10bis, Israel’s leading food ordering and delivery platform and a subsidiary of the global Just Eat Takeaway group, is reportedly compromised with its user database being offered for sale. The alleged leak contains 1.4 million rows of personal data and a sample CSV has been provided, with the seller asking $2,500…
Category: Cyber Attack
The National Society Sons of the American Revolution (NSSAR) appears to have suffered a data breach with an unidentified party offering a 45.66 GB database of over 16,000 files for sale. Exposed records reportedly include membership analytics for over 37,000 members, genealogical research and high-quality scans of Revolutionary-era records, administrative documents,…
BreachForums announced an official partnership with the VECT platform and significant infrastructure upgrades following a security audit. New measures include an upgraded WAF, stronger content security policies and anti‑XSS headers, anomaly detection, distribution of VECT affiliate keys, an XMR-only multisignature escrow, a puzzle/quiz for affiliates, and continued importation of OG BreachForums…
Pavarini McGovern, a division of STO Building Group and general contractor for major Manhattan landmarks, has allegedly been compromised and sensitive building data was put up for sale. The 240 GB dataset, offered for $48,500, reportedly includes complete drawing sets, full specifications, professional As-Built models (Navisworks, Revit, DWG, IFC), coordinated and…
Adumo, South Africa’s largest independent payment provider and a subsidiary of Lesaka Technologies, is reportedly compromised with a dark web listing offering its technical database and source code for $7,000. The alleged 14 GB leak of 15,546 files reportedly includes InnerEDGE Docker images and vca-installer, C# POS demo and advanced card-operation…
The privacy-focused video hosting service turbo.cr / saint2.su, which rotates domains to evade legal pressure, has allegedly been compromised with its database listed for sale on a dark web forum. The 1.04 GB dataset reportedly contains about 110,000 user profiles including email addresses, password hashes, session cookies, API keys, and detailed…
Panther’s investigation uncovered obfuscated npm packages (April 6–9, 2026) that were variants of OtterCookie, an infostealer and backdoor attributed to North Korean state-sponsored actors. The campaign used a two-layer distribution—benign wrapper packages cloning big.js that pull a hidden payload dependency—and a custom base91-like per-function obfuscation to evade detection and static analysis….
A security researcher revealed that over 30,000 Fiverr PDF task files were indexed by Google after public-facing Cloudinary URLs used by Fiverr were left accessible without expiration or authentication. Fiverr did not acknowledge the report for more than 40 days, and because the issue did not receive a CVE or CERT…
Spring Lake Park Schools canceled classes and programs districtwide after its technology team detected unauthorized access and shut down systems to prevent further intrusion in a suspected ransomware incident. Outside cybersecurity specialists and law enforcement are investigating as outages affect email and support tools, and Minnesota notification laws may require the district to alert families if personal data were compromised. #SpringLakeParkSchools #Outlook
A Kazakh national, identified as “A,” was arrested after authorities linked him to a ransomware group that encrypted servers at hospitals and apartment management offices and demanded Bitcoin for decryption. Police coordinated with Kazakh investigative agencies to seize evidence in Almaty, halt ongoing attacks, and plan to share decryption tools with KISA while urging organizations to remove default credentials and enable multi-factor authentication. #GyeonggiSouthernPoliceAgency #HospitalServers
Autovista is responding to a ransomware incident affecting certain systems in Europe and Australia and has engaged external experts to investigate and contain the incident. Restoring impacted applications securely is the top priority, there is no firm timeline yet, some employee email access is temporarily disrupted, and customers should monitor this page for updates. #Autovista #AutovistaSystems
AlpesCloud Status reports that the IT services provider Dialogue Logique was hit by a large-scale cyberattack on April 13, 2026, prompting immediate isolation of its datacenter infrastructure to protect data. Technical teams and cybersecurity experts are working with Swiss federal authorities and cantonal police to analyze the intrusion and restore services, but recovery is slowed by rigorous security checks. #AlpesCloudStatus #DialogueLogique
AMETEK Process Instruments has allegedly suffered a data breach with 3.76 GB of internal technical and commercial files offered for sale. Exposed materials reportedly include proprietary software, detailed technical drawings and manuals, 2025 price lists, spare parts and service pricing, sales presentations, training videos, and corporate legal documents. #AMETEKProcessInstruments #AMEVisionV2_13…
The local network of the Royal Athenaeum of Izel was hit by a cyberattack that encrypted data on the morning of Thursday, April 9, 2026. Rapid intervention by the maintenance team prevented any theft of personal data, and full service restoration is expected next week using backups from the Federation Wallonia-Brussels. #EcoleEnLigne #FederationWalloniaBrussels
Krybit claims to have breached rival 0APT’s infrastructure, publishing a defacement page and leaked chat logs that warn 0APT not to “play with the big boys.” The actor says the compromise exposed server logs, system credential files, cryptographic keys, command histories, and backend PHP scripts as part of a campaign to…