Welcome to DBD. Cybercrime made global headlines in 2025. Attacks on well-known brands and organisations raised public awareness of the severity, frequency and impact of cyber attacks. Ransomware attacks were the highest ever recorded, and 2026 could be worse, as cyber criminals continue to extort their victims, with little chance of being brought to justice. It's a dangerous world out there, so please be extra vigilant and mindful of the risks and threats. Wishing you all the best for the New Year. Thanks again for all your support. Stay safe. :)
Dentons Senior Analyst, Washington D.C.
Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 2nd February and 8th February 2026.8th February
BridgePay Confirms Ransomware Attack Behind Major Payment Outage
BridgePay Confirms Ransomware Attack Caused Recent Outage
CISA Warns of Critical SmarterMail RCE Flaw Actively Exploited in Ransomware Attacks
Crypto Phishing Losses Jump 200% as Attackers Shift Focus to High-Value Wallets
Don't click that link: new wave of Qantas phishing scams targets unused points
Financial Supervisory Service (FSS) warns Korea as scammers launder voice phishing via direct gold trades
Germany Warns of Sophisticated Phishing Attacks Targeting Signal Accounts of Politicians, Military and Journalists
OpenClaw Integrates VirusTotal Scanning to Detect Malicious ClawHub Skills
Panera Bread Faces Legal Action After January 2026 Customer Data Breach Claims
Phishing and OAuth Token Flaws Expose Microsoft 365 Accounts to Full Compromise
Phishing and Social Engineering Still the Main Gaps of Digital Crimes
Ransomware disruption: Lessons from Asahi
SoundCloud data breach exposes 29.8 million user accounts
UK Construction Firm Hit by Prometei Botnet Hiding in Windows Server
7th February
Apple Pay Users Targeted by Phishing Attack Aimed at Stealing Payment Details
Bitkub to Terminate Web-Based Withdrawals Following 250,000 THB ‘Phishing’ Theft
Conduent Data Breach Notifications Underway After 2025 Attack
Cyberattack Knocks Rome’s La Sapienza University Offline for Days, 120,000 Students Affected
Cybercriminals Use Firebase Developer Accounts to Distribute Phishing Emails
Data breach impact rises sharply as cyber incidents affect thousands on Isle of Man
Firefox Will Give Users an AI Kill Switch for Better Privacy
Flickr Data Breach Exposes User Info via Third-Party Email Vendor
Flickr warns users of a data breach that exposed personal data
German Agencies Warn of Signal Phishing Targeting Politicians, Military, Journalists
Global Ransomware Threats to Education Sector Decline
Hackers Exploit Free Firebase Accounts to Launch Phishing Campaigns
Italian university La Sapienza still offline to mitigate recent cyber attack
Kenya: Under-reporting masks scale of ransomware crisis
More hacking groups operate from China than from any other country, researchers say
New Apple Pay Phishing Attack Poses Serious Risk to Your Payment Details
Nitrogen ransomware programmers lock themselves out of a payment - key management bug encrypts victims' data forever
Payments platform BridgePay confirms ransomware attack behind outage
Ransomware Cartels Evolve: Ransomware-as-a-Service Moves into Modular Attack Platforms
Scam on steroids: fake PDFs now hide on decentralized web and mount as virtual drives
Scotland: Transport agency apologises for ferry consultation ‘data breach’
Several Dutch agencies suffer major data breach
State actor targets 155 countries in 'Shadow Campaigns' espionage op
6th February
17% of 3rd-Party Add-Ons for OpenClaw Used in Crypto Theft and macOS Malware
Air France Alleged Data Breach Exposes 2 Million Candidate and Customer Records
Amazon Web Services (AWS) Cloud Access Logins now vulnerable to AI powered attacks without Phishing
Another popular platform hit by data breach exposing emails, location data, and more
Apple Pay phishing scam steals 2FA codes in real-time vishing attack
Apple Pay Users Targeted by Sophisticated Phishing Scam Leveraging Voice and Email
Asian Cyber Espionage Campaign Breached 37 Countries
"Asian hacker group" breaches systems in 37 countries, infiltrating at least 70 organizations worldwide
Asian State-Backed Group TGR-STA-1030 Breaches 70 Government, Infrastructure Entities
Attackers Used AI to Breach an Amazon Web Services (AWS) Environment in 8 Minutes
Betterment Data Breach Exposes Personal Details of 1.4 Million Customers
Canada Computers Data Breach Compromises Guest Checkout Details
China-Linked DKnife AitM Framework Targets Routers for Traffic Hijacking, Malware Delivery
China’s Salt Typhoon hackers broke into Norwegian companies
Chinese-Made Malware Kit Targets Chinese-Based Routers and Edge Devices
CISA Advisory Highlights Exploited SmarterTools Vulnerability in Recent Ransomware Attacks
CISA orders federal agencies to replace end-of-life edge devices
CISA Orders Removal of Unsupported Edge Devices to Reduce Federal Network Risk
CISA orders US federal agencies to replace unsupported edge devices
CISA warns of SmarterMail RCE flaw used in ransomware attacks
Claude Opus 4.6 Finds 500+ High-Severity Flaws Across Major Open-Source Libraries
Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware
Conduent Breach Becomes One of 2024’s Largest, Affecting 15.5 Million
Conduent Data Breach Expands, Impacting Over 25 Million with Stolen Personal and Medical Records
Conduent Data Breach Expands, Millions More Americans Affected
Conduent data breach might have been much worse than initially expected
Conduent’s Cybersecurity Reckoning: A Data Breach Far More Devastating Than the Company First Let On
Conpet hit by cyberattack, Qilin ransomware claims responsibility
Coupang: Personal data breach affected over 165,000 accounts
Coupang breach toll grows further
Critical SmarterMail Vulnerability Exploited in Ransomware Attacks
Cyber attack chaos disrupts property sales and planning decisions in two London boroughs
Cyber pros found a way to unredact some Epstein PDFs: emails contain raw code
Cybersecurity Threats in Ghana: A Comprehensive Analysis
Cyberstalking, doxxing case: Department of Justice (DOJ) arrests Antifa member targeting ICE
Data breach fallout: Coupang CEO under scrutiny for perjury claims in parliamentary hearing
DKnife Linux toolkit hijacks router traffic to spy, deliver malware
Epstein File Data Security Update: Raw Code Found in Emails
EyeCare Partners Data Breach Exposes SSNs, Government IDs, and More
Federal Communications Commission (FCC) Warns Of Rising Ransomware Risk
Finland: State data breach exposes details of up to 50,000 officials
Firm Reviews the Evolution of Phishing Threats in 2025
Flickr Alerts Users of Possible Data Breach Exposing Emails, IP Addresses, Location & Account Info
Flickr Data Breach Exposes User Information Through Third-Party Email Provider Vulnerability
Flickr discloses potential data breach exposing users' names, emails
Flickr Discloses Potential Data Exposure Following Third-Party Email Provider Vulnerability
Flickr emails users about data breach, pins it on 3rd party
Flickr falls prey to Data Breach
Flickr Notifies Users of Data Breach After External Partner Security Flaw
Flickr suffers data breach exposing user emails and location data
Gain Federal Credit Union Data Breach Exposes SSNs and Other PII
Germany warns of Signal account hijacking targeting senior figures
Global education-targeted ransomware attack growth decelerates
Hacker Accesses Display Text at Alabama FM Station
Howard Brown Health Data Breach Affects 8,357 People
HP Probes Alleged Poly Network Breach, Ransomware Group Claims 90GB Data Theft
HYTORC Data Breach Exposes Social Security numbers
If you’re a Substack user, your data might’ve been leaked
Illinois man hacked Snapchat accounts to steal nude photos, court hears
Inside the Conduent Data Breach: How a GovTech Giant’s Security Failure Exposed Millions of Americans
Italian La Sapienza University Systems Offline After Ransomware Attack
Jaguar Land Rover (JLR) pre-tax losses hit -£310m in Q3 after cyber attack
Jaguar Land Rover’s losses deepen as cyber attack fallout continues
La Sapienza University reportedly hit by ransomware attack, operations disrupted
Leora Infotech Data Breach: 35,000 Records Allegedly Exposed
Line TV partner confirms user data breach
Man pleads guilty to hacking nearly 600 women’s Snapchat accounts
Massive Data Breach at Conduent Affects Millions Across Multiple States
Massive government tech data breach expands to more than 25 million more Americans a year after it was discovered
Merkle Inc. Data Breach Exposes Social Security Numbers
Mobile privacy audits are getting harder
MTI America Data Breach Exposes Social Security Numbers
New ransomware spotted with a 'coding mistake' that means even the hackers can't decrypt the files
Norwegian intelligence discloses country hit by Salt Typhoon campaign
Phishing and OAuth Token Flaws Lead to Full Microsoft 365 Compromise
Phishing and OAuth Token Vulnerabilities Lead to Full Microsoft 365 Breach
Phishing Attacks Exploit OAuth Weakness To Breach Microsoft 365
Photo-Sharing Platform Flickr Issues Data Breach Warning
Poland’s energy control systems were breached through exposed VPN access
Police Question Coupang Interim CEO Again Over Alleged False Testimony in Data Breach Case
Powerlab Data Breach: 15,000 Customer Records Leaked
Psychology, AI and the Modern Security Program: A CISO’s Guide to Human Centric Defence
Ransomware attackers are exploiting critical SmarterMail vulnerability (CVE-2026-24423)
Ransomware operators exploit ISPsystem VM templates for malicious infrastructure
Romania’s oil pipeline operator confirms cyberattack as hackers claim data theft
Romania’s oil pipeline operator Conpet targeted in cyberattack, as Qilin alleges 1TB data breach
Savings gone, lives upturned: LuxTrust fraud victims speak out
Security experts warn Substack users to brace for phishing attacks after breach
ShadowSyndicate Deploys Sophisticated Server Transition Technique In Latest Ransomware Campaign
SoundCloud data breach exposes 29.8 million user accounts
Spanish Ministry of Science partially shuts down IT systems amid suspected data breach
State-backed phishing attacks targeting military officials and journalists on Signal
Substack confirms data breach exposing user email and phone data
Substack Confirms Data Breach, "Limited User Data" Compromised
Substack data breach: User records and internal metadata exposed
Substack data breach confirmed: user phone numbers email addresses all stolen in attack, here's what we know
Substack discloses data breach: ‘This sucks. I’m sorry,’ says CEO
Substack Suffers Data Breach, Users’ Emails And Phone Numbers Compromised
Substack users warned after data breach discovery
Substack’s Data Breach Exposes a Troubling Reality: Even the Newsletter Giants Aren’t Safe From Cyber Intrusion
Sun Communities Data Breach Exposes SSNs, Addresses, & More
Suno.com Data Breach: 60 Million Records and Source Code For Sale
Technogym Egypt Database Listed for Sale Following Alleged Breach
Ten Dutch municipalities fined for illegally processing sensitive information about Muslim communities
The Fraud Epidemic Is Testing the Limits of Cybersecurity
The Human Layer of Security: Why People are Still the Weakest Link in 2026
The ransomware evolution: Rise of EDR killers, AI-powered malware
This Substack Data Breach May Have Compromised Nearly 700,000 User Records
Top investment platform hit in data breach - over 1.4 million Betterment accounts exposed
Transparent Tribe Hacker Group Attacking India’s Startup Ecosystem
Transparent Tribe Hacker Group Targets India’s Startup Ecosystem in Cyber Attack
What is a data breach? Why Financial Services Industry (FSI) became the most targeted industry in 2025
Why Attackers no Longer Need to Break in: The Rise of Identity-Based Attacks
Why End-of-Support Edge Devices Have Become a National Security Risk
Winter Olympics face cyber risks, Russian cyberattacks already foiled
Your AI Tools Could Be a Data Breach Waiting to Happen. Here’s How You Can Prevent It
5th February
1.4 Million Betterment Email Addresses Exposed Following ‘Third Party’ Social Engineering Data Breach
AI is driving a new kind of phishing at scale
AI-Coded Moltbook Platform Exposes 1.5 Million API Keys Through Database Misconfiguration
AI-Enabled Voice and Virtual Meeting Fraud Surges 1000%+
AI-Powered Phishing Accelerated to One Attack Every 19 Seconds in 2025, Report Reveals
AI-powered Phishing Attacks Hitting Inboxes Every 19 Seconds
AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack
Alleged Compromise of Lenotech Corporation (Philippines) by the Emerging Tengu Ransomware Group
Apple Is Warning iPhone Users Again - Here’s What the New Scams Actually Look Like
Attackers exploit Windows screensaver files to install remote access tools
Autonomous attacks ushered cybercrime into AI era in 2025
Barnhart Group Data Breach Exposes PII and PHI
Beacon Mutual hit by ransomware attack
Betterment data breach impacted 1.4 million customer accounts
Beware of Fake Traffic Ticket Portals that Harvest Your PII and Credit Card Data
Beware! Phishing Campaign in the Name of Apple Pay Targets Users with Fake Fraud Warning
Black Basta: Defense Evasion Capability Embedded in Ransomware Payload
Bulletproof hosting providers renting cheap infrastructure to supply virtual machines to ransomware hackers
Callback phishing surges as Business Email Compromise (BEC) email fraud dominates
Cheap Virtual Machines Are the Backbone of Modern Ransomware
China moves to tighten cybercrime laws with post-sentence exit bans
China’s 210 State-Backed Hacker Units Fuel Permanent Cyberwar Targeting Taiwan
Chinese Hacker Uses Notepad++ to Spread Malicious Software
Chrome Vulnerabilities Allow Code Execution, Browser Crashes
CISA: Ransomware intrusions exploiting VMware ESXi bug ongoing
CISA confirms exploitation of VMware ESXi flaw by ransomware attackers
CISA Confirms VMware ESXi 0-Day Vulnerability Exploited in Ransomware Operations
CISA gives federal agencies one year to rip out end-of-life devices
CISA Warns of VMware ESXi 0-day Vulnerability Exploited in Ransomware Attacks
City of Hastings warns residents of phishing email scam
Common Crypto Scams and How to Protect Your Funds in 2026
Coupang confirms additional 165,000 users impacted in data breach
Coupang Data Breach Widens: 165,000 More Customers Affected in 2026 Attack
Coupang Says Data Breach Impacted More Than 165,000 Customer Accounts
Coupang says it found personal data breach affecting over 165,000 accounts
Coupang's Data Breach: New Revelations and Ongoing Investigation
Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows
Critical n8n Vulnerability CVE-2026-25049 Enables Remote Command Execution
Cyber attack fallout still hurting Jaguar Land Rover
Cyber Terrorism: A New Threat To World Security
Cyberattacks on Global Financial Institutions Surge 115 Percent in 2025
Data breach at fintech firm Betterment exposes 1.4 million accounts
Data breach at govtech giant Conduent balloons, affecting millions more Americans
Detroit and Denver Students Targeted in Phishing Scams Promising Easy Money
DragonForce Ransomware Attacking Critical Business to Exfiltrate Sensitive Information
Edelman Financial Engines Data Breach: SSNs Exposed
Edelman Financial Engines Hit With Data Breach
Epworth HealthCare finds no evidence of data breach as hackers allege 920GB stolen in ransomware attack
Evolve Mortgage Services Data Breach: 20TB Exposed, Including SSNs and Financial Account Information
Fake Spotify Pages Turn Latin American Websites Into Phishing Traps
FBI unable to access seized reporter’s iPhone: it’s protected by Apple’s Lockdown Mode
Federal Communications Commission's (FCC) Issues Cybersecurity Best Practices for Defending Against Ransomware Attacks
Gryphon Healthcare agrees to $2.8 million settlement after 2024 data breach exposes data of nearly 400,000 patients
Hacker claims theft of data from 700,000 Substack users; Company confirms breach
Hastings warns of phishing scam posing as city employees
Healthcare Cybersecurity Is in Crisis - These Proven Controls Could Be the Cure
Hong Kong: Data breach exposes personal details of 23 in Kowloon City care team hack
How Snapchat Phishing and Account Hacking Cases Lead to Federal Charges
How to Protect Organizations During the Winter Olympics, According to CISOs
INC Ransomware Group Breaches Japanese Logistics Firm AOT Japan
Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout Ends
Interlock ransomware bolsters stealth in new attacks
Italian university La Sapienza goes offline after cyberattack
Italy blames Russia-linked hackers for cyberattacks ahead of Winter Olympics
Jaguar Land Rover losses deepen after crippling cyber attack
Jaguar Land Rover reports £310m loss after lengthy cyber attack
Jaguar Land Rover suffers further losses as impact of cyber attack drags on
LockBit 5.0 Unveils Cross-Platform Threats for Windows, Linux & ESXi Systems
macOS Users Hit by Python Infostealers Posing as AI Installers
Malicious Campaigns Weaponize Iran Unrest for Monetization and Fraud: 580 Registered Domains Targeting the Crisis
Malicious Commands in GitHub Codespaces Enable RCE
Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign
Massive data leak hits Harvard and UPenn: ShinyHunters dump stolen records
MedRevenu Data Breach Exposes Patient Social Security Numbers
Megasilver Information System Hit by Tengu Ransomware Attack
Miami Management: 4.9 TB Data Breach Revealed PII
National Auto Loan Network Data Breach: 600GB of Sensitive Personal Information Compromised
New files leaked in data breach show how University of Pennsylvania tracked years of donor activity
New Hacking Campaign Exploits Microsoft Windows WinRAR Vulnerability
Newsletter platform Substack notifies users of data breach
Nitrogen ransomware ESXi bug makes decryption impossible even after payment
Nitrogen ransomware group’s coding error renders payments futile
Northern Ireland: Publishing officers' names on courts website not a data breach
One of Europe’s largest universities knocked offline for days after cyberattack
Oswego man pleads guilty to phishing Snapchat accounts, selling stolen nude photos
Panera Bread data breach affects over 5 million customers
Panera data breach hits over 5 million customers - names, emails, phone numbers and physical addresses exposed
Phishing Attacks Impersonating Financial Institutions Surge 343.6% in Q4
Police Service of Northern Ireland (PSNI) staff to receive £7,500 compensation after major data breach
Police shut down global DDoS operation, arrest 20-year-old
Publication of Police Service of Northern Ireland (PSNI) officers’ names on court list ‘not a data breach’, says Chief Constable
Qilin Ransomware Hits Conpet, Hochschule Worms, Kopas & More
Ransomware attacks against education sector slow worldwide
Ransomware gang uses ISPsystem VMs for stealthy payload delivery
Ransomware gangs are sharing virtual machines to wage cyber attacks on the cheap - but it could be their undoing
Research from Comparitech reveals surge in education sector ransomware breaches in 2025
Researchers uncover vast cyberespionage operation targeting dozens of governments worldwide
Romanian oil pipeline operator Conpet discloses cyberattack
Romanian wanted to expose “scammers” but got a €10,000 GDPR fine instead
Russian crypto criminals caught behind Solana and TON draining campaigns
Russian Cyberattacks Target Milan-Cortina Winter Olympics Ahead of Opening Ceremony
Russian hackers attacking European maritime and transport orgs using Microsoft Office exploit
Sanctioned Bulletproof Host Linked to Hijacking of Old Home Routers
Screensaver phishing installs remote access tools covertly
Severe vulnerability affects NGINX: websites visitors in danger
ShinyHunters claims responsibility for Harvard and UPenn data breaches, publishes stolen alumni records
ShinyHunters Telegram Update Claims Second Leader Arrested
SK Telecom's 2025 net profit plunges 73% due to data breach
Smart glasses are back, privacy issues included
Smartphones Now Involved in Nearly Every Police Investigation
SolarWinds Web Help Desk users under threat as vulnerability actively exploited
Spain's Ministry of Science shuts down systems after breach claims
Substack Breach: 662,752 User Records Leaked on Cybercrime Forum
Substack breach goes undetected for four months
Substack CEO Chris Best Confirms October 2025 Data Breach, Apologise to Users
Substack CEO informs users of a data breach
Substack confirms data breach affects users’ email addresses and phone numbers
Substack Data Breach hits comic creators
Substack data breach leaks users’ email addresses and phone numbers
Substack Discloses Breach Exposing its User Details After Four-Month Delay
Substack warns customers of data breach following hacker’s dark web claims
Swiss telecom and internet providers face mass surveillance
The Domino Effect of a Data Breach
The “Godfather” of Ransomware Gangs Calls for Cooperation and Coordination
Threat Group Running Espionage Operations Against Dozens of Governments
Why 2026 could be another great year for phishing
Why a decade-old EnCase driver still works as an EDR killer
Wood County Sheriff’s Office back in control of its Facebook page after hacker took over for couple days
Zendesk spam wave returns, floods users with 'Activate account' emails
4th February
7 Data Breaches, Exposures to Know About
Agri Food and Biosciences Institute (AFBI) chief apologises for data breach
AI Drives Doubling of Phishing Attacks in a Year
AI Drives Sharp Rise in Phishing Volume
AI-powered phishing attacks doubled in 2025
Alpine ENT Discloses 2024 Data Breach Impacting Over 65,000 People
Arbitrum Governance X Account Compromised in Targeted Phishing Campaign
Arsink Android spyware campaign hits 45,000 devices across Asia and the Middle East
Auto finance fraud is costing dealers up to $20,000 per incident
Autonomous attacks ushered cybercrime into AI era in 2025
Bulletproof hosting reused Windows images, masking ransomware infrastructure
Central Ozarks Medical Center Discloses Data Breach Affecting Almost 12,000 Patients
China-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage Campaigns
Chinese Mustang Panda Used Fake Diplomatic Briefings to Spy on Officials
Chrome Add-On Caught Stealing Amazon Commissions
CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to Known Exploited Vulnerabilities (KEV) Catalog
CISA Makes Unpublicized Ransomware Updates to KEV Catalog
CISA Silently Updates Vulnerabilities Exploited by Ransomware Groups
CISA warns of five-year-old GitLab flaw exploited in attacks
Coinbase reveals insider breach did take place, customer info compromised
Conduent Business Services Data Breach Victim Count Swells
Coupang CEO questioned by police over alleged data breach cover-up
Courts publicly releasing names of Police Service of Northern Ireland (PSNI) data breach officers 'avoidable and embarrassing error', says policing body
Critical n8n flaws disclosed along with public exploits
Cyber attack on London councils stops tax revenue reaching Treasury
Data breach compensation offer ‘is major progress’, says Police Federation for Northern Ireland (PFNI)
DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files
Detecting Intent Is the Only Way To Keep Pace With AI-Enabled Threats
Did a renowned hacker help Jeffrey Epstein get ‘dirt on other people’?
Don’t get caught out by Apple Pay phishing scams
Dragonforce gang claims breach of German insurer HanseMerkur, alleging 97 GB data theft
DragonForce purports breach of leading German insurer
EDR killer tool uses signed kernel driver from forensic software
Employee responsible for ‘non-malicious’ data breach loses dismissal case
Energy and utilities cyber threats escalate as ransomware and APT activity rise
Epstein Files Leak Sensitive Data, Victim Information, and Credentials
Epstein’s files expose valid passwords, Redditors hacking into accounts
Everest Ransomware breaches Iron Mountain only to exfiltrate data
Exposed AWS Credentials Lead to AI-Assisted Cloud Breach in 8 Minutes
FBI Seizes Notorious Cybercrime Forum Selling Ransomware
Federal Regulators Sound Alarm as Ransomware Groups Target America’s Communications Backbone
Financial Services Commission (FSC) seeks telecom data to curb voice phishing in South Korea
Foxit Releases Security Updates for PDF Editor Cloud XSS Vulnerabilities
From scam parks to execution chambers: China’s hardline tactics against cross-border cyber fraud
Global SystemBC Botnet Found Active Across 10,000 Infected Systems
Gryphon Healthcare Agrees to Pay $2.87 Million to Settle Class Action Data Breach Lawsuit
Hacker gets into Epstein’s personal email after password ‘exposed’ in files
Hackers compromise NGINX servers to redirect user traffic
Illinois Department Of Human Services Data Breach: 705k Affected
Interlock Ransomware Actors New Tool Exploiting Gaming Anti-Cheat Driver 0-Day to Disable EDR and AV
Interlock Ransomware Exploits Zero-Day in Gaming Anti-Cheat Driver to Disable EDR, AV
Interlock Ransomware Uses New Tool To Kill EDR via Anti-Cheat Driver Flaw
Iron Mountain reveals recent Everest cyber breach limited to marketing files
Iroquois Memorial Hospital Data Breach Exposes Patient Records
Iron Mountain reports limited impact from Everest gang breach
‘It defies belief’: Names of Police Service of Northern Ireland (PSNI) officers published on court website in new breach
Lakelands Public Health Confirms Cyberattack, Says Sensitive Data Unaffected
Local land charge searches halted due to cyber attack fallout
Major malware adds Linux variant, thousands of hosting servers infected
Major vulnerabilities found in Google Looker, putting self-hosted deployments at risk
Massive Chinese data breach allegedly spills 8.7 billion records - here's what we know
Microsoft and Google Platforms Abused in New Enterprise Cyberattacks
Microsoft Develops Scanner to Detect Backdoors in Open-Weight Large Language Models
Microsoft Warns Python Infostealers Target macOS via Fake Ads and Installers
Millions installed these AI apps, but researchers warn of leaked user locations
Missouri school districts targeted in recent phishing email scam
Mountain View Shuts Down Flock Safety ALPR Cameras After Year-Long Unrestricted Data Access
Nascent Vect RaaS operation examined
Navigating the AI Revolution in Cybersecurity: Risks, Rewards, and Evolving Roles
Nearly 1,300 customers affected by Canada Computers data breach, company says
New Amaranth Dragon cyberespionage group exploits WinRAR flaw
New Technical Markers Reveal Expanding ShadowSyndicate Cybercriminal Infrastructure
Nitrogen ransomware is so broken even the crooks can't unlock your files
Northern Ireland: Police officer names published on courts website
Okta users warned as ShinyHunters expand vishing wave
Phishing & Social Engineering are the most Significant Risks for South African organizations
Phonesack Group Allegedly Breached: Xekong Energy Project Data Leaked
Pit River Health Data Breach Affects 1,800 Patients, Exposing PII and PHI
Poland Detains Defense Ministry Employee on Suspicion of Spying for Russian and Belarusian Intelligence
Police Service of Northern Ireland (PSNI): names of officers are published on the Northern Ireland Courts website
Privilege Disruption: The Key Choke Point for Cyber Deterrence
Qilin Ransomware Breaches RC Collecting, PSTECHLTD, Jingchang, and Medasa
Ransomware Attacks Have Surged 30% Since Q4 2025
Ransomware Attacks Have Soared 30% in Recent Months
Ransomware Gang Goes Full 'Godfather' With Cartel
Report shows records number of data breaches in 2025
Rise in data breaches across UK ambulance services
Russian hacker attack on the Foreign Ministry and Olympics offices anticipated
Russian Hackers Exploit Critical Microsoft Office Flaw to Steal Emails
Service Provider Breach Impacts 130,000 Customers of 1st MidAmerica Credit Union
ShinyHunters Alleged Data Breach Targets Ivy League: 2 Million Records Stolen from Harvard University and the University of Pennsylvania
ShinyHunters Breaches Harvard and UPenn: Millions of Records Exposed
ShinyHunters Dumps 2 Million+ Records From Harvard, UPenn Breaches
SolarWinds Web Help Desk Vulnerability Actively Exploited
South Korea: Professional Man Avoids 1.8 Billion Won Voice Phishing Scam
SystemBC Infections Exceed 10,000, Including Systems Linked to Government Hosting
The ‘Absolute Nightmare’ in Your DMs: OpenClaw Marries Extreme Utility with ‘Unacceptable’ Risk
The Double-Edged Sword of Non-Human Identities
The most popular cyberattack in South Africa
The retail ransomware opportunity
Threat Actors Abuse Microsoft & Google Platforms to Attack Enterprise Users
Two Asian cyber-attacks in Tokio Marine HCC's top 10 cyber incidents for 2025
Two Critical Flaws in n8n AI Workflow Automation Platform Allow Complete Takeover
Universal £7,500 payout offered to Police Service of Northern Ireland (PSNI) staff over major data breach
Universal offer made to Police Service of Northern Ireland (PSNI) data breach plaintiffs
US senator demands AT&T and Verizon CEOs testify over Salt Typhoon telecom hack
US used cyber weapons to disrupt Iranian air defenses during 2025 strikes
Victims Are Rebuffing Ransomware Mass Data Theft Campaigns
VMware ESXi flaw now exploited in ransomware attacks
3rd February
8.7 billion records spilled: Inside the massive Chinese data leak
9 million Android phones hijacked worldwide in hacker network
AI Governance in Cybersecurity: Building Trust and Resilience in the Age of Intelligent Security
AI-Assisted Cloud Intrusion Compromises AWS Environment in 8 Minutes, Highlights New Cloud Security Threats
Apple Pay Phishing Campaign Targets Users With Fake Fraud Alerts
Apple users are being targeted by a coordinated Apple Pay phishing campaign
APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks
Attackers allege 1.4TB data breach at Iron Mountain
Attackers Imitate Dropbox To Launch Credential-Harvesting Phishing Attacks
Australian data not compromised as part of cyber attack on Distinctive Systems
Bangladesh: Data breach a threat to journalist safety
Bayada Home Health Care Affected by Doctor Alliance Data Breach
Belgian school cyberattack shifts pressure onto families
Berchem School Hit by Cyberattack as Hackers Target Parents With €50 Ransom Demand
Beware of Fake Dropbox Phishing Attack that Harvest Login Credentials
Bumble, Match Group Hit by Data Security Incident, ShinyHunters Claims Responsibility
California city turns off Flock cameras after company shared data without authorization
Can IT Infrastructure seizures by Law Enforcement stop Ransomware spread
Canada Computers says customer information compromised during data breach
Capital Health Agrees to $4.5M Settlement Over Cyberattack and Data Breach
Centric Health Data Breach Impacts 6,855 Patients
CISA flags critical SolarWinds RCE flaw as exploited in attacks
CISA orders federal agencies to patch exploited SolarWinds bug by Friday
CISA updated ransomware intel on 59 bugs last year without telling defenders
Coinbase confirms insider breach linked to leaked support tool screenshots
Critical vLLM Flaw Exposes Millions of AI Servers to Remote Code Execution
Cyber Risk Enters 2026 as a Board-Level Priority
Cyber-attack halts planning applications and house sales in London's richest borough
Cybercrime Unit of Paris Prosecutors Raid Elon Musk’s X Offices in France
Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata
DockerDash Ask Gordon AI Vulnerability Exposes Supply Chain Risks as Meta-Context Injection Compromises AI Integrity
DockerDash Exposes AI Supply Chain Weakness In Docker's Ask Gordon
Epstein Files: FBI Informant Claims Jeffrey Epstein's 'Personal Hacker' Sold Zero-Day Exploits to Hezbollah
EU privacy authorities skeptical of Brussels AI plan that would allow easier use of personal data
Everest Ransomware Claims 90GB Data Theft Involving Legacy Polycom Systems
Exposed AWS Credentials Lead to AI-Assisted Cloud Breach in 8 Minutes
Fake ELTA Delivery Texts Target Greek Consumers
Fancy Bear’s latest dance: Microsoft Office flaw fuels cyberattacks in Ukraine and EU
Federal Motor Carrier Safety Administration (FMCSA) warns of ‘aggressive’ phishing campaign targeting fleets
Federal Motor Carrier Safety Administration (FMCSA) warns of ‘aggressive’ phishing scam targeting carriers
Five Single Sign-On Best Practices to Reduce Access Risk in 2026
French Police Raid X Offices as Grok Investigations Grow
French Police Raid X Paris Office, Summon Musk Over Grok Deepfakes
French prosecutors raid X offices, summon Musk over Grok deepfakes
Hacker Claims Huge Breach Of Spain's Tax Data
Hackers exploit critical React Native Metro bug to breach dev systems
Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package
Hackers Leak 5.1 Million Panera Bread Records
Here's how to be safer as physical crypto attacks grow, deepfake extortion is next
Homeland Security is trying to force tech companies to hand over data about Trump critics
How Banks Can Protect Their Most Valuable Asset: Customers
How to turn on Private DNS Mode on Android - and why it's a must for security
HP subsidiary allegedly breached by Everest ransomware gang
Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw
I installed Moltbot. How do I protect my data?
INC Ransomware Breaches H-Behbehani Brothers and Blystone & Bailey
India’s Supreme Court to WhatsApp: ‘You cannot play with the right to privacy’
Iron Mountain: Data breach mostly limited to marketing materials
January’s biggest data breaches exposed
Kensington and Chelsea Council to make first housing benefit payment since cyber attack
M&S attackers hit German insurance giant HanseMerkur
Malta: Gozo Channel hit by cyber attack, ferry operations not affected
Meet Moltbook, the Social Platform Where AI Agents Talk and Humans Watch
Microsoft Windows moves to disable NTLM, a common attack vector for hackers
Moltbook data breach exposes API tokens and emails, cybersecurity firm Wiz reveals
Moltbook Hacked: Data Breach Exposes 35,000 Emails
NationStates confirms data breach after player gained unauthorized server access
Negotiating with Scattered Lapsu$ Hunters discouraged
Neurological Associates Data Breach: PHI and PII of 13,500 Patients Exposed
New Britain Ransomware Attack Disrupts City Systems, FBI Investigating
New Password-Stealing Phishing Campaign Targets Corporate Dropbox Credentials
New Phishing Scheme Targets Motor Carriers, Federal Motor Carrier Safety Administration (FMCSA) Warns
Northern Ireland: Every police officer given £7,500 compensation offer for data breach scandal that put entire workforce's personal info in hands of dissident republicans
Notepad++ Hijacking Incident Deploying Backdoor, Linked to Lotus Blossom Group Campaign
Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group
Notepad++ supply chain attack: Researchers reveal details, IoCs, targets
Notepad++ update system compromised in potential state-sponsored attack
Oakley Relocation Data Breach Exposes Social Security Numbers
Op Neusploit: Russian APT28 Uses Microsoft Office Flaw in Malware Attacks
Open-source attacks move through normal development workflows
Panera Bread data breach affects 5.1 million accounts, not 14 million
Panera Bread data breach much more serious than we thought - over 5 million customers were hit, new reports claim
Phishing scam targets Livonia students with fake job offers
Poland detains defense ministry employee on suspicion of spying for Russia
Police Service of Northern Ireland (PSNI) data breach victims offered £7,500 compensation payment
Police Service of Northern Ireland (PSNI) officers affected by data breach to receive £7,500
Police Service of Northern Ireland (PSNI) officers and staff affected by data breach offered £7,500 compensation each
Police Service of Northern Ireland (PSNI) officers to get £7,500 each in compensation over data breach
Police Service of Northern Ireland (PSNI) staff offered £7,500 compensation over data breach
Precipio Data Breach Exposes 150 GB of PHI and PII
Qilin ransomware gang claims breach of Tulsa International Airport, posts alleged data samples
Ransomware gangs focus on winning hearts and minds
Ransomware surge prompts Federal Communications Commission (FCC) guidance for stronger telecom security practices
Recent ICO Data Breach Enforcement Emphasizes the Importance of a Robust Breach Response
Remote encryption spearheads ransomware tactics
Researchers Warn of New “Vect” RaaS Variant
Russian hackers are exploiting recently patched Microsoft Office vulnerability (CVE-2026-21509)
Russian state hackers exploit new Microsoft Office flaw in attacks on Ukraine, EU
Service Employees International Union Local 1 (SEIU Local 1) Data Breach Exposes Social Security Numbers
SharePoint phishing campaign rages: fake invitations lead to compromised Microsoft accounts
ShinyHunters Claims Massive Panera Bread Data Breach
ShinyHunters tease Coinbase by flashing allegedly stolen data on Telegram
SoFi Data Breach Affects 38,049 in Washington
Sophisticated Apple Pay Phishing Scheme Exploits User Trust Through Multi-Channel Attack Vector
Spyware Vendor’s Pall Mall Claims Trigger Civil Society Backlash
SQL Injection Flaw Affects 40,000 WordPress Sites
Step Finance says compromised execs' devices led to $40M crypto theft
Stop Treating Patches Like They’re Riskier Than Ransomware
Substack Data Breach Leads to Leak of Nearly 700,000 Records
The ‘Invisible Risk’: 1.5 Million Unmonitored AI Agents Threaten Corporate Security
The new face of phishing: Why traditional defenses are failing your customers in 2026
This Is Why “Auto-Update” Is a Hacker’s Favorite Feature
Title Guaranty Data Breach Exposes 50GB of Sensitive Info Including SSNs
UK Information Commissioner’s Office (ICO) Launches Investigation into X Over AI Generated Non-Consensual Sexual Imagery
UK investigating first suspected breach of cyber sanctions
UK privacy watchdog probes Grok over AI-generated sexual images
Union State Bank Data Breach Exposes Personal Information of Customers
Universidad Autónoma de Sinaloa (UAS) Data Breach Affects Thousands
University of Pennsylvania’s October data breach impacted fewer than 10 people, despite hackers’ claims it was 1.2 million
Vibe-Coded Moltbook Exposes User Data, API Keys and More
Wave of Citrix NetScaler scans use thousands of residential proxies
What is CryptoLocker ransomware and how can you protect yourself?
Why Crypto Phishing Has Become More Sophisticated Than Malware
Why Smart People Fall For Phishing Attacks
X offices raided in France as UK opens fresh investigation into Grok
2nd February
1st MidAmerica Data Breach Affects 131,000 Members
AI is flooding Identity and Access Management (IAM) systems with new identities
Alleged Data Breach Targets Spain’s Ministry of Science, Innovation, and Universities
Alpine ENT Data Breach Impacts 65,648 Individuals Exposing PII and PHI
Android RAT Uses Hugging Face to Host Malware
Anywhere Real Estate Data Breach Exposes Social Security Numbers
Autonomous AI Agents Emerge As Cybercrime’s New Operating System
BreachForums Breach Exposes Names of 324K Cybercriminals, Upends the Threat Intel Game
Britain and Japan Join Forces on Cybersecurity and Strategic Minerals
Canada Computers & Electronics reveals data breach - customer data exposed, here's what we know
Canada Computers confirms data breach exposing customer personal and credit card information
Canada Computers data breach exposes guest checkout customers’ card details
Canada Computers says customer information compromised during data breach
City of Muscatine warns about phishing scam targeting local businesses
CrossCurve Bridge Hacked for $3 Million After Smart Contract Validation Vulnerability Exploited
Crypto Losses Hit Nearly $370 Million in January 2026 as Phishing Scams Surge
Crypto Exploits Hit Nearly $400 Million in January as Phishing Dominates Losses
Crypto Losses Surge to $370 Million in January, Phishing Dominates
Crypto Theft Jumps to $370 Million in January as Phishing Dominates Losses
Deatak Inc. Targeted by Play Ransomware Attack
December 2025 Healthcare Data Breach Report
DragonForce Ransomware Hits T&M Electric and Mullinax Ford
Encountered fraud messages in the UAE? Here’s what you need to know
Epstein allegedly had a “personal hacker,” was into cyberwar and malware
eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware
Everest Ransomware Breaches Iron Mountain, Polycom, Hosokawa Micron, Shinwa, SIGMA, Acu Trans, and Stellium
Exploit Pack Breach: Full Repository of Exploits and Shellcodes Leaked
Fancy Bear Exploits Microsoft Office Flaw in Ukraine, EU Cyber-Attacks
Federal Communications Commission (FCC) urges telecoms to boost cybersecurity amid growing ransomware threat
Flaw in Broadcom Wi-Fi Chipsets Illuminates Importance of Wireless Dependability and Business Continuity
Former Google Engineer Found Guilty of Stealing AI Secrets
From Clawdbot to OpenClaw: This viral AI agent is evolving fast - and it's nightmare fuel for security pros
Gibraltar: Data breach undermined police integrity, judge says, as officers fined £5,000 each
Hackers attempt to extort parents after school refuses to pay ransom fee
Hackers claim 1.4 TB theft from Iron Mountain, major data management company
Hackers exploit vishing to bypass MFA at Okta
Hackers have attacked a Belgian school and are demanding €50 for every child
Hackers share chip photos allegedly stolen from HP subsidiary, Poly
Hackers who hit OkCupid, Bumble, and Crunchbase bypass security with a simple trick: a phone call
Hackers Wipe MongoDB Databases and Leave Ransom Notes in Active Attacks
HCIactive Data Breach Exposes Sensitive Personal Data of Over 3 Million Individuals
How state-sponsored attackers hijacked Notepad++ updates
Hugging Face Repositories Abused in New Android Malware Campaign
Ivanti Issues Urgent Fix for Critical Zero-Day Flaws Under Active Attack
Jeffrey Epstein employed a private hacker, new documents reveal
Jeffrey Epstein’s alleged ‘personal hacker’ revealed in DOJ documents
Major health provider data breach may have affected thousands more people - over 700k now thought to have been hit
Malicious ‘Mac Cleaner’ Ads On Google Redirect Users To Phishing Nightmares
Malicious MoltBot skills used to push password-stealing malware
Mandiant Reports ShinyHunters Extortion Tactics, Vishing, and SSO Compromise Target Cloud Environments
Massive 31.4 Tbps DDoS attack breaks records: How the 'apex' of botnets could be weaponizing your home devices
Michigan Sugar Data Breach Affects 16,689 People
Moltbook: fear data breach, not an AI apocalypse
Multi-channel phishing drives new defense strategies for Philippines firms
National Security Agency (NSA) Publishes New Zero Trust Implementation Guidelines
NationStates confirms data breach, shuts down game site
New Britain, Connecticut, Works to Recover from Cyber Attack
New GlassWorm attack targets macOS via compromised OpenVSX extensions
New Punishing Owl Hacker Group Targeting Networks of Russian Government Security Agency
Notepad++ hijacked by suspected state-sponsored hackers
Notepad++ hit by Chinese state-sponsored group, injecting malware into updates
Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users
Notepad++ update feature hijacked by Chinese state hackers for months
Notepad++ Update Hijacking Linked to Hosting Provider Compromise
Notepad++ Updates Delivered Malware After Hosting Provider Breach
Nova Biomedical Reports Data Breach Affecting More Than 10,000 People
Nuneaton school fully operational after recovery from cyber attack
Open VSX Registry Deploys GlassWorm Malware via Four Malicious Extension Versions
Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm
OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link
OpenClaw is a security nightmare - 5 red flags you shouldn't ignore (before it's too late)
Over 1,400 MongoDB Databases Ransacked by Threat Actor
Panera Bread breach affected 5.1 Million accounts
Panera Bread breach impacts 5.1 million accounts, not 14 million customers
PDF phishing attack leads to stolen Dropbox credentials
Phishing Scam Uses Clean Emails and PDFs to Steal Dropbox Logins
Punishing Owl Hacker Group Targets Russian Government Networks
Qatar: National Cyber Security Agency issues binding decision against sports company due to personal data breach
Qilin Attacks Stephenson Ziegenhorn & Bernard, Sprokkit, INGUS, JCM Agricola
Ransomware report notes fourth quarter 2025 attack surge
Ransomware Strikes Rome's Leading University
Ransomware Without Encryption: Why Pure Exfiltration Attacks Are Surging
Research Says Gen Z Is Nearly 3 Times More Vulnerable To Phishing Than Boomers, Here’s Why
Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users
Rome: Hacker attack on Sapienza University, several systems affected and blocked
Russian APT28 Exploit Zero-Day Hours After Microsoft Discloses Office Vulnerability
Russian Hacker Alliance Launches Large-Scale Cyberattack On Denmark
Russian hackers exploit recently patched Microsoft Office bug in attacks
Russian ransomware hackers allegedly hit Tulsa airport in cyberattack, dump private files online as proof
San Juan Andes Health System Data Breach Exposes Patient Photos
Scottish Council Had “Gaps in Cybersecurity” Prior to Cyber-attack
ShinyHunters flip the script on MFA in new data theft attacks
ShinyHunters Leads Surge in Vishing Attacks to Steal SaaS Data
ShinyHunters-Branded Extortion Activity Expands, Escalates
Spain Ministry of Universities Data Breach
Spyware maker is hijacking diplomatic efforts to limit commercial hacking, civil society warns
State-Aligned Actors Exploit Unrest with RedKitten AI-Accelerated Campaign Targeting Iranian Protests
Taiwan HVAC Engineering Association Data Breach by Hexvior Group
The Noise in the Silence: Unmasking CISA's Hidden KEV Ransomware Updates
Top ‘Trusted’ Platforms are Key Attack Surfaces
Tulsa Airport Tech Teams Contain Ransomware Attack
Was Your Data Exposed in the Latest Under Armour Breach? Here’s What You Should Do
Where National Security Agency (NSA) zero trust guidance aligns with enterprise reality
WoundTech Data Breach Exposes 160,000 Sensitive Patient Records
