Threat actor FulcrumSec has claimed responsibility for an alleged breach involving Arup Group, the multinational engineering and infrastructure consulting firm behind major transportation, energy, urban...
Attribution: Unknown, financially motivated cybercriminal group First Observed: 2025 Primary Operations: Data exfiltration, cloud data exposure, source code leaks, public dataset releases FulcrumSec is an...
A threat actor operating under the name FulcrumSec has claimed responsibility for a large-scale data breach involving Stuf Storage, a U.S.-based self-storage provider, alleging the...
The fallout from the Instructure Canvas data breach continues to expand, with multiple U.S. schools, universities, and statewide education systems now reporting potential exposure of...
A North Carolina school district has confirmed potential exposure of student and staff data following the recent cyberattack on Instructure’s Canvas platform, marking one of...
Disc Soft, the developer behind DAEMON Tools, has confirmed that its widely used DAEMON Tools Lite software was compromised in a supply chain attack, resulting...
The ShinyHunters threat group has listed Colombian fintech company Addi, operated by Adelante Soluciones Financieras, as its latest alleged victim, claiming to have exfiltrated a...
Attribution: Suspected pro-Iranian hacktivist group First Observed: October 2025 Primary Operations: Data breach claims, infrastructure targeting, hacktivist campaigns, data leaks Nasir Security is a pro-Iranian...
The Handala threat group claims to have carried out a cyberattack targeting the Port of Fujairah in the United Arab Emirates, alleging unauthorized access to...
Update (May 8, 2026): Instructure confirmed the Canvas incident involved two phases of unauthorized activity, including a second event on May 7 that briefly took...
