The Gentlemen ransomware group was hit by a data leak that exposed internal chats, infrastructure details, and tactics used to compromise victims and prepare for encryption. The leaked material shows repeated reliance on compromised credentials, Fortinet edge devices, living-off-the-land techniques, and aggressive efforts to disable defenses and target backups, NAS systems, and critical servers. #TheGentlemen #Fortinet #ZeroPulse #BedrockSafeguard #Sony #Barclays
Category: Cyber Attack
West Pharmaceutical Services disclosed a material cybersecurity incident in which unauthorized access led to data exfiltration and encryption of certain systems. The company activated incident response protocols, involved law enforcement and Palo Alto Networks’ Unit 42, and is still restoring operations globally. #WestPharmaceuticalServices #Unit42
A threat actor known as zestix is allegedly selling a 2.19 GB archive with 2,211 files covering the SAW-TAD smart diaper sensing project, including R&D documents, prototypes, patent drafts, and hardware files. The leak also includes a full SPMet metrology archive with conference materials, reports, and internal records, exposing sensitive intellectual…
A threat actor claims to be selling a database linked to KAMS PARIS, a French niche perfumery, containing 187,927 customer records for $350. The exposed CSV sample reportedly includes names, addresses, birth dates, phone numbers, IBANs, and other personal details. #KAMSParis #moxzey…
Heberger, a construction company based in Schifferstadt, was hit by a cyberattack early on Thursday morning, May 7. Despite maintaining high IT security standards, the company confirmed it was affected by the intrusion.
Notin, an IT services provider for notaries, was hit by a new ransomware attack five months after the previous incident, this time attributed to the Crypto24 group using LockBit 5.0. The attack disrupted services and email for at least fifteen notary offices across Spain. #Notin #Crypto24 #LockBit5.0
A threat actor identified as INT3X claims to have leaked a database from Mansoura University, exposing 731 records tied to people and entities affiliated with the Egyptian public institution. The allegedly leaked data includes names, work details, phone numbers, job titles, workplaces, and unique row IDs, and was released for free…
The General Directorate of Public Accounting and Treasury (DGCPT) in Senegal reported an information systems disruption beginning on May 10, 2026, following an unspecified incident. The event comes months after a cyber-extortion attack against the Directorate General of Taxes and Domains (DGID), highlighting growing threats to public institutions in Africa. #DGCPT #DGID #Senegal
Froch detected login attempts and cyberattacks on the internal networks of its headquarters, and defense mechanisms were immediately activated to prevent any impact on information system security. Current assessment indicates that no personal or confidential data was leaked and no major operational consequences are expected. #Froch
ALS Ltd disclosed a cyber security incident that temporarily disrupted parts of its global operations by involving unauthorized third-party access to parts of its IT systems. The company has restored most services, engaged external cyber security experts, and is assessing the impact on customers, contracts, and financial performance. #ALSLtd #ASXALQ
Several Australian mining companies are facing disruption after a major cyberattack on an industry software provider, with Northern Star Resources and Evolution Mining among the potentially affected firms. The incident has forced companies to work on restoring access to critical technology systems while hackers reportedly demand a ransom. #NorthernStarResources #EvolutionMining #ScopeSystems
Unoaerre, the Italian jewelry manufacturer, was hit by a cyberattack that disrupted its operating systems and led attackers to demand a 3.8 million euro ransom in bitcoin. Early investigations suggest possible links to actors from the Middle East and Eastern Europe, while initial checks indicate the damage may not be irreversible and production could resume. #Unoaerre
West Pharmaceutical confirmed it was hit by a cyberattack at its Nouvion-en-Thiérache site, which had already been shut down since May 4. An investigation is underway to determine the nature and scope of the incident, and no restart date has been announced yet. #WestPharmaceutical #NouvionenThiérache
A threat actor known as fuckiewuckie claims to have re-dumped the moreideas.ae database, describing the new leak as “more juicy than before” and tying it to May 2026. The alleged re-leak exposes 787,217 student records from Dubai-based MoreIdeas General Trading LLC, including names, contact details, addresses, and parent ID proof. #MoreIdeasGeneralTradingLLC…
A threat actor claims to be selling a database from a Belgian sports and fitness chain branded as ANIMO, with about 105,000 customer records. The alleged leak includes sensitive personal and banking data such as IBAN and BIC details, with the full dataset priced at $8,500. #ANIMO #Belgium #IBAN #BIC…