Editor's Message

Welcome to DBD. On March 8th 2026, DBD celebrated it's sixth anniversary and PRiSM celebrated it's third anniversary. Both projects have made a huge impact on my life and I'd like to thank each and everyone of you who have supported me, with special thanks to those individuals and communities who have helped me build up my knowledge on cybercrime and ransomware over the years. Thanks again for all your continued support. Stay safe. :)

“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington D.C.

Thursday, 9 April 2026

Ransomware Operator Claims - Week 14 2026

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 30th March and 5th April 2026, kindly assisted by our partners.

DBD discovered and researched 226 Ransomware Victims over 46 Countries and Islands claimed by 39 Data-Leaking Ransomware Operators, including 2 Newly Discovered Ransomware Operators last week.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.

Posted by at
Labels: ,

Monday, 6 April 2026

Data Breaches Digest - Week 15 2026

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 6th April and 12th April 2026.


9th April

86% of businesses refused to pay cyber ransoms in 2025

300,000 People Impacted by Eurail Data Breach

A ransomware attack on Dutch patient software has forced hospitals to disconnect their systems

Akira Breach: Newman & Marquez, Sehlmann Fensterbau, Shingle & Gibb

Attackers Weaponize Real Meta Business Manager Notifications In New Phishing Campaign

Azerbaijan: Mass phishing is occurring on behalf of state institutions

Bitcoin Depot Discloses $3.6 Million Crypto Theft Following System Breach

Bitwyre Crypto Exchange Suffers Source Code Data Breach

China data breach: Hacker claims 10 Petabytes stolen from Tianjin supercomputer

China Hit By Record Data Breach At Supercomputing Center

China's supercomputing centre may have suffered major data breach

China’s Tianjin Supercomputing Center hit by ‘unprecedented’ cyber breach

ClickFix macOS Attack Uses Script Editor to Bypass Security Controls

Critical Adobe Reader zero-day lets PDFs steal files, may have been active for months

Eurail Confirms Security Breach Affecting Over 300,000 U.S. Individuals

Eurail says December data breach impacts 300,000 individuals

Global Talent Exchange Data Breach Exposes 80K User Records

Google Warns of New Threat Group Targeting BPOs and Helpdesks

Grupo2000 Data Breach Exposes Spanish User Information

GWF Group Data Breach: Industrial Solutions Provider Compromised

Hacker breaches China supercomputer, leaks 10PB of military data

Hackers Abuse Legitimate Meta Business Manager Notifications to Deliver Phishing Emails

Hackers claim breach on Brazil’s Experian: Is every single person in Brazil part of this leak?

Hackers exploiting Acrobat Reader zero-day flaw since December

Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot

Hiscox warns ransomware hits UK SMEs more than once

Homeowners Targeted in Phishing Scam Demanding Fake Permit Fees

In One Of China's Biggest Cyber Heist, Hacker Steals Over 10 Petabytes Of Data From Supercomputer

Infodesk Data Breach: J&J, Moderna, Merck, Sanofi & More

Inigo App Data Breach Exposes Over One Million Emails

Jones Day reveals ransomware attack

Korea fines Christie's $189,000 over data breach

Lotte Card given prior notice of penalty over massive data breach

New Jersey Long Term Care Pharmacy Data Breach Affects 133,800 Patients

NNPC Health Maintenance Organisation Limited Data Breach

Phishers sneak through using GitHub and Jira’s own mail delivery infrastructure

Phishing scam targets homeowners with fake permit invoices

Ransomware gang claims hack of Western Australia’s Shine Aviation

Signature Healthcare Hit by Anubis Ransomware Attack

Smart Slider updates hijacked to push malicious WordPress, Joomla versions

Socio-financial impact of data breach

Telenor is being sued for handing over phone data that was used to arrest and execute dissidents

Third-party integration tool Anodot data breach hits Snowflake customers

Walls have ears: how your internet cable can be turned into a covert listening device

What Is A Data Breach? Hims & Hers and the human cost of a support-system hack

8th April

10 Petabytes of Classified Chinese Defense Data Allegedly Stolen by Single Hacker

13-year-old bug in ActiveMQ lets hackers remotely execute commands

179 critical infrastructure devices exposed online via Modbus protocol, researchers warn

1,200 Providence patients’ information potentially shared in data breach

A hacker has allegedly breached one of China’s supercomputers and is attempting to sell a trove of stolen data

A1TechDeals Suffers Data Breach Exposing 71,000 Users

AMAInterview.ai Data Breach Exposes 24K User Records and Resumes

Americans lose $21 billion to cybercrime as AI fuels fraud surge

Angry Hacker Drops Microsoft Zero-Day Exploit, 1 Billion Users Warned

Anthropic develops AI model that smashes Google, OpenAI and is too dangerous for public release

Anthropic Launches Project Glasswing to Use AI to Find and Fix Critical Software Vulnerabilities

Anthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems

Anthropic’s new AI model finds and exploits zero-days across every major OS and browser

APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies

APT28 DNS Hijacking Targets SOHO Router Vulnerabilities, Impacting 200 Organizations and 5,000 Consumer Devices Globally

Asia emerges as new hotspot for healthcare ransomware

Ayuntamiento de Benito Juarez Suffers Major Data Leak

Bangladesh: AusBD Bazaar Data Breach Exposes 500,000 Records

Belgium: A phishing campaign is impersonating SPF Finances, agency warns

BlueHammer: Windows zero-day exploit leaked

‘BlueHammer’ Exploit Targets Windows, Potentially Impacting 1 Billion+ Devices

Breach exposes sensitive Los Angeles Police Department (LAPD) files stored in city attorney system

Breach of Israeli AI firm Anodot suspected in attacks on Snowflake customers

BreachForums administrator identified as well-known ethical hacker

Cambodian parliament passes landmark cybercrime law after scam centre scrutiny

Capita’s troubled Civil Service Pension Scheme hit by data breach

CareCloud Breach Exposes Millions: What Happened and Are You Affected Right Now?

Centro de Estudios Clínicos Anáhuac Mayab Data Breach

Chaos malware expands from routers to Linux cloud servers

China Data Breach Shock: 10 Petabytes of Military Secrets Allegedly Exposed

China supercomputing hub allegedly hit by massive data breach

China supercomputing hub hit by massive, alleged data breach

China-linked hackers shrink ransomware attacks to hours

China's Supercomputing Hub Faces Major Data Breach Allegations

Chinese government supercomputer breached, hacker claims 10PB data theft

ChipSoft reports massive ransomware attack

CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday

CISA warns Iran-linked hackers are actively targeting US critical infrastructure

Claude Discovers Apache ActiveMQ Bug Hidden for 13 Years

Criminal wannabes even more dangerous than the pros, says ex-FBI cyber chief

Critical Flowise RCE Vulnerability Actively Exploited, Thousands of Systems at Risk

Critical Vulnerability in Ninja Forms Exposes WordPress Sites

Cyber attack by a Russian Spy Agency (GRU) associated group in several Western states, thwarted by the FBI

Cyber attack hits Dutch patient records holder Chipsoft

Cyber Criminal Group 'Silent' Targets Major U.S. Law Firm, Jones Day, in Phishing Hack

Cybercriminals move deeper into networks, hiding in edge infrastructure

Dear Britons, Russia’s Fancy Bear spies are breaking into your TP-Link routers

Dutch healthcare software vendor goes dark after ransomware attack

Eastern Illinois University Database Leaked on Hacker Forum

El Wastani Petroleum Company Suffers Ransomware Attack

Email provider leak containing over 40 Million records exposes L’Oreal, Renault, French Embassy traffic

Eurail B.V. Data Breach Exposes Data of 308,777 Users

EvilTokens Phishing Kit Uses Microsoft Device Codes to Bypass MFA

EvilTokens Uses Stolen Microsoft 365 Tokens, AI to Supercharge Business Email Compromise (BEC)

Ex-Meta Engineer Accused of Mass Facebook Data Breach

FBI reports cyber threats to critical infrastructure intensify as US cybercrime losses hit $21 billion, exposes risk

FBI Takes Down APT28 Network Behind Global DNS Hijacking Attacks

Flatpak 1.16.4 fixes sandbox escape and three other security flaws

Germany intelligence agency warns of Russian APT28 cyber spying

Google API Keys Quietly Gain Access to Gemini on Android Devices

Governor Tim Walz Deploys National Guard After Winona Cyberattack Disrupts Services

Hack-for-hire group caught targeting Android devices and iCloud backups

Hacker Claims to Have Stolen Over 10 Petabytes of Sensitive Military Data from China’s Supercomputing Center

Hackers claim breach of major Colombian banks, leak customer data samples

Hacker Nabbed 'Some Of Los Angeles Police Department's Most Closely Guarded Records' In Massive Breach

Hackers expose 70,000 NSFW prompts "linked to unique user IDs" from AI girlfriend platform

Hackers steal and leak sensitive Los Angeles Police Department (LAPD) police documents

Hackers Use AI to Bypass Passwords in Large Scale Phishing Attack

Hackers use pixel-large SVG trick to hide credit card stealer

Hackers Used EvilTokens, ClickFix Campaign to Attack Claude Code Users with AMOS Stealer

Healthcare sector leads in ransomware attacks

Iran‑Backed Threat Actors Hit US Critical National Infrastructure (CNI) Providers via Internet‑Facing Operational Technology (OT) Assets

Iran-Linked Hackers Breach U.S. Industrial Systems, Trigger Disruptions

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed Programmable Logic Controllers (PLCs)

Iranian Attackers Are Targeting U.S. Energy, Water Systems, Federal Agencies Say

Iranian cyber activity hits US energy, water, and government networks

Iranian-Linked Cyber Actors Target US Critical Infrastructure, Security Leaders Respond

Israeli Drone Director Vered Haimovich Targeted in Hacktivist Leak

Japan: SUUMO, CHINTAI, At Home, HOME’S Suffer Data Breach

Jones Day is latest BigLaw firm to fall victim to cyber ‘phishing’ incident

Kukje Pharm Co., Ltd. Suffers Ransomware Attack by Gunra

Lawsuit filed against AAA Northeast over data breach affecting driving school

Los Angeles City Attorney’s Office Faces Data Breach of Los Angeles Police Department (LAPD) Records

Los Angeles City Attorney’s Office suffers data breach of Los Angeles Police Department (LAPD) records

Los Angeles Police Department (LAPD) data breach: Thousands of confidential police records leaked in city attorney hack

Los Angeles Police Department (LAPD) Records Hacked and Exposed

Maine Police Say a Phishing Scam Targets Registered Sex Offenders

Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices

Massachusetts Hospital Diverts Ambulances as Cyberattack Causes Disruption

Massive China Supercomputer Breach Alleged As Hacker Markets 10 Petabytes of Defense Data In Potential Historic Cyber Heist

Massive Data Breach Hits Chinese Supercomputer Center

Massive hack exposes thousands of sensitive Los Angeles Police Department (LAPD) records, report says

Meta engineer creates shadow program to stalk private feeds, covertly downloads 30,000 images

Microsoft Copilot just quietly allowed sending data outside of the EU

Microsoft flags China-based hackers using vicious new 'rapid attack' zero-days to launch ransomware at targets across the world

Microsoft warns of Storm-1175's rapid Medusa attacks

Minnesota governor sends national guard to county after cyberattack

National Cyber Security Centre (NCSC) issues alert over Russian hacker campaign targeting SOHO routers

New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

New ClickFix Attack Uses Node.js Malware via Tor to Steal Crypto

New Disruption Opportunities in the Evolving Ransomware Ecosystem

New macOS stealer campaign uses Script Editor in ClickFix attack

New Scam Alert: QR Codes Replace Links in Traffic Ticket Phishing

New UNC6783 hackers steal corporate Zendesk support tickets

Nike faces class-action lawsuit over alleged January 2026 data breach

North Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust

Northern Ireland: No evidence of data corruption after Education Authority (EA) cyber attack

Northern Ireland Schools Cyberattack Disrupts Access to Educational Systems

Ontario Provincial Police (OPP) warns of scam affecting businesses after Ottawa Valley business defrauded

Operation Masquerade: FBI Disrupts Russian Router Hacking Campaign

OuterBox Data Breach: Personal Information Including SSNs Exposed

Passport numbers for more than 300,000 leaked during December Eurail data breach

PicTools.AI Data Breach Exposes 31,095 User Records

Qilin confirms cyberattack on German political party Die Linke, threatens data leak

Ransomware attack on company that manages Dutch hospitals' patient files

Ransomware group claims hack of legal giant Jones Day

Ransomware Response: How Businesses Regain Control Under Pressure

Rostelecom DDoS Attack Triggers Major Russian Network Outage Impacting Banks, Government Portal, Games

Russian Forest Blizzard Hackers Hijack Home Routers for Global Spying

Russian intelligence hacker groups continue hybrid warfare against Europe by hacking routers

SaaS Notification Pipeline Abuse, GitHub Phishing Campaigns, and Jira Notification Hijacking Increased, Cisco Talos Warns

Service Telecom Data Breach Exposes 2.8 Million Users

Shore Gardens Data Breach Exposes Personal Info of Residents

Social engineering attacks on open source developers are escalating

Space Bears claims cyber attack on Sydney dental clinic

State Assists After Cyber Attack in Winona County, Minnesota

Stimulation.Studio Data Breach Exposes User Information

Storm-1175 Deploys Medusa Ransomware Within 24 Hours of Flaw Disclosure

Storm-1175 Deploys Medusa Ransomware Within Hours of Flaw Disclosure

Synergy Data Breach Impacts 900K Customer Records

Two prominent Egyptian journalists targeted with elaborate spearphishing campaign

UK warns of Russian hacker threat targeting routers

Ukraine: Administrative Services Centre of Ternopil Data Breach

UNC1069 Phishing Campaign Exploits Microsoft Teams Vulnerabilities

US Thwarts DNS Hijacking Network Controlled by Russian APT28 Hackers

Why Cybercriminals Are Using Large Language Models to Automate Global Ransomware

7th April

1 Billion Microsoft Users Warned As Angry Hacker Drops 0-Day Exploit

5 Reasons You Should Update Your Passwords Regularly

$20 Billion Lost to Cybercrime as AI and Investment Scams Surge

AI Agents and Non-Human Identities Creating Critical Security Gaps

AI-Driven Phishing: The "Hyper-Personalized" Threat Reaches Record Highs in Q1 2026

AI-enabled device code phishing campaign exploits OAuth flow for account takeover

AlumnForce Data Breach Exposes 2.7 Million User Records

Americans lost a record $21 billion to cybercrime last year

Authorities disrupt router DNS hijacks used to steal Microsoft 365 logins

BlueHammer Zero-Day Exploit Leverages Windows Privilege Escalation, Prompts Security Concerns

Boston Mountain Data Breach Impacts 4,800 Patients

Bring Your Own Vulnerable Driver (BYOVD) technique employed by Qilin, Warlock ransomware gangs

British Facebook worker ‘downloaded 30,000 private images from social media giant in massive data breach’

Cabinet d’Etude en Securite Pyrotechnique Hit By Ransomware Attack

CareCloud Confirms Data Breach as Cybersecurity Investigation Continues

China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

China-Linked Storm-1175 Uses Zero Days To Deploy Medusa Ransomware

Civil Service Pension Scheme: Capita confirms data breach

Cost of a Data Breach vs Cost of a Pentest

Critical Android Zero-Interaction Flaw Triggers Remote DoS Attacks

Critical Common Unix Printing System (CUPS) Vulnerability Chain Allows Remote Code Execution as Root

Critical Flaw in Windmill Developer Platform Allows Remote Code Execution - Proof-of-Concept (PoC) Published

Cyber Attack Targets Brockton Hospital

Cyber-enabled fraud, ransomware losses spike, FBI reports

Cyberattack hits Northern Ireland’s centralized school network, disrupting access for thousands

Cyberattack on German Democratic Socialist Party Die Linke, Claimed by Qilin Ransomware

Cyberattack on telecom giant Rostelecom disrupts internet services across Russia

Data Breach at Standard Bank Exposes Client Account Details

Data Breach Hits CareCloud’s Health Records System

Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access

EchoVPS Data Breach Exposes Source Code and User Database

False Iran war-themed missile alerts leveraged in Microsoft credential phishing attack

Fast-moving Storm-1175 uses new exploits to breach networks and drop Medusa

FBI claims Cyber Attack victims incurred $17.7 billion loss in 2025

FBI, Pentagon warn of Iran hacking groups targeting operational technology

Figure Technology confirms data breach affecting nearly 1 million users

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

Former Meta Engineer Investigated for Downloading 30,000 Private Images

FortiClientEMS Vulnerabilities Under Active Exploitation, Expose Systems to RCE

Fortinet Releases Emergency Patch After FortiClient EMS Bug Is Exploited

German authorities identify key figure behind REvil ransomware gang

German authorities want your help finding the hackers behind GandCrab and REvil

German Police Unmask REvil Ransomware Leader

German political party Die Linke targeted in ransomware attack

Germany Names Suspected Leader of REvil and GandCrab Ransomware Gangs

GitHub Abused as C2 In North Korea-Related LNK Phishing Campaign

Google study finds LLMs are embedded at every stage of abuse detection

GrafanaGhost Exploit Bypasses AI Guardrails for Silent Data Exfiltration

GrafanaGhost Exploit Exfiltrates Sensitive Grafana Business Data via Indirect Prompt Injection

GrafanaGhost Vulnerability Allows Data Theft via AI Injection

GPU Rowhammer Attack Enables Privilege Escalation and Full System Compromise

Hacker group “Handala” leaks data on Israel’s “Drone Queen”

Hackers exploit critical flaw in Ninja Forms WordPress plugin

Hackers Leverage LogMeIn Resolve and ScreenConnect In Phishing Attacks

Hackers Pose as Non-Profit Developers to Deploy Monero Mining Malware

Healthcare data breach hits system storing patient records

Heart South Data Breach Affects 46k Patients

How did Hasbro Handle a Cyber Attack on its Systems?

How phishing changed in 2025 and what to expect in 2026 and beyond

Hundreds of organizations compromised daily in Microsoft device code phishing attacks

Illy Caffè Data Breach Exposes Employee Info

Immigration Software Firm Hit With Data Breach Impacting 116,666 People - Names, Social Security Numbers and More Exposed

Iran launches cyber attack against US hours before Donald Trump's deadline

Iranian Hacker Group Handala Targets Israel’s UAV Backbone with First-Ever Leaked Photo of Elbit Design Team

Iranian hackers are targeting American critical infrastructure, US agencies warn

Iranian hackers' targeting of US critical infrastructure has escalated since start of war, US says

Is AI-powered phishing outsmarting your employees?

Jones Day confirms cyber attack after hackers access client files

Jones Day confirms data breach after hackers leak client files online

Jones Day data breach exposed files tied to 10 client matters

Jones Day hit by cyber attack linked to group targeting law firms

KyunCall Data Breach Exposes User Passwords and Profiles

Letters sent to possible victims in Syracuse police data breach that cost city $250K

Long-Running Malware Campaign Uses Fake Installers To Deploy RATs, Monero Miners

Malaysia’s digital growth and geopolitics widen cyber attack surface, raising critical infrastructure risks

Malicious web content can be used to deceive and exploit AI agents, Google DeepMind says

Massachusetts hospital turning ambulances away after cyberattack

Massive DDoS attack hits Russian state-run telecom, disrupting internet and banking

Max severity Flowise RCE vulnerability now exploited in attacks

Medusa Ransomware Fast to Exploit Vulnerabilities, Breached Systems

Medusa Ransomware Group Exploits Zero-Day Vulnerabilities Within 24 Hours of the Breach

Microsoft says Medusa-linked Storm-1175 is speeding ransomware attacks

Microsoft Warns Storm-1175 Exploiting Web-Facing Vulnerabilities to Deploy Medusa Ransomware

Microsoft Warns Storm-1175 Exploits Web-Facing Assets 0-Day Flaws in Medusa Ransomware Attacks

Multiple vulnerabilities harnessed by Chinese hackers for Medusa ransomware deployment

MyLovely.AI Data Breach Exposes Private Content of Over 106,000 Users

Neinstein Plastic Surgery Data Breach: Patient Info Exposed

New FBI Warning: Chinese Apps Could Expose User Data

New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips

New “GPUBreach” Attack Grants Full System Compromise and Root Shell Access

New Orleans Saints Data Breach Exposes Sensitive Information

New Trump Administration Budget Cuts $707 Million from CISA Funding

Nigeria Data Protection Commission (NDPC) Investigates Remita and Sterling Bank Over Alleged Data Breach

‘No evidence’ of data theft in Northern Ireland schools cyber attack as Easter break disruption continues

Node.js-Based Windows RAT Delivered via ClickFix Phishing Luse

North Korean hackers smiled and shook hands before $280 Million crypto heist

Northern Ireland: Education Authority (EA) 'making good progress' to restore access following cyber attack

Northern Ireland: Education Authority says no evidence so far of data taken or corrupted after cyber attack

Northern Ireland: Education Authority (EA) update following C2K cyber attack data concerns

Northern Ireland: Education cyber-attack - 'Intensive work' to get hundreds of schools back on system before pupils return, say officials

Northern Ireland: Pupils back to school in holidays to deal with fallout from cyber attack

Northern Ireland education network hit by cyberattack ahead of exams

Northern Ireland Students Return to School During Easter Break After Cyber Attack

Over $17 billion Lost to Cyber Fraud in the Last Year, Warns FBI

Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign

Phishing scams double in Belgium with thousands of cases reported daily

Phishing surge targets 300,000 Austrians as digital-ID certificates near expiry

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ Security Tools

Ransomware: what it is and why it’s your problem

Ransomware reimagined: Why containment alone is no longer enough

Russian APT28 Hackers Hijack Routers to Steal Credentials, UK Security Agency Warns

Russian government hackers broke into thousands of home routers to steal passwords

Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

Snowflake customers hit in data theft attacks after SaaS integrator breach

Space Bears Ransomware Attack Hits Brooklands of Mornington

Standard Bank notifies clients of data breach

Storm-1175 Deploys Medusa Ransomware at 'High Velocity'

Storm-1175 Exploits Flaws in High-Velocity Medusa Attacks

Storm-1175 exploits web-facing systems to drive ransomware attacks across healthcare and services in US, UK, Australia

Storm-1175 Targets Web-Facing Vulnerabilities In Medusa Ransomware Campaigns

Syracuse, New York, Notifies Possible Police Data Breach Victims

Tackling data breach risks requires perpetual planning

Telehealth company Hims & Hers discloses data breach

The dangers of telehealth: data breaches, phishing, and spam

The flowise AI crisis: why 12,000+ exposed servers are a hacker's playground

Threat Actors Abuse LogMeIn Resolve and ScreenConnect in Multi-Stage Phishing Attacks

Threat Actors Exploit LogMeIn Resolve, ScreenConnect in Phishing Campaigns

Threat cluster launches extortion campaign using social engineering

Trump’s Proposed CISA Cuts Spark Alarm Among Cybersecurity Experts

UK exposes Russian cyber unit hacking home routers to hijack internet traffic

US warns of Iranian hackers targeting critical infrastructure

When the Goal Is Destruction: What the Stryker Cyber Attack Means

Windows zero-day appears on GitHub: hackers run FunnyApp.exe and gain SYSTEM privileges

World Health Day: Kaspersky Warns of Data Breach Risks in Telemedicine

Wynn Resorts data breach impacts over 21,000 employees following HR system attack

Wynn Resorts Says 21,000 Employees Affected by ShinyHunters Hack

Wynn Resorts says hackers “deleted stolen data”, yet notice reveals 21,000 affected

Zero Trust: it’s not about eliminating all trust

Zmuth.com Data Breach Exposes WhatsApp and CRM Data

6th April

1.2 million Crunchyroll users confirmed impacted by data breach

64% of Dallas Workers Say AI Is Raising the Stakes for Workplace Phishing

75% of Cyberattacks Start with Phishing Emails, UAE Cyber Council Says

A Compromised Tool Opened the Door to a 91GB European Commission Data Leak

AI-Enabled Ransomware Demands AI-Enabled Defense - Not Just Better Recovery

Airdeals, Airtips, and Payair Data Breach and Extortion Attack

Arizona cardiology practice paying $3.85 Million to resolve lawsuit after data breach

Backups won’t save you from this version of ransomware

Bahrain: Hacker attacks jump as regional tensions explode

Banning Routers Won’t Secure the Internet

Breach of FBI Surveillance System Considered a “Major Incident,” Security Experts Weigh In

Brockton Hospital impacted by system-wide cyber attack, services cancelled, patients diverted

Chilean IT Firm FreeSAP Suffers Data Breach and Extortion Attack

CISA orders feds to patch exploited Fortinet EMS flaw by Friday

Convicted spyware maker Bryan Fleming avoids jail at sentencing

Cyber Attack Forces Hasbro to Take Systems Offline

Cyber fraud surges to $17.6 billion in losses as scams, crypto theft soar

Cyberattack Disrupts Massachusetts Emergency Dispatch, 911 Services Remain Active

Data Breach makes AI Startup loose business contract with Meta

Data breach notice clarified by T-Mobile

Deminima Gynecology Clinic Suffers Patient Data Breach

Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit

Drift $280 Million crypto theft linked to 6-month in-person operation

Drift Hack Exposes $28.5 Million Democratic People's Republic of Korea (DPRK) Social Engineering Campaign Initiated Six Months Ago

EmergiaCC Colsubsidio Alleged Internal Data Breach

Evolve Your English Investigates Major 700K User Data Breach

Federal Communications Commission (FCC) Moves to Fine Voxbeam $4.5M in Robocall Case Linked to Foreign Traffic

First stalkerware maker prosecuted since 2014 receives no jail time

German authorities identify alleged leader of GandCrab and REvil ransomware gangs

German authorities identify REvil and GandCrab ransomware bosses

German Police Identify Key Figures Behind REvil Ransomware Group

German police unmask two suspects linked to REvil ransomware gang

Germany Reveals the Name of Alleged REvil Ransomware, GandCrab Leader Daniil Maksimovich Shchukin (UNKN)

Germany Unmasks Alleged REvil Mastermind ‘UNKN’ in Cybercrime Crackdown

Germany's Federal Criminal Police Office (BKA) Identifies REvil Leaders Behind 130 German Ransomware Attacks

Germany’s Federal Criminal Police (BKA) unmasks two REvil Ransomware operators behind 130+ German attacks

Hackers threaten to leak data after cyberattack on German party Die Linke

Harvard faces ‘active and specific cybersecurity threat’

Healthcare data breach hits system storing patient records

How Security Leaders Can Safeguard Against Vibe Coding Security Risks

Identity of REvil and GandCrab ransomware leader revealed

Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations

IT talent looks the other way as wireless security incidents pile up

Jones Day confirms limited breach after phishing attack by Silent Ransom Group

Medusa ransomware group using zero-days to launch attacks within 24 hours of breach

Meta Pauses Work With Mercor After LiteLLM-Linked Data Breach

Meta Reportedly Halts Work With AI Partner Mercor After Data Breach Incident

Meta Suspends Work With $10 Billion AI Startup Mercor After Cyberattack

Microsoft links Medusa ransomware affiliate to zero-day attacks

Microsoft Teams Users Being Targeted in State-Linked Phishing Campaign

Missile Alert Phishing Exploits Iran-US-Israel Conflict for Microsoft Logins

New Fortinet Flaw Allows Unauthorized Access to Enterprise Systems

New GPUBreach attack enables system takeover via GPU rowhammer

Nigeria Data Protection Commission (NDPC) investigates Remita, Sterling Bank for alleged data breach

Nigeria Data Protection Commission (NDPC) investigates Remita, Sterling Bank over alleged data breach

Nigeria Data Protection Commission (NDPC) probes Remita, Sterling Bank over alleged data breach

Nigeria Data Protection Commission (NDPC) Probes Sterling Bank, Remita For Alleged Data Breach

Nike sued after data breach allegedly put customer PII at risk of identity theft

North Korea Spent 6 Months Infiltrating Drift Protocol Only to Drain $285 Million in 12 Minutes

North Korea’s hijack of one of the web’s most used open source projects was likely weeks in the making

North Korea-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

North Korean Hackers Pose as Trading Firm to Steal $285 Million from Drift

Northern Ireland Education Authority says 'good progress' on restoring system after cyber attack

Northern Ireland pupils have to return to school over Easter break because of cyber attack

OMI360 Data Breach: Spanish Health Tech Firm Hacked

One of the largest corporate espionage and data breach scandals in digital history': New "BrowserGate" report claims LinkedIn secretly scans user browsers for installed extensions and collects device data

Phishing emails drive 75% of cyberattacks in the UAE

Qilin and Warlock ransomware: Using vulnerable drivers to disable EDR

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

Qilin ransomware group targets German political party Die Linke, threatens data leak

Qilin Ransomware targets Die Linke of Germany

QR Code Scams: New phishing scams baiting breaches

Ransomware attacks spread, spotlight falls on world of ransom negotiators

Residential proxies make a mockery of IP-based defenses

Russia sentences veteran hacker to 15 years in prison

Scammers use fake traffic violation texts with QR codes for phishing

Simple.biz Web Agency Data Breach Exposes US Clients

Singapore, US warn of latest Fortinet bug being exploited in wild

Southern Illinois Dermatology Data Breach Exposes SSNs

Tax Season Phishing Campaigns Spread Malware and Drain Victim Funds

Telehealth Giant Him & Hers Announces Data Breach

The Olympics Is a Hacker’s Favorite Sporting Event

This devious VENOM phishing campaign targets business executives by name - so watch what you click on

Traffic Violation Scams Targeting US Residents Adopt QR Code Phishing Tactics

UAE Cyber Security Council warns that 3.4 billion daily phishing emails cause 75 percent of breaches

YMED Soon-Care Suffers Massive Healthcare Data Breach and Extortion

Posted by at
Labels:

Sunday, 5 April 2026

Data-Leaking Ransomware Report - Q1 2026

Welcome to the first quarter of this year's DLR Report, an exclusive presentation of Data-Leaking Ransomware Operator's Global and US Victims that were claimed between 1st January and 31st March 2026.


DBD discovered and researched 2440 Global Ransomware Victims over 101 Countries and Islands, including 1198 US Ransomware Victims over 50 States and Districts, claimed by 87 Data-Leaking Ransomware Operators in Q1 2026.

DBD also discovered and researched 22 New Active Ransomware Operators in Q1 2026, further details of which can be found in our PRiSM application.

Download PDF



Data Source: Data Breaches Digest.

Posted by at
Labels: , ,

Thursday, 2 April 2026

Data-Leaking Ransomware Report - March 2026

Welcome to last month's DLR Report, an exclusive presentation of Data-Leaking Ransomware Operator's Global and US Victims that were claimed between 1st March and 31st March 2026.


DBD discovered and researched 914 Global Ransomware Victims over 80 Countries and Islands, including 450 US Ransomware Victims over 49 States and Districts, claimed by 66 Data-Leaking Ransomware Operators in March 2026.

DBD also discovered and researched 10 New Active Ransomware Operators called AiLock, ALP-001, ATTACKER, Audit Team, Exitium, Krybit, Loki, MNT6, NetRunner and XP95 in March 2026.

Download PDF



Data Source: Data Breaches Digest.

Posted by at
Labels: , ,

Wednesday, 1 April 2026

Ransomware Operator Claims - Week 13 2026

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 23rd March and 29th March 2026, kindly assisted by our partners.

DBD discovered and researched 168 Ransomware Victims over 43 Countries and Islands claimed by 31 Data-Leaking Ransomware Operators, including 3 Newly Discovered Ransomware Operators last week.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.

Posted by at
Labels: ,
Subscribe to: Comments (Atom)