The Gentlemen ransomware group claims to have breached multiple organizations across Europe and North America and has posted three new alleged victims on its dark web extortion portal. The group says it exfiltrated 13.15 GB from Groupe Courtois Automobiles, 18.49 GB from STS Travel, and 1.03 TB from Durable Superior Casters….
Category: Cyber Attack
ShinyHunters claims to have leaked the BreachForums v5 database and historic backups, providing a download link to extensive backend data. The group condemned the “N/A” and “Indra” personas for running alternative forum domains and says it holds exploits for all MyBB 1.8 versions, with allegedly exposed data including private messages, email…
A threat actor known as 0BITS has publicly posted a partial database leak from Rouzbeh Educational Complex, claiming 202,383 records from a June 2023 breach. The CSV dataset, offered as a free download for forum members, contains sensitive personal identifiers including social security numbers, national ID numbers, usernames, passwords, and ID…
The City of Martinsville in Virginia reported a cyberattack that was contained on Wednesday, March 25, 2026. Officials said some municipal building services may be temporarily limited or delayed through the end of the week, and no consumer or citizen personal information was compromised. #Martinsville #CityOfMartinsville
The Handala Hack Team published highly sensitive personal data for 28 Lockheed Martin engineers stationed in Israel, including names, phone numbers, addresses, passport details, and family information. The group issued a 48-hour ultimatum threatening missile strikes and physical attacks while claiming “Operation Lockheed Martin,” though there is no evidence of a…
InterLock claims to have breached Goodwill Industries of North Central Pennsylvania and exfiltrated 80 GB of data. The allegedly stolen data includes 35,335 files and 4,849 folders containing employee and partner personal data, financial and 401k records, liability insurance files, purchase orders, and daily store reports. #InterLock #GoodwillIndustriesOfNorthCentralPennsylvania…
Threat actor group Dragonforce claims to have breached multiple organizations worldwide, naming Pride Solvents & Chemical Co., Kalima Resort & Spa, and SSP Airport Gastronomiegesellschaft mbH as alleged victims. The group alleges they exfiltrated large volumes of sensitive data—716.5 GB from SSP, 308.51 GB from Kalima, and 65.26 GB from Pride—consisting…
The Port of Vigo was hit by a ransomware attack on 25 March 2026 that isolated its IT systems and temporarily suspended digital cargo management services. Although technical teams neutralized the threat, full server restoration is delayed by precautionary security measures while staff rely on manual, paper-based procedures and forensic analysis continues. #PortOfVigo #APVigo
A threat actor known as Sorb claims to be selling the full user database from Alyna, a Kuwait-based laundry and cleaning mobile app, containing 18,000 records. The dataset includes MD5-hashed passwords, GPS coordinates and booking addresses, Kfast tokens, and other PII, and the listing is offered for $300 as a single-buyer…
A cyberattack crippled the IT systems of Papardo Hospital, locking terminals and databases and disrupting the SovraCup booking system. Leadership activated the security plan, shifted operations to cloud backups to maintain patient care, and alerted authorities while no sensitive data appears to have been stolen. #PapardoHospital #SovraCup
PRITS identified and neutralized an attempted cyberattack against the Department of Transportation and Public Works (DTOP) on March 23, 2026. Security systems isolated affected networks to prevent any personal data exfiltration, but driver services have been temporarily suspended and appointments will be rescheduled. #PRITS #DTOP
On 24 March 2026 threat actors accessed certain data hosted on a third-party cloud platform and sent threatening messages to the company. The organisation activated incident response procedures, blocked abnormal access, enforced multi-factor authentication, and concluded that no sensitive information or critical systems were compromised, with only a minor data leak and negligible impact on operations and customer confidentiality. #TodaysInformation #Winmate
Since March 2022 the pro‑Russian hacktivist group NoName057(16) has coordinated thousands of volunteers via its custom DDoS platform DDoSia to carry out over 1,500 DDoS attacks against governments, financial institutions, transportation networks, and critical infrastructure worldwide. Despite a multinational law enforcement disruption in Operation Eastwood (July 2025) that led to arrests…
A classified Iranian underground military air base known as Oghab 44 (Eagle 44) has allegedly been compromised, and a dark web seller is offering a purported 3TB database from the facility for $8,000. The leaked material reportedly includes highly sensitive military intelligence such as war operations documents, missile capabilities, nuclear systems…
National Oil Ethiopia PLC (NOC) reportedly suffered a major data breach and ransomware attack after a threat actor detailed an eight-step intrusion on a hacker forum. The attacker says they exploited an Exchange ProxyLogon vulnerability to escalate privileges, disable Kaspersky, compromise Veeam backups, deploy ransomware, and exfiltrate four databases including an…