Account required
Sign in to view threat intelligence
CTI data is restricted to registered users. Create a free account to browse the dashboard, then upgrade to a paid plan to unlock event details and IOCs.
Daily brief 28 April 2026
Polymarket, Wells Fargo, GitHub RCE Lead High-Volume Breach Day
184 events tracked; Polymarket API breach, Wells Fargo data sale, GitHub CVE-2026-3854 RCE, VECT 2.0 wiper, and LofyGang stealer resurface. Indonesia, France, US heavily targeted.
Events
0
In current view
Critical exposure
0
Last 24 hours
0
vs previous 24h
Distinct actors
0
In current view
By attack category · 9
Data Exposure
0
Ransomware
0
Access Brokerage
0
DDoS
0
Web Defacement
0
Malware Ops
0
Vulnerability
0
Threat Alert
0
Cyber Operation
0
Top victim countries
No country data in this view.
Subscriber-only
CTI brief — 2026-04-28
The CTI dashboard tracks dark-web disclosures, ransomware claims, data leaks and active threat actors. Full event list, threat-actor profiles and historical archive are available to subscribers.
Events
showing 0
Category
Title
Actor
Country
Date
- Web DefacementOpsShadowStrike targets the website of ajbrowns.comOpsShadowStrike—28 Apr
- Access BrokerageAlleged leak of webshell access to Manave Lex and Partnersmaulnism1337India28 Apr
- Data BreachFrance boulangeraloo985515France28 Apr
- Data BreachFrance MONDIAL RELAYaloo985515France28 Apr
- Data BreachCACPE PASTAZA ECUADORGondorPeEcuador28 Apr
- Data LeakAlleged leak of Israel’s databaseJAX7Israel28 Apr
- Access BrokerageAlleged leak of webshell access to Road Paymaulnism1337India28 Apr
- Data LeakAlleged data leak of LedgeraisdataAustralia28 Apr
- Data BreachAlleged data breach of Indonesian Police DatabaseJAX7Indonesia28 Apr
- DDoSRipperSec targets the website of Betar USRipperSecUnited States28 Apr
- RansomwareClearway Group of Companies falls victim to CL0P RansomwareCL0PCanada28 Apr
- Data LeakAlleged sale of 100 USA credit cards recordsurbsnvUnited States28 Apr
- DDoSZxS3C targets the website of Tzu Chi FoundationZxS3CThailand28 Apr
- DDoSZxS3C targets the website of The Federation of Thai IndustriesZxS3CThailand28 Apr
- DDoSZxS3C targets the website of Thailand Consumers CouncilZxS3CThailand28 Apr
- DDoSZxS3C targets the website of Population and Community Development AssociationZxS3CThailand28 Apr
- DDoSZxS3C targets the website of Buddhapraksha FoundationZxS3CThailand28 Apr
- Access BrokerageAlleged Sale of Unauthorized Access to an Unidentified Organisation in BrazilBig-BroBrazil28 Apr
- Data BreachAlleged Data Breach of TalentelySpirigatitoIndia28 Apr
- Data BreachAlleged Data Breach of Ikeja ElectricByteToBreachNigeria28 Apr
- Data BreachAlleged Data Breach of NEMEA GroupChimeraZFrance28 Apr
- Data BreachAlleged Data Breach of Universitas Gadjah MadaMr. Hanz XploitIndonesia28 Apr
- Data BreachPolymarket.com FULL API BREACH - 300K+ Records, 10kxorcatUnited States28 Apr
- Data BreachParaguay, 288394 personsdbrick84Paraguay28 Apr
- Data BreachNEMEA GROUP (7.0 GB)ChimeraZFrance28 Apr
- Data Breachparis.fr 430kData Breach VIPFrance28 Apr
- Data Breachuniversitykart.com / IndiaSensitive2025India28 Apr
- Data BreachFrance MinérauxijpysFrance28 Apr
- Data BreachKroll.comijpysUnited States28 Apr
- Data Breachcarmax.comjska000United States28 Apr
- Data Breach2379 U.S. MarineshandalaUnited States28 Apr
- RansomwareSteinger, Greene & Feiner falls victim to CL0P RansomwareCL0PUnited States28 Apr
- DDoSBlue Shadow targets the website of Eco Thailand FoundationBlue ShadowThailand28 Apr
- DDoSRipperSec targets the website of Zioness MovementRipperSecUnited States28 Apr
- DDoSBlue Shadow targets the website of Thai Sports Association under the Royal PatronageBlue ShadowThailand28 Apr
- RansomwareMoser Spielgeräte GmbH & Co KG falls victim to KRYBIT RansomwareKRYBITAustria28 Apr
- Web DefacementZ-BL4CX-H4T targets the website of BallerTubeZ-BL4CX-H4TUnited States28 Apr
- Data BreachAlleged Data Breach of Badan Kepegawaian Negara (BKN)Xyph0rixIndonesia28 Apr
- Data LeakAlleged data leak of Universitas BorobudurBABAYO EROR SYSTEMIndonesia28 Apr
- Web Defacementchinafans targets the website of Nova Medical CenterchinafansUnited Arab Emirates28 Apr
- DDoSNoName targets the website of Research and Production Complex PhotopryladNoName057(16)Ukraine28 Apr
- RansomwareCyberattack Impacts Kent County Library System—United States28 Apr
- DDoSNoName targets the website of SE Kharkiv Morozov Machine Building DesignNoName057(16)Ukraine28 Apr
- DDoSNoName targets the website of Malyshev FactoryNoName057(16)Ukraine28 Apr
- DDoSNoName targets the website of FerrexpoNoName057(16)Ukraine28 Apr
- DDoSNoName targets the website of Zorya-MashproektNoName057(16)Ukraine28 Apr
- RansomwareSt. Luke Lutheran Community falls Victim to LockBit 5.0 RansomwareLOCKBIT 5.0United States28 Apr
- RansomwareInstapack falls Victim to LockBit 5.0 RansomwareLOCKBIT 5.0Spain28 Apr
- Access BrokerageAlleged sale of unauthorized access to unidentified Opencart in UKLions8711United Kingdom28 Apr
- RansomwareDurable Technologies falls victim to INC RANSOMINC RANSOMUnited States28 Apr
- Data BreachAlleged Data Breach of Dime Comércio Importação e Exportação LtdaWorldleaksBrazil28 Apr
- Data BreachAlleged Data Breach of EMPAQUES CARMAWorldleaksMexico28 Apr
- Data BreachAlleged Data Breach of PT. Intikom Berlian MustikaWorldleaksIndonesia28 Apr
- Data BreachAlleged Data Breach of ChemDry Kuwaitfent888Kuwait28 Apr
- Data BreachFONDO DE GARANTIAS ANTIOQUIAPetro_EscobarColombia28 Apr
- Data Breach4 Million database empresas.movistar.com.pe TelecomMDGhostPeru28 Apr
- Data BreachAlleged Data Breach of Modular Construction IndonesiakyzoIndonesia28 Apr
- Data BreachAlleged Data Breach of Central Java Transportation AgencyMr. Hanz XploitIndonesia28 Apr
- Data BreachAlleged leak of data from Wells FargoRubiconH4CKUnited States28 Apr
- Data BreachAlleged Data Breach of UniversityKartSensitive2025India28 Apr
- VulnerabilityAlleged leak of GPURootsec—28 Apr
- VulnerabilityAlleged leak of SHARRootsec—28 Apr
- DDoSNoName targets the website of Pembrokeshire County CouncilNoName057(16)United Kingdom28 Apr
- VulnerabilityAlleged leak of FlashRootsec—28 Apr
- VulnerabilityAlleged leak of QualcommRootsec—28 Apr
- DDoSNoName targets the website of North West Leicestershire District CouncilNoName057(16)United Kingdom28 Apr
- Data Breach4,6 million Wels Fargo Bank dataRubiconH4ckUnited States28 Apr
- Data BreachInstituto Registral Estado de Puebla [11,269 files]StraightonumberoneMexico28 Apr
- Data BreachFONDO DE GARANTIAS ANTIOQUIAPetro_EscobarColombia28 Apr
- Data Breach4 Million database empresas.movistar.com.pe TelecomMDGhostPeru28 Apr
- DDoSNoName targets the website of GKN plcNoName057(16)United Kingdom28 Apr
- DDoSNoName targets the website of Conwy County Borough CouncilNoName057(16)United Kingdom28 Apr
- DDoSNoname targets the website of Yü Energy Retail LimitedNoName057(16)United Kingdom28 Apr
- Data BreachAlleged Data Breach of The InnerCity Mission for ChildrenDatavortexNigeria28 Apr
- Data BreachAlleged data breach of Movistar EmpresasMDGhostPeru28 Apr
- Data LeakAlleged Data Leak of Paraguay Insurance Databasedbrick84Paraguay28 Apr
- Web DefacementChronus leaks targets the website of Instituto Winston ChurchillChronus leaksMexico28 Apr
- DDoSNoName targets the website of Wessex WaterNoName057(16)United Kingdom28 Apr
- Data BreachAlleged Data Breach of INITSDatavortexNigeria28 Apr
- DDoSNoName targets the website of Invest Northern IrelandNoName057(16)United Kingdom28 Apr
- DDoSNoName targets the website of Capita plcNoName057(16)United Kingdom28 Apr
- DDoSNoName targets the website of Southern WaterNoName057(16)United Kingdom28 Apr
- DDoSNoName targets the website of Sky-DronesNoName057(16)United Kingdom28 Apr
- DDoSBD Anonymous targets the website of KORAIL Logistics SystemBD AnonymousSouth Korea28 Apr
- Access BrokerageAlleged unauthorized access to CCTV system in USTheSweetNight-publicUnited States28 Apr
- DDoSCASH NETWORK targets the website of LandBank of the PhilippinesCASH NETWORKPhilippines28 Apr
- DDoSTHE GARUDA EYE targets the website of Jordan European Internet ServicesTHE GARUDA EYEJordan28 Apr
- Data LeakAlleged leak of Iranian Driver License & IDs databaseKYCMyASSIran28 Apr
- Data Breach4,6 million Wels Fargo Bank dataRubiconH4ckUnited States28 Apr
- Data Breachingressolive.com - 106kmastermindBrazil28 Apr
- Data BreachFONDO DE GARANTIAS ANTIOQUIAPetro_EscobarColombia28 Apr
- Data BreachAlleged Data breach of Instituto Registral y Catastral del Estado de Puebla (IRCEP)StraightonumberoneMexico28 Apr
- Data BreachAlleged Data breach of SMAN 1 MALANGtreixnoxIndonesia28 Apr
- Data BreachAlleged Data breach of Amazonas Civil DefenseunicoBrazil28 Apr
- Data LeakAlleged data leak of SayLoveHighRisk—28 Apr
- RansomwareSuper AI falls victim to Everest RansomwareEverestUnited States28 Apr
- Data LeakAlleged data leak of DrubloxHighRisk—28 Apr
- Data BreachAlleged Data breach of Podemos 20m0z1ll4screwPortugal28 Apr
- Data BreachAlleged data breach of FGA Fondo de GarantíasPetro_EscobarColombia28 Apr
- Data BreachAlleged Data breach of IngressoLivemastermindPortugal28 Apr
- Data Breachdefesacivil.am.gov.br databaseunicoBrazil28 Apr
- RansomwareRansomHouse Ransomware group has added an unidentified victim Cybersecurity VendorRansomHouse—28 Apr
- RansomwareSUMAC falls victim to INC RANSOM RansomwareINC RANSOMUnited States28 Apr
- Data BreachAlleged data breach of VimeoShinyHuntersUnited States28 Apr
- Malware OpsAlleged Sale of ZenLedger XamanKimOCW—28 Apr
- Data BreachTalentely (Pajeet Edition)SpirigatitoIndia28 Apr
- Data BreachThe Caritas-Spes organizationblacknet00Ukraine28 Apr
- Malware OpsAlleged Sale of Bitcoin Wallet Poisoning BotArtikel326—28 Apr
- Data BreachMonsterGateway - Brazilian White-Label Payment Gatewayka1doBrazil28 Apr
- Data BreachRealT (RealToken Inc.)lowiqUnited States28 Apr
- Data Breachbarato.com.brSorbBrazil28 Apr
- Data Breachspeakeasymarketinginc.comSorbUnited States28 Apr
- DDoSDark Storm Team targets the website of Ministry of DefenceDark Storm TeamUnited Kingdom28 Apr
- Data BreachAlleged data breach of MORENA MovementMemejico2026AMexico28 Apr
- Data BreachAlleged data breach of Makassar City GovernmentShenChuyi88Indonesia28 Apr
- Data BreachAlleged data breach of Universidad Rafael LandívarMrGoblincianoGuatemala28 Apr
- Data BreachMonsterGateway - Brazilian White-Label Payment Gatewayka1doBrazil28 Apr
- RansomwareLifeline Behavioral Health Falls Victim to Qilin RansomwareQilinUnited States28 Apr
- Data LeakAlleged data leak of iran Nuclear EnergyFallenIran28 Apr
- Web DefacementHackShyen targets the website of globalassetshub.comHackShyen—28 Apr
- RansomwareLeone Film Group S.p.A falls victim to Qilin RansomwareQilinItaly28 Apr
- Data BreachAlliged data breach of Beasiswa MadiunkotaBabayoErorSystemIndonesia28 Apr
- DDoSConquerors Electronic Army targets the website of Super-PharmConquerors Electronic ArmyIsrael28 Apr
- Malware OpsAlleged sale of the REACT2SHELL toolunico—28 Apr
- Data BreachAlleged data breach of BLACKP1unicoUnited Kingdom28 Apr
- Web DefacementHackShyen targets the website of bevbazar.comHackShyen—28 Apr
- DDoSConquerors Electronic Army targets the website of EMG FinanceConquerors Electronic ArmyIsrael28 Apr
- Access BrokerageAlleged leak of unauthorized access to University of Indonesian AspirationsTomTomIndonesia28 Apr
- Access BrokerageAlleged sale of unauthorized access to unidentified Prestashop in ItalycosmodromeItaly28 Apr
- Web DefacementHackShyen targets the website of paktextilehub.comHackShyenPakistan28 Apr
- Access BrokerageAlleged sale of unauthorized access to unidentified Prestashop in FrancecosmodromeFrance28 Apr
- Access BrokerageAlleged sale of unauthorized access to unidentified Prestashop in SpaincosmodromeSpain28 Apr
- Web DefacementHackShyen targets the website of nextcaps.pkHackShyenPakistan28 Apr
- Access BrokerageAlleged Sale of US WordPress Admin Access with Stripe Iframe PaymentsbitVoid—28 Apr
- Access BrokerageAlleged Unauthorized Access to MSTEC Smart PureWater System in South KoreaZ-PENTEST ALLIANCESouth Korea28 Apr
- Web DefacementBABAYO EROR SYSTEM targets the website of bertclima.ro.consultantdecredite.roBABAYO EROR SYSTEM—28 Apr
- Web DefacementBABAYO EROR SYSTEM targets the website of pdfrb.gopage.bizBABAYO EROR SYSTEM—28 Apr
- Web DefacementBABAYO EROR SYSTEM targets the website of click.cloudanimations.topBABAYO EROR SYSTEM—28 Apr
- Web DefacementBABAYO EROR SYSTEM targets the website of Eagles NetBABAYO EROR SYSTEMBrazil28 Apr
- Web DefacementBABAYO EROR SYSTEM targets the website of Maximum webBABAYO EROR SYSTEMHungary28 Apr
- Data BreachAlleged data breach of University of San Carlos of GuatemalaMrGoblincianoGuatemala28 Apr
- VulnerabilityAlleged security misconfiguration on the website of ClickUp—United States28 Apr
- Web DefacementBABAYO EROR SYSTEM targets the website of Peninsula Malaysian CuisineBABAYO EROR SYSTEMMalaysia28 Apr
- Web DefacementBABAYO EROR SYSTEM targets the website of click.footretro.ccBABAYO EROR SYSTEM—28 Apr
- Web DefacementBABAYO EROR SYSTEM targets the website of brewmasterai.com.mype.clBABAYO EROR SYSTEM—28 Apr
- Web DefacementBABAYO EROR SYSTEM targets the website of Iridium SoftwareBABAYO EROR SYSTEMRomania28 Apr
- Access BrokerageAlleged leak of unauthorized access to BB Technology Co., Ltd.TomTomVietnam28 Apr
- Data BreachAlleged data breach of Ministry of Health of IndonesiaCitizenIndonesia28 Apr
- Data BreachAlleged data sale of the National Nutrition Agency of the Republic of IndonesiaBabayoErorSystemIndonesia28 Apr
- Web DefacementBABAYO EROR SYSTEM targets the website of FastketsBABAYO EROR SYSTEMRomania28 Apr
- Data BreachAlleged data sale of Astral HotelsMDGhostIsrael28 Apr
- Data LeakAlleged data leak of the Syrian DatabaseGlitchXSyria28 Apr
- DDoSHider_Nex targets the website of National Universities CommissionHider_NexNigeria28 Apr
- Data BreachAlleged Data Breach of Birtcher Anderson & DavisWorldleaksUnited States28 Apr
- Access BrokerageAlleged leak of unauthorized access to Get Hired NowTomTomBrazil28 Apr
- DDoSHider_Nex targets the website of National Primary Health Care Development Agency (Nigeria)Hider_NexNigeria28 Apr
- DDoSHider_Nex targets the website of National Agency for Food and Drug Administration and ControlHider_NexNigeria28 Apr
- DDoSHider_Nex targets the website of National Information Technology Development Agency (Nigeria)Hider_NexNigeria28 Apr
- Data BreachTalentely (Pajeet Edition)SpirigatitoIndia28 Apr
- Data BreachRENAP DB (18M Records) and SAT (5.6M Vehicles)GordonFreemanGuatemala28 Apr
- DDoSHider_Nex targets the website of Nigerian Maritime Administration and Safety AgencyHider_NexNigeria28 Apr
- DDoSHider_Nex targets the website of Nigeria Centre for Disease Control and PreventionHider_NexNigeria28 Apr
- RansomwareNotre Dame College of Campinas falls victim to Gentlemen RansomwareThe GentlemenBrazil28 Apr
- DDoSHider_Nex targets the website of Office of the Head of the Civil Service of the FederationHider_NexNigeria28 Apr
- DDoSHider_Nex targets the website of Lagos State GovernmentHider_NexNigeria28 Apr
- DDoSWolves of Turan targets the website of VivaWolves of TuranUnited States28 Apr
- RansomwareNostrum Corporation falls victim to The Gentlemen ransomwareThe GentlemenJapan28 Apr
- RansomwareHeinrich Kopp GmbH falls victim to The Gentlemen ransomwareThe GentlemenGermany28 Apr
- RansomwareIT Management falls victim to The Gentlemen RansomwareThe GentlemenThailand28 Apr
- RansomwareMIMS Pte Ltd falls victim to The Gentlemen RansomwareThe GentlemenSingapore28 Apr
- Data BreachAlleged data breach of Oyo State GovernmentAckLineNigeria28 Apr
- RansomwareBeaconhouse falls victim to The Gentlemen RansomwareThe GentlemenPakistan28 Apr
- Access BrokerageAlleged Sale of Unauthorize Admin Access to an Presta Shop in DenmarkHotelDenmark28 Apr
- Data LeakAlleged Data Leak of Oyo State ID CardsAckLine—28 Apr
- RansomwarePromotion AB falls victim to DragonForce RansomwareDragonForceSweden28 Apr
- Access BrokerageAlleged Unauthorized Access to CCTV Systems in the United KingdomNoName057(16)United Kingdom28 Apr
- Data BreachAlleged sale of URSSAFhackplaneteFrance28 Apr
- RansomwareProvident Insurance Limited Company falls victim to BASHE RansomwareEraleig (APT73)Ghana28 Apr
- DDoSWolves of Turan targets the website of The Paros FoundationWolves of TuranUnited States28 Apr
- RansomwareRotak SRL falls victim to M3RX RansomwareM3RXItaly28 Apr
- Data BreachCACPE PASTAZA ECUADORGondorPeEcuador28 Apr
- DDoSWolves of Turan targets the website of Orran Benevolent NGOWolves of TuranArmenia28 Apr
- DDoSWolves of Turan targets the website of Armenian CaritasWolves of TuranArmenia28 Apr
- DDoSWolves of Turan targets the website of Health Fund for Children of ArmeniaWolves of TuranArmenia28 Apr
No events match your filters.
Page 1 of 1
Active threat actors
click any actor to filter the list aboveNo active actors in this view.