The Handala Hack Team claims to have targeted Vered Haimovich, a retired Israeli Air Force colonel linked to secret IDF Squadron 166 and the Hermes drone program, alleging a hotel-based hardware swap in Uzbekistan aided by an insider. The group says it exfiltrated 100,000 emails, classified UAV operational data, Elbit Systems…
Category: Cyber Attack
The municipal government of Benito Juárez, which represents Cancún and surrounding areas in Quintana Roo, Mexico, allegedly suffered a data breach exposing sensitive business registration records. The leak published on a dark web forum reportedly affects more than 38,360 individuals and includes full names, RFC tax numbers, business details, contact information,…
Centro de Estudios Clínicos Anáhuac Mayab, a clinical facility affiliated with Universidad Anáhuac Mayab in Mexico, reportedly suffered a major data breach after an unknown user posted a download link to its internal databases on a dark web forum. The leaked records allegedly include sensitive patient health information, appointment details, and…
Governor Tim Walz issued an emergency executive order authorizing the National Guard to assist Winona County after a cyberattack began Monday and continued into Tuesday, disrupting critical systems and municipal services. State and federal agencies, including Minnesota Information Technology Services, the Minnesota Bureau of Criminal Apprehension, the FBI, the League of Minnesota Cities, and external cybersecurity experts, are coordinating the response to restore services and protect systems. #WinonaCounty #NationalGuard
Dutch healthcare software vendor ChipSoft was knocked offline after a ransomware attack confirmed by Z-CERT on April 7, affecting a provider that serves around 80% of hospitals in the Netherlands. While most hospitals can still use patient portals, 11 facilities have pulled ChipSoft systems offline and Z-CERT urges audits and reporting as recent incidents like the Nova attack on Eurofins underline patient safety risks and the need for disaster recovery planning. #ChipSoft #Nova
A major cyberattack against ChipSoft, a leading electronic patient record provider in the Netherlands, forced eleven hospitals to disconnect their portals as a precaution. While ChipSoft has not officially confirmed the attack type, internal reports indicate likely use of ransomware with possible theft of patient data, affecting around three quarters of Dutch hospitals and raising serious concerns about continuity of care and health information security. #ChipSoft #DutchHospitals
Service Telecom, a major French and European telecom provider that uses the Orange mobile network, appears to have been breached with corporate and customer data posted for sale on a cybercrime forum for $2,200. The leak allegedly includes 2,835,372 user records, administrator logs, customer feedback and change logs, full professional email…
A threat actor using the name Florence, tied to the Nightmare group, is selling root-level remote code execution and shell access to a firewall protecting the Botswana Government Health Portal. The Linux-based firewall listing is priced at $300 (non-negotiable) and offers capabilities to intercept traffic, modify rules, and pivot into internal…
Fountain, a publicly listed Belgian company that provides workplace coffee services, confirmed a ransomware attack involving unauthorized access and the exfiltration of data. The company filed a criminal complaint on 31 March 2026 and is investigating the scope of the breach while stating it does not expect significant financial impact at this stage; the attack was claimed by Dragonforce on 1 April 2026. #Fountain #Dragonforce
Gritman Medical Center began reopening its clinics in Moscow, Idaho, on Friday after a cybersecurity incident on Wednesday that disrupted outpatient care. The hospital and emergency department remained open, investigators say no patient data were compromised, though the incident’s exact nature and origin are still under investigation. #GritmanMedicalCenter #MoscowIdaho
Signature Healthcare and Brockton Hospital confirmed a cybersecurity incident that disrupted certain IT systems, causing ambulance traffic to be diverted and infusion chemotherapy services to be cancelled on April 6, 2026. The hospital activated offline procedures, closed retail pharmacies, and is working with external partners to investigate and restore operations as quickly as possible. #SignatureHealthcare #BrocktonHospital
AlumnForce, a French alumni and professional community platform, was allegedly breached and 2.7 million user records are reportedly being sold. The leak spans records from 1987 to 2026 across 49 institutions—including Sciences Po, HEC Paris and École Polytechnique—and exposes names, contact details, job and education histories and other sensitive personal data;…
KyunCall, a Japan-based anonymous video chat platform, has reportedly been breached, exposing over 250GB of sensitive user data. The leak contains personal identifiers, authentication details, device and location metadata, profile images, and detailed account activity. #KyunCall #KyunCallLeak…
MyLovely.AI, an NSFW AI artwork generation platform, was allegedly compromised with a 2.1 GB JSON database from April 2026 posted to a dark web forum, affecting 106,362 registered users. The leak exposes highly sensitive interactions including user identifiers, generated images and videos, private and negative prompts, gallery URLs, profile metadata, and…
A threat actor using the handle hackboy claims to be selling 10,152,989 credit registration records allegedly extracted from the Kbank_Vietnam_Core system in February 2026, exposing detailed personal, employment, and credit information. The dataset contains national ID numbers, salaries, employer names, CIC credit scores, and system metadata, creating high risk for identity…