A threat actor named Zestix, also known as Sentap, exploits infected employee devices and weak security practices to access and sell corporate cloud credentials. This campaign highlights the importance of enforcing Multi-Factor Authentication and monitoring for compromised credentials in preventing data breaches. #Zestix #Sentap #Infostealer #ShareFile #Nextcloud
Tag: DARK WEB
The Lynx ransomware group has announced a data breach affecting multiple organizations across various countries, posting their details on its dark web leak site. These victims include government agencies, businesses, and service providers in Australia, Canada, France, and the US. #LynxRansomware #DarkWebLeak…
Bolivian Military and Police Documents Related to Evo Morales Assassination Attempt Offered for Sale
Sensitive Bolivian military and police documents related to an assassination attempt on Evo Morales have been offered for sale online. The breach and subsequent document leak were allegedly facilitated by a threat actor named “h4x0ratrina” who claims to have compromised government servers. #EvoMorales #BolivianMilitary #PoliceDocuments #DarkWebLeak…
A cybersecurity incident involving a possible data breach at French motorcycle insurance broker RUN Assurance has been reported. The breach was claimed by the threat actor Shenron and includes sensitive customer and company data. #Shenron #RUNAssurance…
The Qilin ransomware group has claimed responsibility for breaching multiple organizations, with victims listed on their dark web leak site as of January 2, 2026. The affected companies include Sugawara Laboratories in Japan and CSV Group in Italy, but no proof samples have been uploaded yet. #QilinRansomware #SugawaraLaboratories #CSVGroup…
A threat actor named Solonik offered access to an employee email account from Vietnam’s General Department of Taxation on BreachForums. The listing included credentials for an active inbox with sensitive government and tax data, highlighting a significant security breach. #Solonik #VietnamTaxDepartment…
A cyber threat actor named ShinchanReal has advertised over 20 million consumer records from Experian, a major U.S. credit bureau. This data breach poses a significant risk to financial security and consumer privacy. #Experian #DataBreach…
Victims of the CL0P ransomware group’s August campaign, including Korean Air and the University of Phoenix, are still dealing with data breaches affecting millions of individuals. CL0P continues to exploit vulnerabilities in file sharing services, expanding its reach beyond Oracle E-Business Suite. #CL0P #OracleEBS #KoreanAir #UniversityOfPhoenix #Fin11…
A data breach involving the Russian ticketing platform Kassy.ru exposed approximately 300,000 user records. The incident was linked to threat actor Demetrius and categorized as a medium-severity breach affecting Russia’s events services industry. #Kassy.ru #DataBreach #Demetrius…
Elford, Inc., a U.S.-based construction company, experienced a data breach where 475 internal project files were allegedly stolen and offered for sale by threat actor zestix. The breach involves sensitive technical and management documents related to a specific construction project. #zestix #ElfordInc #DataBreach #ConstructionSecurity…
The LAPSUS$ Group claims to have leaked approximately 60GB of sensitive data from France’s Ministry of Agriculture and Food Sovereignty. This breach involves extensive access to internal systems, including credentials, databases, and application logs, marking a significant security incident. #LAPSUS$ #FrenchMinistryOfAgriculture…
A cyber threat actor named “czx” has compromised the CRM database of Grenoble Ecole de Management in France and listed it for sale on BreachForums. The leaked data includes detailed information on students, alumni, and prospects, posing significant risks for targeted attacks. #GrenobleEcoleDeManagement #DataBreach…
A data breach involving Al-Nassr FC and Asian football personnel records has resulted in confidential information being offered for sale. The incident highlights high-severity security risks within the sports industry, affecting organizations across Saudi Arabia and Asia. #AlNassrFC #FootballDataBreach…
Sax LLP, a leading US accounting firm, experienced a major data breach affecting over 220,000 individuals, with the attack remaining undisclosed for more than 16 months. The breach involved the theft of sensitive personal data, and delayed notification has undermined the effectiveness of subsequent credit monitoring services. #SaxLLP #DataBreach #Cyberattack…
A critical vulnerability in MongoDB, known as MongoBleed (CVE-2025-14847), allows attackers to remotely read sensitive data from server memory without authentication. Due to active exploitation and widespread MongoDB deployments, organizations are urged to apply patches or disable zlib compression to prevent breaches. #MongoBleed #NoSQLVulnerability…