Welcome to DBD. On March 8th 2026, DBD celebrated it's sixth anniversary and 
Dentons Senior Analyst, Washington D.C.
Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 10th February and 16th February 2025.16th February
AI-enabled satellites could help the US evade a crippling cyber attack
All Gmail users placed on red alert and not following advice could be 'devastating'
Australian National University investigating alleged cyber attack
Cyber attack warning to retirement funds in South Africa
Gmail users issued red alert as new AI scam leaves people 'devastated'
Meta Platforms Grapples With Major Data Breach
Phishing and genAI are increasing
South Korea blocks downloads of DeepSeek from local app stores
Tax Data Safe in Papua New Guinea Amid Cyber Attack Fallout
15th February
2024: The year ransomware exploded and email threats got sneakier
Android's New Feature Blocks Fraudsters from Sideloading Apps During Calls
Cyber Attack on Megha Engineering, Rs 5.47 Cr Loss
If you dread a Microsoft Teams invite, just wait until it turns out to be a Russian phish
In phishing attack, scammers pose as ‘Dutch suppliers’ to dupe Hyderabad-based Megha Engineering and Infrastructures Ltd (MEIL) of Rs 5.47 crore
Infrastructure giant Megha Engineering and Infrastructures Ltd (MEIL) duped of Rs 5.47 crore in phishing attack
Infrastructure major Megha Engineering and Infrastructures Ltd (MEIL) loses Rs 5.5 crore in phishing attack
International Phishing Scam Targets Megha Engineering and Infrastructure Ltd (MEIL): A Multi-Crore Heist
Is That Breach Alert Real? It May Be Just Another Scam
Megha Engineering And Infrastructure Loses Rs 5.5 Crore In Phishing Scam
Memorial Hospital and Manor notifies 120,085 people of November ransomware attack
Microsoft: Hackers steal emails in device code phishing attacks
Papua New Guinea: Internal Revenue Commission (IRC) responds to Cyber Attack
Ransomware Hacked & Helpless
Sinister New Phishing Kit Targets Billions Of Gmail And Outlook Users
The foundation of modern software development is under rising cyber attack
The Hidden Cybersecurity Crisis: How GenAI is Fueling the Growth of Unchecked Non-Human Identities
U.S. Coast Guard hit with data breach, impacting pay for more than 1,100 members
What is an encryption backdoor?
YouTube Scam: Fake YouTube Emails Deceive Users into Downloading Malware - How to Protect Yourself
14th February
2.7 billion IoT records leaked in massive online data breach
12 million hit in Zacks Investment data breach - how to protect yourself now
75 luxury homes, 6 supercars, and 20 years in prison: crypto scammers plead guilty
A record year of shattered hearts and emptied wallets
Advanced stealthy Astaroth phishing kit emerges
AI Vs. Advanced AI: The Battle For Data Integrity In The Age Of Advanced Ransomware
AI-Powered Social Engineering: Ancillary Tools and Techniques
As-a-Service Platforms Drive Four-fold Ransomware Increase
Astaroth 2FA Phishing Kit Targets Gmail, Yahoo, Office 365, and Third-Party Logins
Australia Imposes New Cyber Sanctions in Response to Medibank Private Cyberattack
Berry, Dunn, McNeil & Parker Agree to $7.25 Million Data Breach Settlement
Brightline settles lawsuit for $7 million over 2023 data breach involving Clop hacking group
China government-linked hackers caught running a seriously dangerous ransomware scam
China-Linked Espionage Tools Used in Recent Ransomware Attack
Chinese Cyber-Spies Use Espionage Tools for Ransomware Side Hustle
Chinese hackers breach more US telecoms via unpatched Cisco routers
Chinese Hackers Target Cisco Devices in Global Cyber Campaign
Chinese spies suspected of 'moonlighting' as tawdry ransomware crooks
Consultation launched to protect critical national infrastructure from ransomware
Cutbacks bite back as hackers play with Elon Musk's DOGE site
Cybercrime now a national security threat, Google warns
Cybersecurity in Nigeria and Beyond: Major Incidents and What Lies Ahead
Device Code Phishing Attack Exploits Authentication Flow to Hijack Tokens
Dozens of organizations claimed to be hacked by Cl0p ransomware
Dragos reports evolving ransomware threat landscape with increased operational disruptions as attacks target ICS
Elon Musk's DOGE.gov website can apparently be edited by anyone
Ending the Ransomware Scourge Requires Punishing Its Enablers
Espionage Tools Associated with China Used in Ransomware Attacks
FBI intervenes as crypto scam victims risk homes and life savings
Fillmore County Hospital Announces Data Breach
Fraud Alert: The SVG Image File Scam You Need To Watch Out for
Gmail, Yahoo targeted by a new two-factor authentication phishing kit
Google’s Gemini AI Abused by Multiple State-Sponsored Hackers for Cyber Attacks
Inconsistent security strategies fuel third-party threats
Lazarus Group Deploys Marstech1 JavaScript Implant in Targeted Developer Attacks
Lynx ransomware group claims hack of truck dealership Brown and Hurley
Malicious PirateFi game infects Steam users with Vidar malware
Microsoft 365 accounts targeted in device code spear-phishing scheme
New Astaroth 2FA Phishing Kit Targeting Gmail, Yahoo, Office 365, and 3rd-Party Logins
New data leak hits more entities in France - what to do if you are affected
New Device Code Phishing Attack Exploit Device Code Authentication To Capture Authentication Tokens
New Salt Typhoon Attacks Target Cisco Devices
New "whoAMI" Attack Exploits AWS AMI Name Confusion for Remote Code Execution
Nippon Steel claimed by BianLian ransomware group
North Korean Hackers Suspected in DEEP#DRIVE Attacks Against South Korea
OpenAI at Risk? Hacker Exploits ChatGPT Authentication Flaw
OpenAI denies breach of 20 million customer credentials from its servers
OpenAI Faces Data Breach Claims Amid Cybersecurity Fears
Passwordless: Malaysia’s new weapon against phishing
Pennsylvania utility says MOVEit breach at vendor exposed some customer data
'Phishing' Scam Warning Issued For Drivers Of Delaware River Bridges
Phishing Scams in 2025: How Hackers Are Using AI to Trick Users
Pig butchering scams are exploding
Police risk losing society’s trust in fight against cybercrime, warns Europol chief
PostgreSQL flaw exploited as zero-day in BeyondTrust breach
PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks
Protecting yourself from ransomware: a comprehensive guide to prevention and mitigation
RA World Ransomware Intrusion Involved Chinese Cyberespionage Tools
Radiology practice SimonMed Imaging suffers apparent ransomware attack
RansomHub: The New King of Ransomware? Targeted 600 Firms in 2024
RansomHub Becomes 2024's Top Ransomware Group, Hitting 600+ Organizations Globally
Ransomware attack on Chippewa Indian tribe knocks out computer systems
Ransomware attacks on industrial systems an ‘increasingly dynamic ecosystem’
Ransomware Data Extortion Skyrocketing
Ransomware group Sarcoma claims attack on Taiwanese PCB manufacturer Unimicron
Ransomware-as-a-Service Fuels 4X Surge in Attacks
REMSA Health Experiences Cyberattack, Raising Questions of a Possible Data Breach
Russian hackers launch new attack vector: joining a meeting can compromise your account
Russian Hackers Target Microsoft 365 Accounts with Device Code Phishing
Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts
Safer Internet Day: What to remember about parking-related phishing scams
Sault Tribe still working to restore services following ransomware attack
Scammers Exploit JFK Files Release with Malware and Phishing
SonicWall firewall bug leveraged in attacks after PoC exploit release
SonicWall firewalls now under attack: Patch ASAP or risk intrusion via your SSL VPN
Texas investigating DeepSeek for violating data privacy law
The changing face of phishing
The most dangerous malware right now: Anubis will drain your banking apps
Third-Party Cyber Risk Management: Taking a Strategic Approach
Threat actors are using legitimate Microsoft feature to compromise Microsoft 365 (M365) accounts
Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts
Top component maker Unimicron hit by massive ransomware attack
U.S. Coast Guard Suffers Data Breach, Pay Delayed for 1,135 Members
Ukraine warns of growing AI use in Russian cyber-espionage operations
Unimicron manufacturer faced a breach from Sarcoma ransomware
USAID staff accuses DOGE of jeopardizing safety, accessing security clearance data
What is device code phishing, and why are Russian spies so successful at it?
XELERA Ransomware Attacking Job Seekers With Weaponized Word Documents
YouTube scam alert: New phishing email targets accounts for takeover
YouTube Warns Users To Stay Vigilant As It Investigates Account Hijacking Campaign
Zacks Investment hit in data breach - 12 million users potentially at risk
Zservers/XHost servers dismantled by Dutch police
13th February
4 Ways to Safeguard Your Privacy During Remote Work
Acronis Cyberthreats Report Reveals Rise in Ransomware, AI-Driven Attacks, and Malware Risks in 2024
Acronis H2 2024 Cyberthreats Report Unveils Rise in Ransomware, AI-Driven Attacks, and Malware Risks
APT Groups Using Ransomware 'Smokescreen' for Espionage
Astaroth Phishing Kit Bypasses 2FA to Hijack Gmail and Microsoft Accounts
Astaroth Phishing Kit Bypasses 2FA Using Reverse Proxy Techniques
AUKUS members sanction Medibank hacker and LockBit infrastructure provider
Australian police join global crackdown on cybercriminal infrastructure provider
Barcelona-based spyware startup Variston shuts down, per filing
Bengal police arrests 46 people linked to Jamtara gangs involved in phishing, online fraud
Brightline to pay $7M to resolve Fortra hack lawsuit
Bulletproof No More? Russian Zservers Sanctioned For Alleged LockBit Crypto Crimes
Canada Border Services Agency (CBSA) data breach exposes information of 18,000 employees
Chicago schools join IT giant in Cl0p's attack spree
China-linked APTs’ tool employed in RA World Ransomware attack
China’s Salt Typhoon hackers continue to breach telecom firms despite US sanctions
China’s Salt Typhoon hackers targeting Cisco devices used by telcos, universities
Chinese APT 'Emperor Dragonfly' Moonlights With Ransomware
Chinese Cyberspy Possibly Launching Ransomware Attacks as Side Job
Chinese espionage tools deployed in RA World ransomware attack
Chinese Espionage Tools Used in Ransomware Attacks
Circuit Board Maker Unimicron Targeted in Ransomware Attack
CISA and FBI Warn Against Buffer Overflow Vulnerabilities
CPS Solutions Files Notice of Data Breach Following Unauthorized Access to Business Email Account
Cyber attack causes error in Israeli credit transaction system
Cyber attack on Australian education centre claimed by KillSec
Cybercriminals Targeting U.S. Food and Agriculture Sector Now More Than Ever
Dark Web Profile: Fog Ransomware
Data Breach Hits Food Delivery Giant GrubHub, Putting Victims at Risk of Phishing Attacks
Department of Government Efficiency (DOGE) hasn’t accessed legally protected tax data, administration says in privacy suit response
Doxbin Data Breach: Hackers Leak 136K User Records and Blacklist File
Dutch police say they took down 127 servers used by sanctioned hosting service
Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster
Electronic Frontier Foundation (EFF) Leads Fight Against Department of Government Efficiency (DOGE) and Musk's Access to US Federal Workers' Data
Email cyberattacks rose by 197% during second half of 2024
Email-based Cyberattacks Surge 197%; MSPs Face Increased Phishing, Ransomware Threats
Ethiopia again worst hit by cyber crime
FedEx Cautions Against New Wave of Scams, Urges Public Vigilance
FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux
FortiOS Vulnerability Allows Super-Admin Privilege Escalation – Patch Now!
Hacker leaks account data of 12 million Zacks Investment users
Hacker Offered 10% Bounty After Stealing Over $9,000,000 in Ethereum (ETH) From Lending Platform
Hackers Exploited Palo Alto’s Firewall Vulnerability to Deploy RA World Ransomware
Hackers Use CAPTCHA Trick on Webflow CDN PDFs to Bypass Security Scanners
Hewlett Packard Enterprise (HPE) notifies staff of data breach related to Russian hack
Hipshipper data leak exposes millions of shipping labels, raising privacy concerns
How Much Time Does it Take for Hackers to Crack My Password?
Immigration-themed Phishing Attack Uncovered
Industrial Sector Sees Increase in Ransomware Attacks
International travelers targeted in immigration-themed phishing campaign
Judge Approves $7 Million Brightline Data Breach Settlement
Kaspersky Issues Warning on Valentine’s Day Scams and Phishing Traps
Kimsuky Phishing Scheme Impersonates South Korean Officials, Leverages Microsoft PowerShell
Leveraging AI to detect and prevent ransomware attacks
Lines Between Nation-State and Cybercrime Groups Disappearing
Love in the digital age: Avoiding Valentine’s Day scams, phishing, data privacy threats
Massive IoT Data Breach Exposes 2.7 Billion Records, Including Wi-Fi Passwords
Massive online data breach sees 2.7 billion records leaked - here's what we know
Michigan’s Sault Tribe Impacted by Ransomware
Microsoft Uncovers ‘BadPilot’ Campaign as Seashell Blizzard Targets US and UK
More DeFi projects run into security issues, negotiations with a hacker begin
More sanctions imposed against Russians over Medibank Private cyber attack
New Phishing Attacks Abuses Webflow CDN & CAPTCHAs To Steal Credit Card Details
New Phishing Campaign Targets The X Accounts of Politicians, Tech Companies, Cryptocurrency, And More
New Phishing Kit Bypasses Two-Factor Protections
North Korea Targets Crypto Devs Through NPM Packages
North Korean APT43 Uses PowerShell and Dropbox in Targeted South Korea Cyberattacks
North Korean hackers spotted using ClickFix tactic to deliver malware
Northern Ireland: Enniskillen man in court on PSNI data breach charge
Northern Ireland: Men accused of New IRA activity relating to PSNI data breach
Northern Ireland: Pair charged over alleged New IRA activity after PSNI data breach
Northern Ireland: Pair in court over alleged New IRA activity relating to PSNI data breach spreadsheets
Northern Ireland: Two men appear in court accused of possessing information from PSNI data breach
OmniGPT allegedly suffers massive data breach, exposing 30,000 users
Over 3 million Fortune 500 employee accounts compromised since 2022
Palo Alto Firewall Flaw Exploited in RA World Ransomware Attacks
Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software
PAN-OS authentication bypass hole plugged, PoC is public (CVE-2025-0108)
Papua New Guinea’s Internal Revenue Commission hit in major cyber attack but public only told of ‘system outage’
Phishing campaign exploits search engines to steal credit card info
Phishing emails are evolving - AI may be the answer to stopping them
Phobos ransomware, four hackers arrested accused of stealing $16 million
Powerschool discloses major data breach
Prizm Media Announces Data Breach Stemming from Unauthorized Access to Company Email Account
“Puppygirl Hacker Polycule” Leaks Over 8,500 Privatized Police Files and Training Manuals
RA World Ransomware Attack in South Asia Links to Chinese Espionage Toolset
Ransomware Attacks Costing Manufacturers $1.9M/Day in Downtime
Ransomware up fourfold as threats get more complex
Ransomware, AI risks, and malware: Acronis report highlights growing cyberthreats in H2 2024
Researchers get $10K for disclosure of YouTube flaw that exposed billions of user emails
Romance Baiting Losses Surge 40% Annually
Russia deploying cybercriminals to support war in Ukraine
Russian Seashell Blizzard Enlists Specialist Initial Access Subgroup to Expand Ops
Sandworm APT’s initial access subgroup hits organizations accross the globe
Sarcoma ransomware gang claims the theft of sensitive data from PCB maker Unimicron
Seashell Blizzard hacker group escalating attacks on critical infrastructure, Microsoft warns
Sextortion kits fuel the great crypto heist
Spyware maker caught distributing malicious Android apps for years
Storm-2372 conducts device code phishing campaign
Study Finds Nearly Half of Organizations Suffered a Third-Party Data Breach
Texas man sues Packers over pro shop data breach
Texas man suing Green Bay Packers over Pro Shop website data breach
The UK’s secret iCloud backdoor request: A dangerous step toward Orwellian mass surveillance
Threat Actors Exploiting DeepSeek’s Popularity To Deploy Malware
Unguarded database spills 440M personal records
Unimicron Purportedly Subjected to Sarcoma Ransomware Attack
Unusual attack linked to Chinese APT group combines espionage and ransomware
US frees jailed Russian cybercriminal as Trump builds bridges with Moscow
US, Australia, and UK to sanction key infrastructure that enables ransomware attacks
US, UK, Australia impose sanctions on Russian host Zservers
Valve removes Steam game that contained malware
whoAMI attacks give hackers code execution on Amazon EC2 instances
zkLend’s $9M Ethereum Heist: Can a Bounty Save the Stolen Funds?
12th February
1 in 3 Indians faced cyber-attacks in 2024, AI aided hackers
4 Phobos Ransomware-Linked Russians Arrested in Europol and Eurojust Crackdown
8Base ransomware group leaders arrested in European law enforcement operation
8Base ransomware members snared in global police crackdown
10 common dangers VPNs won't protect you from online - and how to avoid them
20 Million ChatGPT Accounts Allegedly Stolen and Sold on Hacker Marketplace
A Hacker Group Within Russia’s Notorious Sandworm Unit Is Breaching Western Networks
Acronis Cyberthreats H2 2024 Report: Ransomware and AI are a dangerous combination
Acronis Cyberthreats Report Shows MSPs are Targets
Alberta privacy commissioner responds to PowerSchool data breach affecting students and educators
Alleged Kraken Ransomware Hack Denied by Cisco
Apple Confirms ‘Extremely Sophisticated’ Exploit Threatening iOS Security
Apple Patches Security Flaw That Allowed Access to Locked Devices
Arizona Woman Admits to Running Laptop Farm for North Korean IT Workers, Faces Up to 9 Years in Prison
At least 189 Carousell, Facebook users lost over $303,000 to phishing scams since January
AUKUS members sanction Medibank hacker and LockBit infrastructure provider
AultCare Announces Data Breach Affecting Employer-Sponsored Health Plan Participants
Australia suffered a cyber attack every second in 2024, 47 million data breaches
BadPilot network hacking campaign fuels Russian SandWorm attacks
Btmob RAT: A New Evolution of Android Malware Targets Users via Phishing Sites
Check Point Uncovers Valentine’s Day Cyber Scams
CHERI Security Hardware Program Essential to UK Security, Says Government
China tops global data breach rankings in 2024, experts warn
CISA, experts urging users to patch new Windows zero-days: “test and deploy quickly”
Cisco Continues to Deny Kraken Ransomware Attack
Cisco Says Ransomware Group’s Leak Related to Old Hack
Cl0p Ransomware Hides Itself on Compromised Networks After Exfiltrating the Data
Crypto boom brings malware surge: how USBs are used to hijack devices
Cyberattack shuts down Upper Peninsula's Kewadin Casinos, tribal operations
Cybercrime evolving into national security threat
Cybercrime surges as global threat to national security
Cybercriminals Exploit Valentine’s Day with Romance Scams, Phishing Attacks
DeepSeek may face further regulatory actions
DeFi Platform zkLend Hit by Hacker – $900K Whitehat Bounty on the Table
Deloitte Pays Rhode Island $5 Million to Aid Recovery From Ransomware Attack
Don't ignore Microsoft's February Patch Tuesday - it's a big one for all Windows 11 users
Europol arrests four Russians in ransomware crackdown
Facebook Users Beware: Thousands Hit by New Phishing Scam
Fewer than one in three Chrome users have ‘Enhanced Security’ enabled
Fog ransomware group claims January hack of the University of Notre Dame Australia
Food and Ag-ISAC cyber threat report provides actionable intelligence on cyber threats, ransomware tactics
Fortra's 2025 cybersecurity survey: key risk findings
Four Russian nationals behind 8Base ransomware arrested, says Europol
Global Operation Shuts Down 8Base Ransomware Network
Google Chrome’s enhanced protection now provides safe browsing against phishing
Google fixes flaw that could unmask YouTube users' email addresses
Hacker allegedly puts massive OmniGPT breach data for sale on the dark web
Hacker claims access to 20 million-plus ChatGPT access codes: What ChatGPT users should do right away
Hacker claims to be selling credentials of 20 million OpenAI accounts
Hacker Pleads Guilty in Crypto-Related SEC X Account Breach
Hackers behind US ransomware attacks arrested in Thailand
Hackers clash over Doxbin lost account access
Healthcare Sector Sees Spike in Cyberattacks
Heartbreak hackers: Valentine’s day scams on the rise
Heartland Bank Sends Data Breach Letters Following Recent Email Data Security Incident
Holding the Tide Against the Next Wave of Phishing Scams
House Republicans launch group for comprehensive data privacy legislation
How crypto scammers are exploiting celebrities to drain your wallet
How Threat Actors Industrialised Cybercrime in 2024
How to outsmart ransomware and build resilience within your organisation
Huge Christmas data breach - 14 million shipping records leaked, putting shoppers at risk
Is Automation Fuelling a New Era of Cyber-crime?
It’s time to secure the extended digital supply chain
Ivanti fixes three critical flaws in Connect Secure & Policy Secure
Ivanti Patches Critical Flaws in Connect Secure and Policy Secure – Update Now
Justice Department Indicts Two Russians for Running Ransomware Cybercrime Operation
KeyBank Sends Data Breach Letters Following Incident at Wong Fleming, P.C.
“Largest data breach in US history”: Three more lawsuits try to stop DOGE
Major Players in Phobos and 8Base Ransomware Operations Captured in Global Cybercrime Sweep
Massive 1.17TB Data Leak Exposes Billions of IoT Grow Light Records
Massive IoT Data Breach Exposes 2.7 Billion Records
Medibank link emerges in multi-country action against ZServers
Medical Data Leak: 279K Files Exposed in Ransomware Attack
Michigan casino chain forced to shut down after ransomware attack
Microsoft Fixes Another Two Actively Exploited Zero-Days
Microsoft Patch Tuesday for February Includes Two Zero Days Under Attack
Microsoft Uncovers Sandworm Subgroup's Global Cyber Attacks Spanning 15+ Countries
Microsoft's Patch Tuesday Fixes 63 Flaws, Including Two Under Active Exploitation
Natures Organics confirms Medusa ransomware attack
New Era Life Insurance Provides Notice of Data Breach to Policyholders, Beneficiaries, Agents, and Employees
New phishing campaign exploits immigration arrival card process to steal personal data
New UK sanctions target Russian cybercrime network
North Korean hackers dupe targets into typing PowerShell commands as admin
North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack
North Korean hackers Kimsuky exploiting the oldest critical vulnerability – the user
OmniGPT data breach exposes 34 million chat messages across six countries
Online Threats Are Rising - Here’s Why Companies Must Improve Their Cybersecurity
Papua New Guinea's Internal Revenue Commission hit in major cyber attack but public only told of 'system outage'
Patch Tuesday: Microsoft Fixes 63 Bugs with 2 Zero-Days
Patch Tuesday: Microsoft Patches Two Actively Exploited Zero-Day Flaws
Ransomware attack disrupting Michigan's Sault Tribe operations
Ransomware attack on Memorial Hospital and Manor impacted over 120,000 patients
Ransomware gangs shifting tactics to evade enterprise defenses
Ransomware isn't always about the money: Government spies have objectives, too
Ransomware Payments Fall 35%
Researchers Find New Exploit Bypassing Patched NVIDIA Container Toolkit Vulnerability
Rhode Island House bill would expand notification obligations after data breach
Rise in phishing attempts targeting Texas, US toll customers
Romance Scams Cost Americans $697.3M Last Year
Russia’s Zservers sanctioned by US, UK, and Australia for serving crypto ransomware LockBit
Russian cybercrime group behind $16M Phobos ransomware attacks busted
Sanctions Target Russian Host for Role in Ransomware Attacks
Sarcoma ransomware claims breach at giant Printed Circuit Board maker Unimicron
Sault Sainte Marie Tribe hit by ransomware attack
Scope of student, school staff data breach under investigation. Some Idaho schools compromised
Security Detection Tech Failing, Say Cyber Leaders in Regulated Industries
Silent breaches are happening right now, most companies have no clue
Spectrum Medical Imaging warns patients medical data exposed following ransomware attack
Starknet-based zkLend seeks return of over $8 million in ETH stolen from platform
Subgroup of Russia’s Sandworm compromising US and European organizations, Microsoft says
Surge in attacks exploiting old ThinkPHP and ownCloud flaws
Tarrant, Alabama, Wards Off Ransomware Attack on City Computers
Thai Police Arrest Russian Hackers Behind Swiss Ransomware Attacks
Thailand arrests Russian hackers wanted in US
U.S., Australia, and UK Join Forces to Target Russian Bulletproof Hosting Provider Supporting LockBit Ransomware
UAC-0006’s new phishing campaign targets Ukraine’s PrivatBank
Ukraine's latest cyber attack disrupts Russian oil and gas infrastructure
Understanding the Growing Threat of Deepfake Phishing Attacks
United States, Australia, and United Kingdom Crack Down on Key Cybercrime Infrastructure Supporting Ransomware Attacks
University of the Bahamas struck by a major ransomware attack
Unmasking the Crypto Ghost: Will the ZkLend Hacker Return Millions or Face the Law?
Uruguayan government investigates dimensions of cyber-attack
US reportedly releases Russian cybercrime figure Alexander Vinnik in prisoner swap
US, Australia, UK Sanction Key Infrastructure Enabling Ransomware Attacks
US, UK, and Australia sanction Russia-based Zservers for enabling LockBit ransomware
US, UK and Australia Sanction Russian Bulletproof Hoster Zservers
US, UK, Australia sanction Russian cyber firm Zservers over ransomware attacks
US, UK Sanction Russian Zservers Over LockBit Ransomware
US, UK, and Australia sanction Zservers for supporting LockBit ransomware operations
Warning: fake Etsy invoices sent via legitimate domains
Washington County Schools: More than 30K files impacted by PowerSchool data breach
West London Council Faces 20,000 Cyberattack Attempts Every Day Amid Growing Threats
ZeroLogon Ransomware Exploits Active Directory Vulnerability To Gain Domain Controller Access
ZeroLogon Ransomware Exploits Windows AD to Hijack Domain Controller Access
zkLend Exploited for $4.9M in ETH, Team Appeals to Hacker with 10% Offer
ZkLend hack sees $9.5M exploit, offers hacker 10% bounty for return
zkLend loses $5 million in hacker attack
zkLend loses $9.5M in crypto heist, asks hacker to return 90%
11th February - Safer Internet Day
4 Ways to Keep Multi-Factor Authentication (MFA) From Becoming too Much of a Good Thing
8Base ransom gang members arrested, operations seized by international authorities
8Base ransomware group leaders arrested, leak site seized
8Base Ransomware Site Seized, Phobos Suspects Arrested in Thailand
8base ransomware site taken down in global police operation
88% of UK businesses say cyber fraud drove payment fraud
Accendo Insurance Company Affected by Business Associate Data Breach
Akira Ransomware Leads The Number of Ransomware Attacks For January 2025
Alabama Hacker Admits Role in SEC X Account Breach
Another person targeted by Paragon spyware comes forward
Apple fixes security flaw allowing third-party access to locked devices
Apple fixes zero-day flaw exploited in “extremely sophisticated” attack (CVE-2025-24200)
Apple Mitigates “Extremely Sophisticated” Zero-Day Exploit
Apple Patches Actively Exploited iOS Zero-Day CVE-2025-24200 in Emergency Update
Arizona woman pleads guilty to running laptop farm for N. Korean IT workers, faces 9-year sentence
Authorities arrest four suspected 8base ransomware operators in global takedown
Authorities Disrupt 8Base Ransomware, Arrest Four Russian Operators
Authorities Seize 8Base Ransomware Dark Web Site, Arrest Four Key Operators
Authorities Seize 8Base Ransomware Infrastructure, Arrest Four Russians
Authorities seize Phobos and 8Base ransomware servers, arrest 4 suspects
Avery Discovers Credit Card Scraper Following Ransomware Attack
Beware of Fake Salesforce Emails Deceiving Businesses and Users
California students take legal action against US Education Department over massive data breach
Canada’s privacy watchdog to investigate PowerSchool student information data breach
Canada's privacy czar launches investigation into student information data breach
Cisco dispels Kraken data breach claims, insists stolen data came from old attack
Cisco Rejects Kraken Ransomware’s Data Breach Claims
CloudSEK Uncovers ClickFix Phishing Campaign Targeting Users
CloudSEK Uncovers DeepSeek-based Phishing Campaign Targeting AI Users
Cyber attack on University Diagnostic Medical Imaging impacted over 135,000 patients
Cyberattacks targeting medical organizations up 32% in 2024
Cybercrime leaders arrested in international ransomware crackdown
Data Security Breach Forces Kewadin Casinos to Halt Operations in Upper Michigan
DDoS Attack Volume and Magnitude Continues to Soar
Delta Health 'data breach' what you need to know
FBI, Department of Justice (DOJ) make major arrests of Russians allegedly involved in massive ransomware group Phobos
FBI, Europol, and NCA Take Down 8Base Ransomware Data Leak and Negotiation Sites
Feds Unmask Russian Duo Behind Ransomware Epidemic Threatening U.S. Cybersecurity
Fortinet discloses second firewall auth bypass patched in January
Four Russians Arrested in Major Hacking Operation
Four Russians arrested in Phobos ransomware crackdown, Europol says
Gcore DDoS Radar Reveals 56% YoY Increase in DDoS Attacks
Gcore Radar report reveals 56% year-on-year increase in DDoS attacks
Global Phishing Campaign Targets Facebook Accounts
Grubhub discloses data breach
Hacker confesses to role in SIM swapping attack on SEC X account
Hacker found selling 20 million OpenAI credentials; AI firm claims no breach
Hacker of SEC’s X account sentenced after admitting guilt
Hacker pleads guilty for SEC X account breach that made fake Bitcoin ETF post
Hackers leak cop manuals for departments nationwide after breaching major provider
Hackers Newly Registering Valentine’s Day Themed Domains for Stealthy Cyber Attacks
Here’s how many ransomware attacks impacted agriculture in 2024
Hospital Sisters Health System (HSHS) notifies nearly 900K patients about a 2023 data breach
International Crackdown: Phobos Ransomware Network Dismantled
International Crackdown on Russia-Based Zservers Targets Ransomware Threats
International Crackdown on Russian Ransomware Provider
International law enforcement takes down 8Base ransomware gang
Justice Department charges 2 Russians with operating cybercrime group using ransomware
Kewadin Casino among Sault Tribe systems impacted by ransomware attack
Key figures behind Phobos and 8Base ransomware arrested in international cybercrime crackdown
Law Enforcement Operation Takes Down 8Base Ransomware Group
Lawsuit accuses Trump administration of violating federal information security law
LockBit crackdown continues with Zservers sanctions
LockBit’s woes continue as gangs’ helpers sanctioned
Malicious actors exploiting exposed ASP.NET keys to deploy malware
Massive Facebook Phishing Attack Targets Hundreds of Companies for Credential Theft
Michigan Upper Peninsula tribe hit with ransomware attack, gaming at 5 casinos shut down
Microsoft February 2025 Patch Tuesday fixes 4 zero-days, 55 flaws
Microsoft fixes two actively exploited zero-days (CVE-2025-21418, CVE-2025-21391)
Millions exposed as 14 Million shipping records accidentally leaked
New Chinese Hacking Campaign Targets Manufacturing Firms to Steal IP
New Ransomware Gangs Drive Surge in Attacks
New technology could quash QR code phishing attacks
New UK sanctions target Russian cybercrime network
New York Blood Center hit by ransomware, blood services disrupted
New Zealand: Government Communications Security Bureau (GCSB) report reveals sophisticated attacks, boosts cyber resilience amid rising espionage and ransomware
Number of active dark web ransomware groups up 38 percent in 2024
OmniGPT AI Chatbot Alleged Breach: Hacker Leaks User Data, 34 Million Messages
Online scams and phishing: Five questions that might save you from being caught
OpenAI Finds No Evidence of Breach After Hacker Offers to Sell 20 Million Credentials
OpenAI Was Not Breached, Say Researchers
Operation Phobos Aetor: Police dismantled 8Base ransomware gang
Over 120K impacted by Memorial Hospital & Manor ransomware attack
Phishing evolves beyond email to become latest Android app threat
PowerSchool breach exposed special education status, mental health data and parent restraining orders
Progress Software Patches High-Severity LoadMaster Flaws Affecting Multiple Versions
Ransomware attack disrupts gaming, offices, services for Sault Sainte Marie Tribe of Chippewa Indians
Ransomware attack halts Sault Sainte Marie Tribe departments and businesses temporarily
Ransomware gang 8Base members arrested, darknet site seized
Ransomware Gangs Increasingly Prioritize Speed and Volume in Attacks
Ransomware Operator 8Base Taken Apart Following International Effort
Ransomware suspects arrested in cybercrime crackdown
Ransomware’s risk to businesses may be growing more complex
Rocky View Schools: PowerSchool data breach exposed records from 2012
Russian bulletproof hosting service Zservers sanctioned by US for LockBit coordination
Russian cybercrime network targeted for sanctions across US, UK and Australia
Russian military hackers deploy malicious Windows activators in Ukraine
Russian ransomware hackers arrested in Phuket
Sanction Zservers for Facilitating Ransomware Attacks
Sanctions Imposed on Lockbit Ransomware's Russian Hosting Provider
Sault Sainte Marie Tribe of Chippewa Indians Battles Ransomware Attack Impacting Casinos and Health Services
Sault Tribe provides updates on health services following cyber attack
Searchlight Cyber Report Shows 38% Year-on-Year Increase in Active Dark Web Ransomware Groups
SonicWall firewall exploit lets hackers hijack VPN sessions, patch now
Students Sue U.S. Department of Education Over Alleged Data Breach Involving Elon Musk and DOGE
SystemBC RAT Now Targets Linux, Spreading Ransomware and Infostealers
Taipei’s Mackay Memorial Hospital faces ransomware attack
Takedown of 8Base Ransomware Crew in Thailand
TD Bank data breach: Suit seeks $5 Million after customer info was leaked
Thai Police Bust 4 Suspected 8Base Ransomware Group Members
The PowerSchool data breach is now under a Canadian privacy investigation
Third-Party Data Breach at ArdyssLife Affects an Unknown Number of Consumers
This Tata Company Was Hit By Ransomware; Recovery Has Been Completed
Threat Actors Exploit ClickFix to Deploy NetSupport RAT in Latest Cyber Attacks
Triplestrength hits victims with triple trouble: Ransomware, cloud hijacks, crypto-mining
Trump's first sanctions? US, UK and Australia impose restrictions on Russian cyber group
Two Russian nationals arrested in takedown of Phobos ransomware infrastructure
U.S. Justice Department Cracks Down on Phobos Ransomware Group
U.S. sanctions bulletproof hosting provider for supplying LockBit infrastructure
U.S., Australia and Britain sanction Zservers for supporting ransomware
U.S., U.K. and Australia Sanction Russian Cyber Firm Zservers Over Ransomware Attacks
UK announces sanctions against Russian cyber crime network
UK Cracks Down on Russian ZSERVERS Network Acting as Launchpad for Cyber Attacks
UK, US, Australia blast holes in LockBit's bulletproof hosting provider Zservers
Understanding cyber attacks: how to protect your optometry practice
University of the Bahamas struck by a major ransomware attack
US indicts 8Base ransomware operators for Phobos encryption attacks
US sanctions LockBit ransomware’s bulletproof hosting provider
US, UK, Australia sanction Russian ransomware actors
US, UK, Australia target Russia-based Zservers over Lockbit ransomware attacks
Weak encryption and privacy risks found in DeepSeek’s Android app
10th February
2.1TB of Data Allegedly from Israel Police Systems Published on the BreachForums
3 in 5 organizations expect cyber attack this year
4 Arrested as Police Dismantle 8Base Ransomware, Seize Dark Web Sites
8base ransomware site seized, 4 suspects arrested
8Base ransomware site taken down as Thai authorities arrest 4 connected to operation
29% of school systems report a rise in student-to-student security incidents
Accused Russian ransomware hackers arrested in Phuket
AI’s Role in Cutting Costs and Cybersecurity Threats in Logistics
Alleged hacker behind fake SEC post could forfeit $50K in plea deal
Apple and Google take down malicious mobile apps from their app stores
Apple fixes zero-day exploited in 'extremely sophisticated' attacks
As Gmail Attack Warnings Surge - Do Not Switch To New Email App
Attackers Change Tactics as Ransomware Payoffs Decline
Attackers Use 2.8 Million Devices in Major Brute Force Attack
Australians Hit With One Cyber Attack Every Second in 2024
BadIIS Malware Exploits IIS Servers for SEO Fraud
British military drops basic training to fast track recruitment of ‘cyber warriors’
Catholic Charities of Southern Nevada Reports Data Breach Affecting the Personal Info of 73,822 People
Central African Republic ‘CAR’ memecoin info pages plagued with phishing links
CERT-In Warns of High-Severity Vulnerabilities in Mozilla Firefox and Thunderbird
CISA Flags Critical Trimble Cityworks Vulnerability (CVE-2025-0994) in KEV Catalog
Cisco Data Breach – Ransomware Group Allegedly Breached Internal Network
Cisco Hacked – Ransomware Group Allegedly Breach Internal Network & Gained AD Access
City of Tarrant fends off ransomware attack on city computers, police say
City of Tarrant shut down due to ransomware attack
Cyberattack disrupts Lee newspapers' operations across the US
DeepSeek’s R1 reportedly ‘more vulnerable’ to jailbreaking than other AI models
Department of Government Efficiency (DOGE) inputs federal data to AI, cyber leaders discuss implications
DragonRank Exploits IIS Servers with BadIIS Malware for SEO Fraud and Gambling Redirects
Econet denies alleged customer data breach
Econet denies alleged data breach
Econet Wireless Addresses Data Breach Allegations, Launches Cybersecurity Investigation
Econet Wireless refutes claims of massive data breach amid customer concerns
Egyptian hacks Israeli TV channel. What's the truth?
Engineering giant IMI reveals a major cyber attack on its internal network
Europol Warns Financial Sector of “Imminent” Quantum Threat
Experts Dismayed at UK’s Apple Decryption Demands
Faulty phishing site blocking disrupts Cloudflare services
FBI cautions: Artificial intelligence-based phishing attacks have increased on Gmail accounts
Four cyber security myths that could sink your business in 2025
Gallagher settles lawsuit over major data breach
Georgia Hospital Alerts 120,000 Individuals of Data Breach
Global police operation seizes 8base ransomware gang leak site
Gmail AI Phishing Attacks Skyrocket: FBI Warns Users to Take Action Now Before It's Too Late
Gmail Users Warned About the “Most Sophisticated Gmail Attacks Ever” AI-Powered Phishing Attack
Gmail users warned as phishing attacks become more advanced: Do Not Click on Anything
Hacker pleads guilty to SIM swap attack on US SEC X account
Hacker targets Indonesian banks with ransomware threats
Hacker who hijacked SEC’s X account pleads guilty, faces maximum five-year sentence
Hackers Exploit Google Tag Manager to Deploy Credit Card Skimmers on Magento Stores
Hackers stole customers' personal data from Rivers Casino's systems
Handala Hackers Claim Massive Data Breach on Israeli Police, Leak 350,000 Files
Hewlett Packard Enterprise (HPE) notifies employees of data theft following Russian state-sponsored cyberattack
Hospital Sisters Health System says cyber attack impacted over 880,000 patients
How Deepseek’s security failures shape the future of cyber defense on AI
Huge cyber attack under way - 2.8 million IPs being used to target VPN devices
Karnataka Police Investigates Cyber Attack on Kaveri 2.0 Property Registrations
Lawmakers propose DeepSeek ban on government devices
London council hit by 20,000 cyberattacks every day
Malicious Machine Learning (ML) models found on Hugging Face Hub
Media giant Lee Enterprises confirms cyberattack as news outlets report ongoing disruption
Most Sophisticated Gmail Attacks Ever - FBI Says: Do Not Click Anything
NetSupport RAT Grant Attackers Full Access to Victims Systems
New OG Spoof Toolkit Manipulates Social Media Links for Cybercrime
Newport man reveals shocking NHS data protection breach
Newspaper conglomerate Lee Enterprises says cyberattack disrupting print editions
Notable Ransomware Statistics and Facts
Out of 6,000 non-IPA requests, Apple provided UK with iCloud data only four times since 2020
Over 2 million IPs bombard edge network devices in ongoing brute force login attack
Over 12,000 KerioControl firewalls exposed to exploited RCE flaw
Phishing to QR code scam: Key steps to avoid some common UPI-related frauds
Police arrests 4 Phobos ransomware suspects, seizes 8Base sites
PowerSchool data breach exposes some Rocky View Schools records dating back to 2012
Predictive and Generative AI Solutions in Cybersecurity Automation
Quishing via QR Codes Emerging as a Top Attack Vector Used by Hackers
Ransomware extortion rose by 46% in Q4 2024
Ransomware Groups Made Less Money in 2024
Ransomware Industrialization Impacts Security Ops
Ransomware Payments Dropped 35% in 2024 as Over Half of Victims Refused to Pay Cybercriminals
Ransomware Payments Dropped By 35%, As Victims Refusing To Pay
Ransomware Payments Plummet Despite Catastrophic Hacks in 2024
Ransomware Payments Plunge 35% as More Victims Refuse to Pay
Reducing ransomware recovery costs in education
Russia disappearing from the internet: cloaking digital presence brings strategic cyberwarfare advantage
San Francisco-Marin Food Bank says hackers stole 60,000 customers' personal details
Scammers Use Fake Facebook Copyright Notices to Hijack Accounts
Scotland: Health board remains 'vigilant' over cyber attacks
Security validation: The new standard for cyber resilience
Sky ECC encrypted service distributors arrested in Spain, Netherlands
South African Weather Service hard at work to restore systems after cyber attack
Students suing Education Department worry data Department of Government Efficiency (DOGE) has accessed could be used for immigration enforcement
TeamViewer's CISO on Thriving After Russian Cyber-Attack
The Evolving Ransomware Threat: Challenges and Innovations
UK Military Fast-Tracks Cybersecurity Recruitment
UK’s secret Apple iCloud backdoor order is a global emergency, say critics
US: Man Gets 20 Years for $37 million Crypto Heist
Was Cisco Just Hit By Ransomware? What Happened And What To Do
‘We Don’t Negotiate with Terrorists’: Ransomware Strategy in Modern Cybersecurity
XE Hacker Group Exploits VeraCore Zero-Day to Deploy Persistent Web Shells
Zimbra Releases Security Updates for SQL Injection, Stored XSS, and SSRF Vulnerabilities
Welcome to last month's DLR Report, an exclusive presentation of Data-Leaking Ransomware Operator's Global and US Victims that were claimed between 1st January and 31st January 2025.
Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 27th January and 2nd February 2025, kindly assisted by our partners.