Welcome to DBD. On March 8th 2026, DBD celebrated it's sixth anniversary and 
Dentons Senior Analyst, Washington D.C.
Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 6th April and 12th April 2026.12th April
A hacker used Claude and ChatGPT to steal 150GB from Mexican government agencies in what investigators are calling one of the first confirmed cases of AI-assisted state-scale cyber espionage
Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621
Ahead of Grand Theft Auto VI (GTA VI) launch, Rockstar suffers data breach, hackers threaten to leak inside info on April 14th
Apple iCloud Scam Alert! Don't Fall for 'Your Photos Will Be Deleted' Phishing Emails
CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads
Critical Marimo pre-auth RCE flaw now under active exploitation
Cyber Police Bust German Hacker for Hire at Luxury Bangkok Condo
FBI Atlanta and Indonesian National Police Take Down W3LLSTORE Phishing Marketplace
Grand Theft Auto 6 Developer Confirms Data Breach: “No Impact on Our Organization or Players”
Grand Theft Auto 6 (GTA 6) developer Rockstar Games says new data breach "has no impact"
Grand Theft Auto 6 (GTA 6) Developers Rockstar Games Respond To Recent Data Breach By Hackers Demanding Ransom
Grand Theft Auto 6 (GTA 6) Rockstar Data Breach: Rockstar Games Confirms Limited Data Exposure, ShinyHunters Allegedly Exploit & Demand Ransom with April 14th Deadline
Hacker Used Claude Code, GPT-4.1 to Exfiltrate Hundreds of Millions of Mexican Records
Hong Kong: Medical intern suspended at Princess Margaret Hospital over alleged social media patient data breach
Nearly 800 Hungarian government passwords found exposed online ahead of election
New phishing scam targets Apple users with fake warnings that their iCloud data will be deleted
‘Pay or Leak’: ‘Grand Theft Auto 6’ Developers Hit With a Data Breach; Ransom Demanded
Ransomware Attack Disrupts Operations in Winona County, National Guard Deployed
Rockstar confirms Grand Theft Auto 6 (GTA 6) data breach, as hackers threaten leak
Rockstar confirms new data breach
Rockstar Data Breach Shocks Grand Theft Auto 6 (GTA 6) Fans as Hackers Threaten Leak Before April 14th Deadline
Rockstar Data Breach Tied to External Service, Ransom Demand Issued
Rockstar Games Confirmed a Data Breach Orchestrated by ShinyHunters
Rockstar Games Confirmed Studio Suffered a Hacker Attack
Rockstar Games confirms data breach after ShinyHunters hacker group threats
Rockstar Games Faces Ransom Deadline After Data Breach
Rockstar Games hit with ransom demand after third-party data breach
Rockstar Games Hit by Fresh Cyberattack As ShinyHunters Hacker Group Issues ‘Pay or Leak’ Threat With April 14th Deadline
Rockstar Under Pressure After Hacker Group ‘ShinyHunters’ Threatens Data Leak By April 14th
The state of ransomware in the Caribbean
Why Phishing Awareness Training Is No Longer Optional for Modern Organizations
11th April
C2K Cyber Attack Disrupts Northern Ireland Exam Preparations
China Imposes New Security Curbs After Alleged Supercomputing Data Breach
Data breach hits hundreds of thousands of Interrail users
FBI Atlanta Crushes 'W3LL' Phishing Kit Tied to $20 Million Fraud Attempts
FBI Recovers Deleted Signal Messages Through iPhone Notifications
German hacker facing 74 cybercrime warrants arrested in Bangkok
Google Chrome Update Disrupts Infostealer Cookie Theft
Grand Theft Auto 6 (GTA 6) Developer Confirms Another Data Breach, Hackers Demand Ransom
Grand Theft Auto 6 (GTA 6) Developer Rockstar Confirms 'A Limited Amount of Non-Material Company Information Was Accessed' in Third-Party Data Breach, as Hackers Issue Ultimatum: 'Pay or Leak'
Grand Theft Auto 6 (GTA 6) developer Rockstar confirms another data breach as hackers threaten leaks
Grand Theft Auto 6 (GTA 6) developer Rockstar Games confirms data breach, says there is no impact on operations
Grand Theft Auto 6 (GTA 6) maker Rockstar says data breach and ransom plot have 'no impact' on players
Hacker steals 10 petabytes of data from China’s National Supercomputing Center
Hacker Uses Claude and ChatGPT to Breach Multiple Government Agencies
Massive Data Breach Exposes Hundreds of Thousands of Australians' Personal Info
New Zealand: Manage My Health Faces Ransom Demands After Massive Cyber Attack
OpenAI flags security issue in third-party tool, says no user data breach
Over 20,000 crypto fraud victims identified in international crackdown
Ransomware Gangs Expand Use of EDR Killers Beyond Vulnerable Drivers
Ransomware Groups Increasingly Turn to EDR Killers Outside Vulnerable Driver Tactics
Rockstar confirms data breach, says infiltration was 'non-material' to company data or gamer info
Rockstar Confirms Data Breach, Says There’s No Impact on Company or Players
Rockstar confirms new data breach, after hacker group threatens: ‘Pay, or we leak’
Rockstar Games confirms cyber attack but denies risks to Grand Theft Auto 6 (GTA 6) development
Rockstar Games Confirms Data Breach
Rockstar Games confirms data breach ahead of Grand Theft Auto 6 (GTA 6) launch
Rockstar Games Faces Hacker Deadline as Data Breach Threat Looms
Rockstar Games Faces New Data Breach Claim as ShinyHunters Sets Deadline
Rockstar Games Hacked, Team Behind It Threaten A Massive Data Leak If Not Paid Ransom
Rockstar Games has confirmed it was hit by third-party data breach
Rockstar Games says data breach was with a third party that and has no impact on company or players
ShinyHunters Claims Rockstar Games Snowflake Breach via Anodot
South Korea to inspect call centers after major data breach
US officials warn banks over cyber risks from Anthropic’s new AI model
10th April
10 Petabytes Stolen, Missiles Exposed? Hacker Claims Chilling Breach of China’s Top Secret Supercomputer
A North Korean hacker "exploded" a virus on his own PC, exposing a scheme of fake IT workers with an income of $1 million per month
Analysis of one billion CISA Known Exploited Vulnerabilities (KEV) remediation records exposes limits of human-scale security
Android Banking Trojan Linked to Cambodia Scam Compounds Hits 21 Countries
Auction house Christie's fined £145,000 in South Korea over 2024 data breach incident
Aviation operator Shine Aviation added to growing list of ransomware victims
Azerbaijan identifies cyber attack with Hungary’s assistance
Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers
Blue Dart Express reports low severity IT security incident with no data breach
Canadian employees targeted in payroll pirate attacks
Carwah Data Breach Exposes Customer Records and Licenses
Christie's slapped with 280 million won penalty, 7.2 million won fine for data breach
ClickFix campaign delivers Mac malware via fake Apple page
CPUID Website Compromised: CPU-Z and HWMonitor Serve Malware
CPUID website hacked: users report HWMonitor and CPU-Z delivering malware
Cyber Attack on Schools Disrupts Northern Ireland's Education Network
Dark web ransomware networks adopt AI tools to expand global cyber threats
Deleted your Signal app? FBI might still extract your messages
Dutch hospitals face disruptions after ransomware attack on software provider ChipSoft
Estonia's state agencies sent phishing letters under prominent think tank's name
Eurail data breach impacts 300,000 Tourists leading to their passport info steal
Fake Internal Revenue Service (IRS) refund email uses Elon Musk to lure victims into giving up bank details
February 2026 Healthcare Data Breach Report
Federal Communications Commission (FCC) proposes new rule to further crackdown on illegal robocalls
Federal Communications Commission (FCC) Proposes Tougher Know-Your-Customer (KYC) Rules to Crack Down on Illegal Robocalls
Ficha Data Breach Exposes Proprietary AI Source Code
Forestal Atlántico Sur (FAS) Hit by Ransomware Attack
GitLab Security Update Fixes High-Severity CVE-2026-5173, 11 Other Flaws
GitHub, GitLab Abused for Malware and Phishing Campaigns
GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs
Google Chrome Rolls Out Protection Against Infostealers Targeting Session Cookies
Google Rolls Out Device Bound Session Credentials (DBSC) in Chrome 146 to Block Session Theft on Windows
GraphAlgo Scam: Lazarus Hackers Register Real US LLCs to Spread Malware
Guangdong Caiding Market Group Faces Data Breach After Extortion
Gunra ransomware lists Eric Davis Dental as breach victim
Gulfstream Services Data Breach Exposes Range of Personal and Medical Information
Hacker Hijacks Downloads for Popular PC-Monitoring Tools to Serve Malware
Hacker Unknown now known, named on Europol’s most-wanted list
Hackers Abuse GitHub and GitLab to Host Malware and Credential Phishing Campaigns
Hackers claim breach exposing Moderna, J&J, Bayer employee data
Health insurance lead sites sell personal data within seconds of form submission
How banning ransomware payments could elevate risk, not reduce it
How to protect your personal information after a bank data breach in South Africa
Iran Crisis Highlights Rising Gulf Cybersecurity Risks to Critical Infrastructure
Iran-linked hacker group Handala to pause cyberattacks on US, but not Israel
‘It reads like a spy novel’: $280 million theft from Drift involved North Korean fake companies, cutouts
Jones Day's client data posted online after cyber attack
Just Three Ransomware Gangs Accounted for 40% of Attacks Last Month
Kenya: AfyaRekod Data Breach Compromises Patient Medical Records
LinkedIn hit with lawsuits over alleged illegal browser extension tracking
Linux Foundation leader impersonated in Slack phishing campaign
Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure
Microsoft Recall Flaw Exposes Decrypted User Data, Researchers Find
Nearly 4,000 US industrial devices exposed to Iranian cyberattacks
Nigeria: Firm sues Nigeria Bottling Company (NBC) for N82.5m over alleged data breach
‘One scheme, one loss’: why limits, vendor fraud and phishing tests matter in crime insurance cover
Over 300,000 travelers affected by Eurail data breach
Pay up for ransomware and they’ll be back for more
Poisoned “Office 365” search results lead to stolen paychecks
Police investigating cyber attack on Northern Ireland school IT systems
Ransomware attack on ChipSoft knocks Electronic Health Record (EHR) services offline across hospitals in the Netherlands and Belgium
Ransomware Attack on Vivaticket Disrupts Online Bookings at European Museums and Monuments
Ransomware surges across auto industry
Remcos RAT Deployed Through New Google Storage Phishing Campaign
Russia’s covert UK subsea cable operation exposes link between physical and cyber warfare
School’s Out, But Security's Not: Preparing for K-12 Summertime Security
Severn Trent customers hit by data breach after 'mistake'
Supply chain attack at CPUID pushes malware with CPU-Z/HWMonitor
Taiwan chip equipment maker Grand Process Technology targeted in ransomware attack
The Netherlands not in favor of legal ban on ransom payments to hackers
The Security Gap Hiding in Your Salesforce Org
Third-Party Android Vulnerability Leaves Over 50M Users Exposed
This Python notebook flaw shows how fast hackers are acting on advisories
Threat Actors Exploit GitHub and GitLab For Malware Delivery and Phishing Operations
To counter cookie theft, Chrome ships device-bound session credentials
Top Secret Clearance Holder Charged With Leaking Classified National Defense Information
U.S. Treasury Rolls Out Cybersecurity Information Sharing Initiative as Crypto Attacks Rise
UK National Crime Agency-Led Operation Atlantic Freezes $12 Million Funds Tied to Approval Phishing Scams
UNC6783 Hackers Use Fake Okta Pages in Corporate Breach Campaign
US Treasury takes crypto under its cybersec wing amid Mythos AI threat
US, UK and Canada Freeze $12 Million in Crypto Phishing Operation
What vibe hunting gets right about AI threat hunting, and where it breaks down
When Agentic AI Becomes Your Riskiest Third Party
Windward Life Care Data Breach: 25GB of Data Stolen
Winona County Hit by Cyber Attack
9th April
86% of businesses refused to pay cyber ransoms in 2025
113,000 explicit prompts from AI girlfriend platform exposed, many linked to user IDs
300,000 People Impacted by Eurail Data Breach
A Nigerian Bank’s CEO Had His Home & Transactions Exposed - Hacker Says 900,000 Customers Are Next
A ransomware attack on Dutch patient software has forced hospitals to disconnect their systems
Acrobat Reader zero-day exploited in the wild for many months
Adobe Reader Zero-Day Exploited to Steal Data via Malicious PDFs
Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025
Akira Breach: Newman & Marquez, Sehlmann Fensterbau, Shingle & Gibb
Atomic Stealer MacOS ClickFix Attack Bypasses Apple Security Warnings
Attackers Weaponize Real Meta Business Manager Notifications In New Phishing Campaign
Azerbaijan: Mass phishing is occurring on behalf of state institutions
Bitcoin Depot Discloses $3.6 Million Crypto Theft Following System Breach
Bitcoin Depot Reports $3.6m Crypto Theft After System Breach
Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region
Bitwyre Crypto Exchange Suffers Source Code Data Breach
CentroNÃa Data Breach Exposes PII and PHI
Chicago Teen Hacker Talks As Prison Looms In Cyberattack On Millions
China data breach: Hacker claims 10 Petabytes stolen from Tianjin supercomputer
China Hit by 10PB Data Breach at Supercomputing Center
China Hit By Record Data Breach At Supercomputing Center
China Just Allegedly Suffered The Biggest Hack In The Country's History
China's supercomputing centre may have suffered major data breach
China’s Tianjin Supercomputing Center hit by ‘unprecedented’ cyber breach
Chinese Supercomputer Allegedly Hacked, 10 Petabytes of Data Stolen
Claude Code Can Be Manipulated via CLAUDE.md to Run SQL Injection Attacks
Claude helps researcher dig up decade-old Apache ActiveMQ RCE vulnerability (CVE-2026-34197)
ClickFix macOS Attack Uses Script Editor to Bypass Security Controls
Critical Adobe Reader zero-day lets PDFs steal files, may have been active for months
Cryptocurrency ATM giant Bitcoin Depot reports $3.6 million stolen in cyberattack
Cybercriminals target accountants to drain Russian firms’ bank accounts
Deepfake-As-A-Service Is The New Ransomware-As-A-Service
Dutch healthcare software vendor ChipSoft hit by ransomware attack
EngageLab SDK Flaw Exposed 50 Million Android Users, Including 30 Million Crypto Wallets
Eurail Confirms Security Breach Affecting Over 300,000 U.S. Individuals
Eurail Data Breach Exposes 300,000 Passports, Impacts DiscoverEU Program
Eurail Data Breach Exposes Data of Over 300,000 Travelers
Eurail Data Breach Exposes Passport Numbers of Over 300,000 Travelers
Eurail data breach impacted 308,777 people
Eurail data breach impacted more than 308,000 U.S.-based travellers
Eurail says December data breach impacts 300,000 individuals
‘FlamingChina’ hacker claims to have stolen over 10 petabytes of advanced military data from China’s National Supercomputing Center in possibly the biggest hack of all time
German police identify REvil and GandCrab mastermind now living in Russia
Global Talent Exchange Data Breach Exposes 80K User Records
Google Chrome adds infostealer protection against session cookie theft
Google Warns of New Campaign Targeting BPOs to Steal Corporate Data
Google Warns of New Threat Group Targeting BPOs and Helpdesks
Governance Gaps Emerge as AI Agents Drive 76% Increase in Non-Human Identities (NHIs)
Grupo2000 Data Breach Exposes Spanish User Information
GWF Group Data Breach: Industrial Solutions Provider Compromised
Hacker breaches China supercomputer, leaks 10PB of military data
Hacker breaches Chinese supercomputer, attempts to sell stolen intel
Hacker Siphons £700K from U.K. Energy Firm in Payment Redirect
Hacker stole 10 petabytes of military research data from Chinese supercomputer
Hacker stole £700,000 from UK energy company by redirecting payment
Hacker 'trying to sell stolen data after breaching Chinese supercomputer'
Hackers Abuse Legitimate Meta Business Manager Notifications to Deliver Phishing Emails
Hackers claim breach on Brazil’s Experian: Is every single person in Brazil part of this leak?
Hackers Claim Massive 10PB Data Breach at Tianjin Supercomputer Center
Hackers Exploit Adobe PDF Flaw for Months to Steal Data, No Fix Yet
Hackers exploiting Acrobat Reader zero-day flaw since December
Hackers Hired to Target Android, iCloud of Egyptian, Lebanese Journalists and Activists
Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot
Healthcare IT solutions provider ChipSoft hit by ransomware attack
Hiscox warns ransomware hits UK SMEs more than once
Homeowners Targeted in Phishing Scam Demanding Fake Permit Fees
In One Of China's Biggest Cyber Heist, Hacker Steals Over 10 Petabytes Of Data From Supercomputer
Infodesk Data Breach: J&J, Moderna, Merck, Sanofi & More
Inigo App Data Breach Exposes Over One Million Emails
Job scammers are using a Google tool to send phishing emails straight to inboxes
Jones Day reveals ransomware attack
Korea fines Christie's $189,000 over data breach
Lotte Card given notice of $3 Million penalty, business suspension over massive data breach
Lotte Card given prior notice of penalty over massive data breach
Massive Data Breach Exposes 337K Los Angeles Police Department (LAPD)-Linked Records
Massive data breach puts 45,000 healthcare records at risk
Meta Business Alerts Abused for Phishing Campaigns
Microsoft exposes Russian hacker group hijacking home routers for spying
Microsoft Flags Fast-Moving Ransomware, Router-Based Espionage Threats
Microsoft Warns of Daily Breaches in Device Code Phishing Campaign
Middle East Hack-for-Hire Operation Traced to South Asian Cyber Espionage Group
New Apple Scam Hits Millions of iPhone Users Worldwide, Draining Bank Accounts
New Jersey Long Term Care Pharmacy Data Breach Affects 133,800 Patients
New ‘LucidRook’ malware used in targeted attacks on NGOs, universities
New macOS Malware notnullOSX Targets Crypto Wallets Over $10K
New Phishing Attack Via Google Storage Deploys Remcos RAT
New Phishing Campaign Exploits Google Storage to Deliver Remcos RAT
New VENOM phishing attacks steal senior executives' Microsoft logins
NHS Scotland Domain Breached to Host Adult Content and Illegal Sports Streams, Exposing Infrastructure Vulnerabilities
NNPC Health Maintenance Organisation Limited Data Breach
North Korean hacker "detonates" malware on own PC, exposing $1M-a-month IT worker scam
Northern Ireland: Education Authority (EA) issues new warning to schools after cyber attack
Northern Ireland schools urged to complete C2k reset before new term after cyber attack disruption
Northern Ireland schools warned to reconnect C2k accounts before new term or face disruption
One Cyber Attack Prepared Winona County, Minnesota, for Another
OneDigital Data Breach: 28,414 Individuals Affected
Phishers sneak through using GitHub and Jira’s own mail delivery infrastructure
Phishing attacks target Arab journalists' accounts
Phishing scam targets homeowners with fake permit invoices
PricewaterhouseCoopers (PwC) says identity is the main cyber battleground as AI speeds attacks
Ransomware gang claims hack of Western Australia’s Shine Aviation
Russia accuses former Radio Free Europe journalist of aiding cyberattacks for Ukraine
Russian Hackers Exploit SOHO Routers for DNS Hijacking Campaign
'Several dozen' high-value corporations hit by new extortion crew in helpdesk phishing spree
Signature Healthcare Cyberattack Causes Service Disruptions, Treatment Delays
Signature Healthcare Hit by Anubis Ransomware Attack
Smart Slider updates hijacked to push malicious WordPress, Joomla versions
Socio-financial impact of data breach
South Korea's Lotte Card fined £2.51 million for data protection failures
Standard Bank says data breach did not impact banking systems...just your personal information
STX RAT Targets Finance Sector With Advanced Stealth Tactics
Telenor is being sued for handing over phone data that was used to arrest and execute dissidents
The Italian DPA’s Fine Against Intesa Sanpaolo: Lessons for Access Management and Data Breach Handling
Third-party integration tool Anodot data breach hits Snowflake customers
Threat Actors Pose As Linux Foundation Leader In Slack Phishing Campaign
Treasury Department announces crypto industry cyber threat sharing initiative
TruView BSI Data Breach Exposes SSNs and Government IDs
UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns
UNC6783 Turns BPO Providers into Cyberattack Gateways
US healthcare most targeted by ransomware groups
Victorian resort hotel allegedly breached by Space Bears ransomware
Walls have ears: how your internet cable can be turned into a covert listening device
Water Treatment Facility Downed with Ransomware Attack
What are EDR killers? How ransomware attacks disable EDR and how to stop it
What Is A Data Breach? Hims & Hers and the human cost of a support-system hack
Why employees keep clicking phishing links and how it costs business millions
Winona County Victim of Cyber Attack
Zephyr Energy seeks to recover diverted funds after US cyber attack
8th April
10 Petabytes of Classified Chinese Defense Data Allegedly Stolen by Single Hacker
13-year-old bug in ActiveMQ lets hackers remotely execute commands
179 critical infrastructure devices exposed online via Modbus protocol, researchers warn
1,200 Providence patients’ information potentially shared in data breach
A hacker has allegedly breached one of China’s supercomputers and is attempting to sell a trove of stolen data
A1TechDeals Suffers Data Breach Exposing 71,000 Users
AMAInterview.ai Data Breach Exposes 24K User Records and Resumes
Americans lose $21 billion to cybercrime as AI fuels fraud surge
Angry Hacker Drops Microsoft Zero-Day Exploit, 1 Billion Users Warned
Anthropic develops AI model that smashes Google, OpenAI and is too dangerous for public release
Anthropic Launches Project Glasswing to Use AI to Find and Fix Critical Software Vulnerabilities
Anthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems
Anthropic’s new AI model finds and exploits zero-days across every major OS and browser
APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies
APT28 DNS Hijacking Targets SOHO Router Vulnerabilities, Impacting 200 Organizations and 5,000 Consumer Devices Globally
Asia emerges as new hotspot for healthcare ransomware
Ayuntamiento de Benito Juarez Suffers Major Data Leak
Bangladesh: AusBD Bazaar Data Breach Exposes 500,000 Records
Belgium: A phishing campaign is impersonating SPF Finances, agency warns
BlueHammer: Windows zero-day exploit leaked
‘BlueHammer’ Exploit Targets Windows, Potentially Impacting 1 Billion+ Devices
Breach exposes sensitive Los Angeles Police Department (LAPD) files stored in city attorney system
Breach of Israeli AI firm Anodot suspected in attacks on Snowflake customers
BreachForums administrator identified as well-known ethical hacker
Cambodian parliament passes landmark cybercrime law after scam centre scrutiny
Capita’s troubled Civil Service Pension Scheme hit by data breach
CareCloud Breach Exposes Millions: What Happened and Are You Affected Right Now?
Centro de Estudios ClÃnicos Anáhuac Mayab Data Breach
Chaos malware expands from routers to Linux cloud servers
China Data Breach Shock: 10 Petabytes of Military Secrets Allegedly Exposed
China supercomputing hub allegedly hit by massive data breach
China supercomputing hub hit by massive, alleged data breach
China-linked hackers shrink ransomware attacks to hours
China's Supercomputing Hub Faces Major Data Breach Allegations
Chinese government supercomputer breached, hacker claims 10PB data theft
ChipSoft reports massive ransomware attack
CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday
CISA warns Iran-linked hackers are actively targeting US critical infrastructure
Claude Discovers Apache ActiveMQ Bug Hidden for 13 Years
Criminal wannabes even more dangerous than the pros, says ex-FBI cyber chief
Critical Flowise RCE Vulnerability Actively Exploited, Thousands of Systems at Risk
Critical Vulnerability in Ninja Forms Exposes WordPress Sites
Cyber attack by a Russian Spy Agency (GRU) associated group in several Western states, thwarted by the FBI
Cyber attack hits Dutch patient records holder Chipsoft
Cyber Criminal Group 'Silent' Targets Major U.S. Law Firm, Jones Day, in Phishing Hack
Cybercriminals move deeper into networks, hiding in edge infrastructure
Dear Britons, Russia’s Fancy Bear spies are breaking into your TP-Link routers
Dutch healthcare software vendor goes dark after ransomware attack
Eastern Illinois University Database Leaked on Hacker Forum
El Wastani Petroleum Company Suffers Ransomware Attack
Email provider leak containing over 40 Million records exposes L’Oreal, Renault, French Embassy traffic
Eurail B.V. Data Breach Exposes Data of 308,777 Users
EvilTokens Phishing Kit Uses Microsoft Device Codes to Bypass MFA
EvilTokens Uses Stolen Microsoft 365 Tokens, AI to Supercharge Business Email Compromise (BEC)
Ex-Meta Engineer Accused of Mass Facebook Data Breach
FBI reports cyber threats to critical infrastructure intensify as US cybercrime losses hit $21 billion, exposes risk
FBI Takes Down APT28 Network Behind Global DNS Hijacking Attacks
Flatpak 1.16.4 fixes sandbox escape and three other security flaws
Germany intelligence agency warns of Russian APT28 cyber spying
Google API Keys Quietly Gain Access to Gemini on Android Devices
Governor Tim Walz Deploys National Guard After Winona Cyberattack Disrupts Services
Hack-for-hire group caught targeting Android devices and iCloud backups
Hacker Claims to Have Stolen Over 10 Petabytes of Sensitive Military Data from China’s Supercomputing Center
Hackers claim breach of major Colombian banks, leak customer data samples
Hacker Nabbed 'Some Of Los Angeles Police Department's Most Closely Guarded Records' In Massive Breach
Hackers expose 70,000 NSFW prompts "linked to unique user IDs" from AI girlfriend platform
Hackers steal and leak sensitive Los Angeles Police Department (LAPD) police documents
Hackers Use AI to Bypass Passwords in Large Scale Phishing Attack
Hackers use pixel-large SVG trick to hide credit card stealer
Hackers Used EvilTokens, ClickFix Campaign to Attack Claude Code Users with AMOS Stealer
Healthcare sector leads in ransomware attacks
Iran‑Backed Threat Actors Hit US Critical National Infrastructure (CNI) Providers via Internet‑Facing Operational Technology (OT) Assets
Iran-Linked Hackers Breach U.S. Industrial Systems, Trigger Disruptions
Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed Programmable Logic Controllers (PLCs)
Iranian Attackers Are Targeting U.S. Energy, Water Systems, Federal Agencies Say
Iranian cyber activity hits US energy, water, and government networks
Iranian-Linked Cyber Actors Target US Critical Infrastructure, Security Leaders Respond
Israeli Drone Director Vered Haimovich Targeted in Hacktivist Leak
Japan: SUUMO, CHINTAI, At Home, HOME’S Suffer Data Breach
Jones Day is latest BigLaw firm to fall victim to cyber ‘phishing’ incident
Kukje Pharm Co., Ltd. Suffers Ransomware Attack by Gunra
Lawsuit filed against AAA Northeast over data breach affecting driving school
Los Angeles City Attorney’s Office Faces Data Breach of Los Angeles Police Department (LAPD) Records
Los Angeles City Attorney’s Office suffers data breach of Los Angeles Police Department (LAPD) records
Los Angeles Police Department (LAPD) data breach: Thousands of confidential police records leaked in city attorney hack
Los Angeles Police Department (LAPD) Records Hacked and Exposed
Maine Police Say a Phishing Scam Targets Registered Sex Offenders
Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices
Massachusetts Hospital Diverts Ambulances as Cyberattack Causes Disruption
Massive China Supercomputer Breach Alleged As Hacker Markets 10 Petabytes of Defense Data In Potential Historic Cyber Heist
Massive Data Breach Hits Chinese Supercomputer Center
Massive hack exposes thousands of sensitive Los Angeles Police Department (LAPD) records, report says
Meta engineer creates shadow program to stalk private feeds, covertly downloads 30,000 images
Microsoft Copilot just quietly allowed sending data outside of the EU
Microsoft flags China-based hackers using vicious new 'rapid attack' zero-days to launch ransomware at targets across the world
Microsoft warns of Storm-1175's rapid Medusa attacks
Minnesota governor sends national guard to county after cyberattack
National Cyber Security Centre (NCSC) issues alert over Russian hacker campaign targeting SOHO routers
New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy
New ClickFix Attack Uses Node.js Malware via Tor to Steal Crypto
New Disruption Opportunities in the Evolving Ransomware Ecosystem
New macOS stealer campaign uses Script Editor in ClickFix attack
New Scam Alert: QR Codes Replace Links in Traffic Ticket Phishing
New UNC6783 hackers steal corporate Zendesk support tickets
Nike faces class-action lawsuit over alleged January 2026 data breach
North Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust
Northern Ireland: No evidence of data corruption after Education Authority (EA) cyber attack
Northern Ireland Schools Cyberattack Disrupts Access to Educational Systems
Ontario Provincial Police (OPP) warns of scam affecting businesses after Ottawa Valley business defrauded
Operation Masquerade: FBI Disrupts Russian Router Hacking Campaign
OuterBox Data Breach: Personal Information Including SSNs Exposed
Passport numbers for more than 300,000 leaked during December Eurail data breach
PicTools.AI Data Breach Exposes 31,095 User Records
Qilin confirms cyberattack on German political party Die Linke, threatens data leak
Ransomware attack on company that manages Dutch hospitals' patient files
Ransomware group claims hack of legal giant Jones Day
Ransomware Response: How Businesses Regain Control Under Pressure
Rostelecom DDoS Attack Triggers Major Russian Network Outage Impacting Banks, Government Portal, Games
Russian Forest Blizzard Hackers Hijack Home Routers for Global Spying
Russian intelligence hacker groups continue hybrid warfare against Europe by hacking routers
SaaS Notification Pipeline Abuse, GitHub Phishing Campaigns, and Jira Notification Hijacking Increased, Cisco Talos Warns
Service Telecom Data Breach Exposes 2.8 Million Users
Shore Gardens Data Breach Exposes Personal Info of Residents
Social engineering attacks on open source developers are escalating
Space Bears claims cyber attack on Sydney dental clinic
State Assists After Cyber Attack in Winona County, Minnesota
Stimulation.Studio Data Breach Exposes User Information
Storm-1175 Deploys Medusa Ransomware Within 24 Hours of Flaw Disclosure
Storm-1175 Deploys Medusa Ransomware Within Hours of Flaw Disclosure
Synergy Data Breach Impacts 900K Customer Records
Two prominent Egyptian journalists targeted with elaborate spearphishing campaign
UK warns of Russian hacker threat targeting routers
Ukraine: Administrative Services Centre of Ternopil Data Breach
UNC1069 Phishing Campaign Exploits Microsoft Teams Vulnerabilities
US Thwarts DNS Hijacking Network Controlled by Russian APT28 Hackers
Why Cybercriminals Are Using Large Language Models to Automate Global Ransomware
7th April
1 Billion Microsoft Users Warned As Angry Hacker Drops 0-Day Exploit
5 Reasons You Should Update Your Passwords Regularly
$20 Billion Lost to Cybercrime as AI and Investment Scams Surge
AI Agents and Non-Human Identities Creating Critical Security Gaps
AI-Driven Phishing: The "Hyper-Personalized" Threat Reaches Record Highs in Q1 2026
AI-enabled device code phishing campaign exploits OAuth flow for account takeover
AlumnForce Data Breach Exposes 2.7 Million User Records
Americans lost a record $21 billion to cybercrime last year
Authorities disrupt router DNS hijacks used to steal Microsoft 365 logins
BlueHammer Zero-Day Exploit Leverages Windows Privilege Escalation, Prompts Security Concerns
Boston Mountain Data Breach Impacts 4,800 Patients
Bring Your Own Vulnerable Driver (BYOVD) technique employed by Qilin, Warlock ransomware gangs
British Facebook worker ‘downloaded 30,000 private images from social media giant in massive data breach’
Cabinet d’Etude en Securite Pyrotechnique Hit By Ransomware Attack
CareCloud Confirms Data Breach as Cybersecurity Investigation Continues
China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware
China-Linked Storm-1175 Uses Zero Days To Deploy Medusa Ransomware
Civil Service Pension Scheme: Capita confirms data breach
Cost of a Data Breach vs Cost of a Pentest
Critical Android Zero-Interaction Flaw Triggers Remote DoS Attacks
Critical Common Unix Printing System (CUPS) Vulnerability Chain Allows Remote Code Execution as Root
Critical Flaw in Windmill Developer Platform Allows Remote Code Execution - Proof-of-Concept (PoC) Published
Cyber Attack Targets Brockton Hospital
Cyber-enabled fraud, ransomware losses spike, FBI reports
Cyberattack hits Northern Ireland’s centralized school network, disrupting access for thousands
Cyberattack on German Democratic Socialist Party Die Linke, Claimed by Qilin Ransomware
Cyberattack on telecom giant Rostelecom disrupts internet services across Russia
Data Breach at Standard Bank Exposes Client Account Details
Data Breach Hits CareCloud’s Health Records System
Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access
EchoVPS Data Breach Exposes Source Code and User Database
False Iran war-themed missile alerts leveraged in Microsoft credential phishing attack
Fast-moving Storm-1175 uses new exploits to breach networks and drop Medusa
FBI claims Cyber Attack victims incurred $17.7 billion loss in 2025
FBI, Pentagon warn of Iran hacking groups targeting operational technology
Figure Technology confirms data breach affecting nearly 1 million users
Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed
Former Meta Engineer Investigated for Downloading 30,000 Private Images
FortiClientEMS Vulnerabilities Under Active Exploitation, Expose Systems to RCE
Fortinet Releases Emergency Patch After FortiClient EMS Bug Is Exploited
German authorities identify key figure behind REvil ransomware gang
German authorities want your help finding the hackers behind GandCrab and REvil
German Police Unmask REvil Ransomware Leader
German political party Die Linke targeted in ransomware attack
Germany Names Suspected Leader of REvil and GandCrab Ransomware Gangs
GitHub Abused as C2 In North Korea-Related LNK Phishing Campaign
Google study finds LLMs are embedded at every stage of abuse detection
GrafanaGhost Exploit Bypasses AI Guardrails for Silent Data Exfiltration
GrafanaGhost Exploit Exfiltrates Sensitive Grafana Business Data via Indirect Prompt Injection
GrafanaGhost Vulnerability Allows Data Theft via AI Injection
GPU Rowhammer Attack Enables Privilege Escalation and Full System Compromise
Hacker group “Handala” leaks data on Israel’s “Drone Queen”
Hackers exploit critical flaw in Ninja Forms WordPress plugin
Hackers Leverage LogMeIn Resolve and ScreenConnect In Phishing Attacks
Hackers Pose as Non-Profit Developers to Deploy Monero Mining Malware
Healthcare data breach hits system storing patient records
Heart South Data Breach Affects 46k Patients
How did Hasbro Handle a Cyber Attack on its Systems?
How phishing changed in 2025 and what to expect in 2026 and beyond
Hundreds of organizations compromised daily in Microsoft device code phishing attacks
Illy Caffè Data Breach Exposes Employee Info
Immigration Software Firm Hit With Data Breach Impacting 116,666 People - Names, Social Security Numbers and More Exposed
Iran launches cyber attack against US hours before Donald Trump's deadline
Iranian Hacker Group Handala Targets Israel’s UAV Backbone with First-Ever Leaked Photo of Elbit Design Team
Iranian hackers are targeting American critical infrastructure, US agencies warn
Iranian hackers' targeting of US critical infrastructure has escalated since start of war, US says
Is AI-powered phishing outsmarting your employees?
Jones Day confirms cyber attack after hackers access client files
Jones Day confirms data breach after hackers leak client files online
Jones Day data breach exposed files tied to 10 client matters
Jones Day hit by cyber attack linked to group targeting law firms
KyunCall Data Breach Exposes User Passwords and Profiles
Letters sent to possible victims in Syracuse police data breach that cost city $250K
Long-Running Malware Campaign Uses Fake Installers To Deploy RATs, Monero Miners
Malaysia’s digital growth and geopolitics widen cyber attack surface, raising critical infrastructure risks
Malicious web content can be used to deceive and exploit AI agents, Google DeepMind says
Massachusetts hospital turning ambulances away after cyberattack
Massive DDoS attack hits Russian state-run telecom, disrupting internet and banking
Max severity Flowise RCE vulnerability now exploited in attacks
Medusa Ransomware Fast to Exploit Vulnerabilities, Breached Systems
Medusa Ransomware Group Exploits Zero-Day Vulnerabilities Within 24 Hours of the Breach
Microsoft says Medusa-linked Storm-1175 is speeding ransomware attacks
Microsoft Warns Storm-1175 Exploiting Web-Facing Vulnerabilities to Deploy Medusa Ransomware
Microsoft Warns Storm-1175 Exploits Web-Facing Assets 0-Day Flaws in Medusa Ransomware Attacks
Multiple vulnerabilities harnessed by Chinese hackers for Medusa ransomware deployment
MyLovely.AI Data Breach Exposes Private Content of Over 106,000 Users
Neinstein Plastic Surgery Data Breach: Patient Info Exposed
New FBI Warning: Chinese Apps Could Expose User Data
New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips
New “GPUBreach” Attack Grants Full System Compromise and Root Shell Access
New Orleans Saints Data Breach Exposes Sensitive Information
New Trump Administration Budget Cuts $707 Million from CISA Funding
Nigeria Data Protection Commission (NDPC) Investigates Remita and Sterling Bank Over Alleged Data Breach
‘No evidence’ of data theft in Northern Ireland schools cyber attack as Easter break disruption continues
Node.js-Based Windows RAT Delivered via ClickFix Phishing Luse
North Korean hackers smiled and shook hands before $280 Million crypto heist
Northern Ireland: Education Authority (EA) 'making good progress' to restore access following cyber attack
Northern Ireland: Education Authority says no evidence so far of data taken or corrupted after cyber attack
Northern Ireland: Education Authority (EA) update following C2K cyber attack data concerns
Northern Ireland: Education cyber-attack - 'Intensive work' to get hundreds of schools back on system before pupils return, say officials
Northern Ireland: Pupils back to school in holidays to deal with fallout from cyber attack
Northern Ireland education network hit by cyberattack ahead of exams
Northern Ireland Students Return to School During Easter Break After Cyber Attack
Over $17 billion Lost to Cyber Fraud in the Last Year, Warns FBI
Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign
Phishing scams double in Belgium with thousands of cases reported daily
Phishing surge targets 300,000 Austrians as digital-ID certificates near expiry
Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ Security Tools
Ransomware: what it is and why it’s your problem
Ransomware reimagined: Why containment alone is no longer enough
Russian APT28 Hackers Hijack Routers to Steal Credentials, UK Security Agency Warns
Russian government hackers broke into thousands of home routers to steal passwords
Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign
Snowflake customers hit in data theft attacks after SaaS integrator breach
Space Bears Ransomware Attack Hits Brooklands of Mornington
Standard Bank notifies clients of data breach
Storm-1175 Deploys Medusa Ransomware at 'High Velocity'
Storm-1175 Exploits Flaws in High-Velocity Medusa Attacks
Storm-1175 exploits web-facing systems to drive ransomware attacks across healthcare and services in US, UK, Australia
Storm-1175 Targets Web-Facing Vulnerabilities In Medusa Ransomware Campaigns
Syracuse, New York, Notifies Possible Police Data Breach Victims
Tackling data breach risks requires perpetual planning
Telehealth company Hims & Hers discloses data breach
The dangers of telehealth: data breaches, phishing, and spam
The flowise AI crisis: why 12,000+ exposed servers are a hacker's playground
Threat Actors Abuse LogMeIn Resolve and ScreenConnect in Multi-Stage Phishing Attacks
Threat Actors Exploit LogMeIn Resolve, ScreenConnect in Phishing Campaigns
Threat cluster launches extortion campaign using social engineering
Trump’s Proposed CISA Cuts Spark Alarm Among Cybersecurity Experts
UK exposes Russian cyber unit hacking home routers to hijack internet traffic
US warns of Iranian hackers targeting critical infrastructure
When the Goal Is Destruction: What the Stryker Cyber Attack Means
Windows zero-day appears on GitHub: hackers run FunnyApp.exe and gain SYSTEM privileges
World Health Day: Kaspersky Warns of Data Breach Risks in Telemedicine
Wynn Resorts data breach impacts over 21,000 employees following HR system attack
Wynn Resorts Says 21,000 Employees Affected by ShinyHunters Hack
Wynn Resorts says hackers “deleted stolen data”, yet notice reveals 21,000 affected
Zero Trust: it’s not about eliminating all trust
Zmuth.com Data Breach Exposes WhatsApp and CRM Data
6th April
1.2 million Crunchyroll users confirmed impacted by data breach
64% of Dallas Workers Say AI Is Raising the Stakes for Workplace Phishing
75% of Cyberattacks Start with Phishing Emails, UAE Cyber Council Says
A Compromised Tool Opened the Door to a 91GB European Commission Data Leak
AI-Enabled Ransomware Demands AI-Enabled Defense - Not Just Better Recovery
Airdeals, Airtips, and Payair Data Breach and Extortion Attack
Arizona cardiology practice paying $3.85 Million to resolve lawsuit after data breach
Backups won’t save you from this version of ransomware
Bahrain: Hacker attacks jump as regional tensions explode
Banning Routers Won’t Secure the Internet
Breach of FBI Surveillance System Considered a “Major Incident,” Security Experts Weigh In
Brockton Hospital impacted by system-wide cyber attack, services cancelled, patients diverted
Chilean IT Firm FreeSAP Suffers Data Breach and Extortion Attack
CISA orders feds to patch exploited Fortinet EMS flaw by Friday
Convicted spyware maker Bryan Fleming avoids jail at sentencing
Cyber Attack Forces Hasbro to Take Systems Offline
Cyber fraud surges to $17.6 billion in losses as scams, crypto theft soar
Cyberattack Disrupts Massachusetts Emergency Dispatch, 911 Services Remain Active
Data Breach makes AI Startup loose business contract with Meta
Data breach notice clarified by T-Mobile
Deminima Gynecology Clinic Suffers Patient Data Breach
Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit
Drift $280 Million crypto theft linked to 6-month in-person operation
Drift Hack Exposes $28.5 Million Democratic People's Republic of Korea (DPRK) Social Engineering Campaign Initiated Six Months Ago
EmergiaCC Colsubsidio Alleged Internal Data Breach
Evolve Your English Investigates Major 700K User Data Breach
Federal Communications Commission (FCC) Moves to Fine Voxbeam $4.5M in Robocall Case Linked to Foreign Traffic
First stalkerware maker prosecuted since 2014 receives no jail time
German authorities identify alleged leader of GandCrab and REvil ransomware gangs
German authorities identify REvil and GandCrab ransomware bosses
German Police Identify Key Figures Behind REvil Ransomware Group
German police unmask two suspects linked to REvil ransomware gang
Germany Reveals the Name of Alleged REvil Ransomware, GandCrab Leader Daniil Maksimovich Shchukin (UNKN)
Germany Unmasks Alleged REvil Mastermind ‘UNKN’ in Cybercrime Crackdown
Germany's Federal Criminal Police Office (BKA) Identifies REvil Leaders Behind 130 German Ransomware Attacks
Germany’s Federal Criminal Police (BKA) unmasks two REvil Ransomware operators behind 130+ German attacks
Hackers threaten to leak data after cyberattack on German party Die Linke
Harvard faces ‘active and specific cybersecurity threat’
Healthcare data breach hits system storing patient records
How Security Leaders Can Safeguard Against Vibe Coding Security Risks
Identity of REvil and GandCrab ransomware leader revealed
Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations
IT talent looks the other way as wireless security incidents pile up
Jones Day confirms limited breach after phishing attack by Silent Ransom Group
Medusa ransomware group using zero-days to launch attacks within 24 hours of breach
Meta Pauses Work With Mercor After LiteLLM-Linked Data Breach
Meta Reportedly Halts Work With AI Partner Mercor After Data Breach Incident
Meta Suspends Work With $10 Billion AI Startup Mercor After Cyberattack
Microsoft links Medusa ransomware affiliate to zero-day attacks
Microsoft Teams Users Being Targeted in State-Linked Phishing Campaign
Missile Alert Phishing Exploits Iran-US-Israel Conflict for Microsoft Logins
New Fortinet Flaw Allows Unauthorized Access to Enterprise Systems
New GPUBreach attack enables system takeover via GPU rowhammer
Nigeria Data Protection Commission (NDPC) investigates Remita, Sterling Bank for alleged data breach
Nigeria Data Protection Commission (NDPC) investigates Remita, Sterling Bank over alleged data breach
Nigeria Data Protection Commission (NDPC) probes Remita, Sterling Bank over alleged data breach
Nigeria Data Protection Commission (NDPC) Probes Sterling Bank, Remita For Alleged Data Breach
Nike sued after data breach allegedly put customer PII at risk of identity theft
North Korea Spent 6 Months Infiltrating Drift Protocol Only to Drain $285 Million in 12 Minutes
North Korea’s hijack of one of the web’s most used open source projects was likely weeks in the making
North Korea-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea
North Korean Hackers Pose as Trading Firm to Steal $285 Million from Drift
Northern Ireland Education Authority says 'good progress' on restoring system after cyber attack
Northern Ireland pupils have to return to school over Easter break because of cyber attack
OMI360 Data Breach: Spanish Health Tech Firm Hacked
One of the largest corporate espionage and data breach scandals in digital history': New "BrowserGate" report claims LinkedIn secretly scans user browsers for installed extensions and collects device data
Phishing emails drive 75% of cyberattacks in the UAE
Qilin and Warlock ransomware: Using vulnerable drivers to disable EDR
Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools
Qilin ransomware group targets German political party Die Linke, threatens data leak
Qilin Ransomware targets Die Linke of Germany
QR Code Scams: New phishing scams baiting breaches
Ransomware attacks spread, spotlight falls on world of ransom negotiators
Residential proxies make a mockery of IP-based defenses
Russia sentences veteran hacker to 15 years in prison
Scammers use fake traffic violation texts with QR codes for phishing
Simple.biz Web Agency Data Breach Exposes US Clients
Singapore, US warn of latest Fortinet bug being exploited in wild
Southern Illinois Dermatology Data Breach Exposes SSNs
Tax Season Phishing Campaigns Spread Malware and Drain Victim Funds
Telehealth Giant Him & Hers Announces Data Breach
The Olympics Is a Hacker’s Favorite Sporting Event
This devious VENOM phishing campaign targets business executives by name - so watch what you click on
Traffic Violation Scams Targeting US Residents Adopt QR Code Phishing Tactics
UAE Cyber Security Council warns that 3.4 billion daily phishing emails cause 75 percent of breaches
YMED Soon-Care Suffers Massive Healthcare Data Breach and Extortion
