The School Service Center of Le Fer experienced a cyberattack that forced the shutdown of all its systems and services. An investigation, supported by the Governmental Cyber Defense Center, is underway to determine the scope of the incident and whether any data were compromised. #SchoolServiceCenterofLeFer #GovernmentalCyberDefenseCenter
Category: Cyber Attack
Q Continuum’s investigation found a vast surveillance network of 287 malicious Chrome extensions exfiltrating browsing history from an estimated 37.4 million users—about 1% of the global Chrome user base. Researchers used a behavior-based automated pipeline (Chrome in Docker with a MITM proxy) to catch extensions hiding stolen URLs in Google Analytics…
A threat actor using the handle “Angel_Batista” claims to be selling the databases of Russian EdTech platform Foxford, alleging a breach impacting approximately 13.6 million customers. The listing reportedly appeared on Tor and, if verified, would be one of the largest education-sector data breaches reported this year. #Angel_Batista #Foxford…
The Gentlemen ransomware group claims to have breached multiple organizations in the United Arab Emirates. Their latest victim list includes Autostrad Rent a Car and Emirates National Group, both involved in transport and mobility services in the UAE. #GentlemenRansomware #AutostradRentACar #EmiratesNationalGroup…
The BravoX ransomware group claims to have breached the Ordre des experts-comptables de Bretagne (OEC Bretagne), alleging exfiltration of 859.7 GB of data. The reportedly stolen materials include client information, contracts, personal data, confidential documents, and accounting records. #BravoX #OECBretagne…
INC Ransomware claims to have breached Taiwanese manufacturer Nang Kuang Pharmaceutical Co., Ltd., exfiltrating 430GB of sensitive corporate, clinical, and partner data. The actor warns they will publish the stolen files within four weeks if demands are not met, and the exposed material reportedly includes partner lists (including Pfizer), drug project…
youX, an Australian B2B FinTech platform formerly known as Drive IQ, allegedly suffered a 141GB data breach from a MongoDB Atlas cluster exposing personal, financial, and operational records for hundreds of thousands of borrowers and broker organizations. Attackers claim a “breach preview” after an extortion demand was refused and say production…
A cyberattack has crippled CHOC FM radio station in Portneuf, rendering its computer systems unusable and halting on-air broadcasts. The Sûreté du Québec says the incident was caused by ransomware and has opened an investigation. #CHOCFM #SureteDuQuebec
IFMNOTICIAS suffered a cyberattack that temporarily paralyzed its digital operations while its team works to restore services. The outlet calls the incident a form of censorship and reaffirms its commitment to independent, free journalism and press freedom. #IFMNOTICIAS #FreedomOfPress
A threat actor using the handle Shenron claims to have leaked Neotel’s database, exposing 773,757 customer and call records. The breach reportedly occurred in 2025 with the data released in 2026 and is categorized as a medium-severity open-web data breach. #Shenron #Neotel…
ResPublica claims it breached Radius Global Solutions LLC in January 2026, compromising one of the company’s contact center branches. The actor’s listing alleges exposure of employee HR records and client information, and Radius was reportedly notified in January but had not publicly disclosed the breach by February 2026. #RadiusGlobalSolutions #ResPublica…
A threat actor using the handle Reve posted an auction offering full unauthorized access — WordPress admin panel, web shell, and database — to an unidentified US-based e-commerce shop. The site runs on WordPress with native Authorize.net payments and logged 952 orders between November 2025 and February 2026, with the actor…
Anon-WMG posted a forum listing claiming unauthorized FTP server access to an unidentified France-based Content & Collaboration Software company, asserting access to over 2,000 files totaling more than 150 GB. Exposed data reportedly includes VPN configurations, server and database files, backups, and contracts, and the actor is offering the FTP access…
The Municipalidad Distrital de Mejía has allegedly been compromised through the facilita.gob.pe digital platform, with a threat actor claiming access to the municipality’s digital headquarters. Sampled data reportedly includes citizen names, DNI and RUC numbers, contact details, physical addresses, administrative request details, and direct links to uploaded PDFs spanning early 2024…
The Dragonforce ransomware group has claimed responsibility for breaching two U.S. companies, posting Yelete Group Inc and Empire Express on its leak site and threatening to publish stolen data. The actor says it exfiltrated approximately 33.17 GB from Yelete Group Inc and 93.74 GB from Empire Express, including internal company documents…