Today’s Information was targeted in a hacker attack on 27 January 2026, but its defensive measures prevented any personal or confidential data from being leaked and kept operational impact minimal. The company is continuing to reinforce the security of its information systems. #TodaysInformation #PTTech
Category: Cyber Attack
Clawdbot instances are proliferating across social media and on Mac mini, container, and VPS deployments, but many remain exposed due to insecure default configurations. Exposed instances—some holding broad service credentials—can be abused to execute arbitrary commands and exfiltrate data via an authentication bypass related to reverse proxy behavior. #Clawdbot #NGINX…
Cloudflare published a technical post-mortem after a 25-minute BGP route leak that disrupted IPv6 traffic, causing congestion, packet loss, and an estimated 12Gbps throughput deficit. The incident was triggered by a deleted prefix list that made export policies overly permissive (a hybrid Type 3/Type 4 leak under RFC 7908) and was…
Enviro-Hub Holdings Ltd. said its group servers were hit by a ransomware attack but does not expect any material impact on its business operations so far. The company reported the incident to the Personal Data Protection Commission of Singapore and is investigating while advising shareholders and potential investors to exercise caution in trading its shares. #EnviroHubHoldings #PDPC
A French online dating site, Lovsuit.com, was reportedly breached, exposing a database dating back to 2021 that was published on a cybercrime forum by a threat actor. The leak contains extensive personal data — including names, emails, password hashes, dates of birth, precise geolocation, profile image paths, chat logs, and interaction…
The Clop ransomware group claims to have breached 43 targets in the last 24 hours and posted a massive new list of victims to its dark web leak site. The listings span organizations across the United States, Canada, the United Kingdom, Europe, and New Zealand and include major names such as…
Winona County experienced a ransomware attack that affected its computer networks and telephone systems. Emergency communications including 911 remain operational, and the county is working with cybersecurity experts to resolve the issue. #WinonaCounty #911
A threat actor using the handle “renn” claims to be selling a 1.9GB Affirm user database containing 26,702,116 records. The listing, posted on the Exploit forum, lists the breach date as January 23, 2026, and offers the full database for $14,000 or $700 per million records with a one-million-record minimum sale…
A cyberattack hit the Heinsberg city administration, rendering municipal services unavailable. Phone numbers and email addresses for the administration are currently inaccessible, and the Zentral- und Ansprechstelle Cybercrime has opened an investigation. #Heinsberg #ZentralUndAnsprechstelleCybercrime
K-Chess, an online chess platform operated by Keysquare (associated with Kasparov Chess), has allegedly been scraped by a threat actor who claims to have leaked approximately 83,000 rows of user data from the platform’s database in 2024. The sample leak reportedly contains full user profiles, social IDs, personal details, extensive chess…
Epitech has reportedly been targeted in a data scraping incident that exposed a 5.4MB database of user profiles on a dark web forum. The leaked dataset allegedly includes full names, email addresses, and phone numbers made available for download by a threat actor. #Epitech #DarkWebForum…
Republic.com, an international investment platform, has allegedly been compromised with a threat actor listing a user database for sale. The actor claims the dataset contains 4,942,704 records with personal details of nearly 5 million users and is being offered for $2,400 after an alleged January 21, 2026 breach. #RepublicCom #InvestmentPlatform…
The LAPSUS group claims to have breached Salesfloor and exfiltrated roughly 1TB compressed (about 4TB uncompressed) of internal and client data, including source code, SQL databases, system logs, user images, and customer PII. The actor alleges files contain data from multiple high-profile retail clients such as Fabletics, GNC, Puma India, and…
The Institut des experts-comptables (IDW) was hit by a serious cyberattack targeting its FINANCE unit. Commercial and personal data may have fallen into the hands of criminals. #IDW #InstitutDesExpertsComptables
Blijdorp was hit by a cyberattack on 21 January 2026, but rapid detection and the shutdown of local servers kept the impact limited. Cloud applications remained operational and client records were accessible while the IT team collaborates with a cybersecurity expert to restore full operations. #Blijdorp #LocalServers