Code Execution Attacks

Critical Gardyn Smart Gardens Vulnerabilities Let Attackers Control Devices Remotely

Crunchyroll slammed with lawsuit as millions of users left exposed in data breach

Crypto Exchange Grinex Blames Western Spies for $13m Theft

Crypto industry rocked by $290 Million Kelp DAO exploit, North Korea's Lazarus Group suspected

Crypto infrastructure company blames $290 million theft on North Korean hackers

Cyberattack at French identity document agency may have exposed personal data

Data breach at French National Agency for Secured Documents (ANTS) portal exposes personal user information

Drivers eligible for Arnold Clark cyber attack compensation claim

Dutch ecommerce site Bol.com investigates claims of a data breach

Dutch healthcare tech giant ChipSoft confirms patient records stolen

“Essentially invisible:” How hackers 'trojan-horsed' QEMU virtual machines to bypass security and drop ransomware

Everest Group Breaches Frost Bank, Citizens Bank, Tokoparts, Complete Aircraft Group, Umiles, Nutrabio

Fake TikTok Downloaders on Chrome and Edge Spying on 130,000 Users

Formbook Malware Campaign Uses Multiple Obfuscation Techniques to Avoid Detection

France’s ANTS ID System website hit by cyberattack, possible data breach

Fraudulent Phishing Scams Continue to Target Wisconsin Division of Motor Vehicles (DMV) Customers

Gravesend Panic Room owners put in 'difficult position' following cyber attack

Hacker “Jeffrey Epstein” leaks 400K records from Netherlands' largest webshop

Hackers Abuse Apple Alerts to Bypass Spam Filters

Hackers Are Using Apple Account Notifications for a Phishing Campaign and Malware Attack

Hackers Exploit AppDomain Hijacking To Weaponize Intel Utility

Hackers Exploit CVE-2024-3721 To Deploy Nexcorium Malware On TBK DVRs

Hackers exploit Vercel’s trust in AI integration

Hackers Use FUD Crypt To Deliver Microsoft-Signed Malware With C2 Capabilities

Holidaymakers issued suspicious message alert after major data breach

Ice Open Network hit by an insider data breach, emails, and 2FA exposed

Indian Agency Arrests Key SIM Card Supplier of a Broader Cyber Fraud Network

Inside the Booking.com Data Breach - Should You Be Worried?

Instituto Maria Schmitt Investigates Email Inbox Data Breach

Investigation into Blue Cross Blue Shield of Montana data breach moves forward

Iran’s Ministry of Intelligence and Security (MOIS) Tied to Coordinated Cyber Campaign Using Multiple Hacker Personas

Italian regulator fines national postal service orgs $15 million for data privacy violations

iTerm2 Flaw Abuses SSH Integration Escape Sequences to Turn Text Into Code Execution

JanaWare Ransomware Targets Turkish Users via Adwind RAT

JanaWare Ransomware Hits Turkish Users via Tailored Adwind RAT

Justice Department seizes $10 million from ransomware conspirator

KelpDAO suffers $290 million heist tied to Lazarus hackers

Los Angeles County Office of Education (LACOE) Investigating Potential Data Breach

Lovable denies data breach, says public settings are ‘intentional’

Lovable denies mass data breach

Massive police data breach raises national security alarm in South Africa

Mastodon says its flagship server was hit by a DDoS attack

Microsoft Defender Flaws Exploited on Windows, Two Left Unpatched

Microsoft, Meta, Google shamelessly track you even if you opt out

MiningDropper Campaign Targets Android Users with RATs and Data-Stealing Apps

Morocco’s Al Barid Bank Denies Data Breach, Says Customer Accounts Remain Secure

National Cyber Security Centre (NCSC) Outlines Coordinated Plan to Boost National Health Service (NHS) Cyber Resilience

Nepal: Cyber security advisory issued against ransomware attacks

New JanaWare Ransomware Targets Turkish Users Through Customized Adwind RAT

New Malware Campaign Delivers Gh0st RAT With CloverPlus Adware

Next.js Creator Vercel Hacked

Nigeria: Confusion as Corporate Affairs Commission (CAC) suspends portal operations over cyber attack

Nigeria cyberattacks surge as hackers target Corporate Affairs Commission (CAC), banks, election data at risk

NIST Shifts to Risk-Based National Vulnerability Database (NVD) Model as Common Vulnerabilities and Exposures (CVE) Submissions Surge 263% Since 2020

North Korea hackers blamed for $290 Million crypto theft

Over 200 Japanese firms paid ransomware attackers, 60% fail to recover data

Over 800 Android Apps Targeted in PIN-Stealing Trojan Campaign

Pakistan: E-challan phishing scam targets citizens

Payouts King ransomware abuses QEMU for hidden VMs and backdoors

Phishing attack warning issued following Booking.com data breach

Phishing scams: Wisconsin Division of Motor Vehicles (DMV) customers targeted, officials say

Popular travel booking site confirms data breach: Here’s what to know

Public Notion Pages Expose Profile Photos and Email Addresses of Editors

QEMU Hijacked as Stealth Backdoor for Credential Theft, Ransomware

Ransomware Attack on Healthcare IT Solutions Provider Impacts Dutch Hospitals

Ransomware’s Next Phase: From Data Encryption to Business Extortion

Read notice on the website that FBI has taken down for stealing millions from internet users across the world

Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination Operational Technology (OT) Systems

Researchers Link Iran’s Ministry of Intelligence and Security (MOIS) To Coordinated Hacker Persona Operation

Researchers Say Iranian Ministry of Intelligence and Security (MOIS) Uses Multiple Hacker Personas for One Coordinated Cyber Campaign

Revolution Dancewear Discloses Data Breach Compromising Personal Info for 5,841 Individuals

Scammers are weaponizing Apple’s own notifications in a dangerous new phishing attack - don’t fall for this

Secretaría de Seguridad del Estado de México Data Breach

Seiko USA website defaced as hacker claims customer data theft

Seiko USA Website Defaced as Hackers Claim Data Breach

SEO Poisoning Attack Abuses Microsoft Binary To Deploy RMM Tools

SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files

Standard Bank data breach fallout deepens

Study finds ransomware payments largely ineffective for Japanese firms

The Chartered Institute of Bankers of Nigeria Data Breach

The Gentlemen ransomware now uses SystemBC for bot-powered attacks

The Model Context Protocol (MCP) Disclosure Is the AI Era’s ‘Open Redirect’ Moment

Third-party AI hack triggers Vercel breach, internal environments accessed

Today's Ransomware evolution neutralizes current incident response strategies

Top 3 Cyber Insurance Incident Claims

Tycoon 2FA Loses Dominance as Phishing Attacks Surge Across Emerging Platforms

Tycoon 2FA relinquishes crown to similar PhaaS platforms

UAE Cyber Security Council Warns 1 in 4 Public Files Contain Sensitive Personal Data

Vercel: Data breach exposes customer credentials

Vercel Breach Linked to Context.ai, ShinyHunters Says It’s Not Involved

Vercel Breach Originated from an Employee’s AI Tool

Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials

Vercel breached via compromised third-party AI tool

Vercel CEO blames highly sophisticated AI for speeding up the massive internal data breach

Vercel Confirms Breach as Hacker Demands $2 Million Ransom

Vercel Confirms Data Breach - Hackers Claim Access to Internal Systems

Vercel Confirms Data Breach Linked to AI Tool, Hackers Demand $2 Million Ransom

Vercel confirms data breach linked to third-party AI tool: All you need to know

Vercel Confirms Major Security Incident as Hacker Claims $2 Million Ransom Demand

Vercel Confirms Security Breach as Hacker Demands $2 Million and Claims to Sell Internal Access

Vercel Data Breach Exposes Customer Credentials After AI Tool Compromise

Vercel Data Breach Linked to Context AI Hack Reportedly Exposes Information

Vercel Data Breach Linked to Earlier Context.ai Compromise

Vercel Employee's AI Tool Access Led to Data Breach

Vercel hacked after fatal OAuth misstep: granting “Allow All” permissions

Vercel hacked, hacker using ShinyHunters name to sell data for $2 million

Vercel Incident Linked to AI Tool Hack, Internal Access Gained

Vercel Reports Data Breach Amid Claims of Compromised Internal Infrastructure

Vercel Security Breach: Hacker Demands $2 Million as Crypto Projects Scramble to Secure Keys

Watch out, hackers are abusing Apple account notifications to distribute malware, steal money and data

'We've identified a security incident': Vercel breach confirmed after hackers claim stolen data for sale online

What the ransom note won't say

What to do if you clicked a phishing link in a business email

Why proactive cybersecurity beats ransomware threats

Why security experts believe we should manage software flaws like a critical illness

ZionSiphon Launches Sabotage Attacks On Israel’s Water Infrastructure

ZionSiphon Malware Targets Water Infrastructure Systems

Posted by at
Labels:

Thursday, 16 April 2026

Ransomware Operator Claims - Week 15 2026

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 6th April and 12th April 2026, kindly assisted by our partners.

DBD discovered and researched 166 Ransomware Victims over 42 Countries and Islands claimed by 36 Data-Leaking Ransomware Operators, including 4 Newly Discovered Ransomware Operators last week.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.

Posted by at
Labels: ,
Subscribe to: Comments (Atom)