Account required
Sign in to view threat intelligence
CTI data is restricted to registered users. Create a free account to browse the dashboard, then upgrade to a paid plan to unlock event details and IOCs.
Cyber Threat Intelligence
Daily snapshot · 23 May 2026 View archive →
Daily brief 23 May 2026 · Latest
Pro-Russian DDoS dominates; Lazarus hits Tashkent education
NoName057(16) led 14 listings, Lazarus leaked Westminster International University in Tashkent, and Drupal Core SQLi plus Laravel-Lang join CISA KEV.
Events
0
In current view
Critical exposure
0
Last 24 hours
0
vs previous 24h
Distinct actors
0
In current view
By attack category · 9
Data Exposure
0
Ransomware
0
Access Brokerage
0
DDoS
0
Web Defacement
0
Malware Ops
0
Vulnerability
0
Threat Alert
0
Cyber Operation
0
Top victim countries
No country data in this view.
Subscriber-only
Cyber Threat Intelligence — subscriber access
The CTI dashboard tracks dark-web disclosures, ransomware claims, data leaks and active threat actors. Full event list, threat-actor profiles and historical archive are available to subscribers.
Events
showing 0
Category
Title
Actor
Country
Date
- Web DefacementEXADOS targets the website of Royal Irrigation DepartmentEXADOSThailand23 May
- RansomwareBangkok Metropolitan Administration falls victim to KRYBIT ransomwareKRYBITThailand23 May
- Data BreachAlleged data breach of SMP Negeri 29 PekanbaruSCTHIndonesia23 May
- Web DefacementEXADOS targets the website of Prom Khiri Subdistrict MunicipalityEXADOSThailand23 May
- Web DefacementEXADOS targets the website of Noen Sai Subdistrict Administrative OrganizationEXADOSThailand23 May
- Web DefacementCiaoxD_ targets the website of Centre of excellence on watershed managementCiaoxD_India23 May
- Data BreachAlleged data breach of Jepara Regency DPRDJAX7Indonesia23 May
- Web DefacementEXADOS targets the website of Phanom Sarakham Municipal OfficeEXADOSThailand23 May
- Data LeakAlleged data leak of Westminster International University in TashkentLazarusUzbekistan23 May
- Web DefacementEXADOS targets the website of Thang Poon Subdistrict MunicipalityEXADOSThailand23 May
- Data BreachAlleged data sale of ZALORA GroupcentralschemeIndonesia23 May
- Web DefacementBABAYO EROR SYSTEM targets the website of yehaaa.vh1000gp.frBABAYO EROR SYSTEMFrance23 May
- Data BreachAlleged Data Breach of State Information Technology Agency (SITA)Nullsec PhilippinesSouth Africa23 May
- Web DefacementHax.or targets the website of oraport.my.idHax.orIndonesia23 May
- Web DefacementHax.or targets the website of Maarif CangkuduHax.orIndonesia23 May
- DDoSRipperSec targets the website of ZBENG FashionRipperSecIsrael23 May
- Access BrokerageAlleged Unauthorized Access to Multiple Casino Backend SystemscentralschemeGlobal23 May
- Access BrokerageAlleged unauthorized access to Tashkent State Medical UniversityLazarusUzbekistan23 May
- Web DefacementHax.or targets the website of MekarHax.orIndonesia23 May
- Web DefacementHax.or targets the website of Yayasan Terang Kasih AgapeHax.orIndonesia23 May
- Data BreachAlleged data breach of KiknameVyntra—23 May
- Web DefacementHax.or targets the website of Zip Line Realty, LLCHax.orUnited States23 May
- Web DefacementHax.or targets the website of Desa Kali MalangHax.orIndonesia23 May
- DDoSBD Anonymous targets the website of Ministry of the Interior and SafetyBD AnonymousSouth Korea23 May
- Web DefacementBABAYO EROR SYSTEM targets the website of Dinas Kesehatan PalembangBABAYO EROR SYSTEMIndonesia23 May
- RansomwareUniversitat de València falls victim to NOVA ransomwareNovaSpain23 May
- Data LeakAlleged data leak of Thailand Vehicle DatabaseakudamaThailand23 May
- DDoSRipperSec targets the website of Pereh HotelRipperSecIsrael23 May
- RansomwareMecanizados y Montajes Aeronáuticos S.A falls victim to INC Ransom ransomwareINC RANSOMSpain23 May
- Data BreachAlleged data breach of BinDawoodfuckiewuckieSaudi Arabia23 May
- Threat AlertLazarus claims to target UzbekistanLazarusUzbekistan23 May
- Data LeakAlleged data leak of USA Home Security Leads databaseVyntraUnited States23 May
- Web DefacementLOSTK!D targets the website of CiscoLOSTK!DSweden23 May
- Web DefacementDeepCore Network targets the website of STIE Pembangunan TanjungpinangDeepCore NetworkIndonesia23 May
- Web DefacementBABAYO EROR SYSTEM targets the website of SADATABABAYO EROR SYSTEMIndonesia23 May
- Data BreachAlleged data breach of Cal AIMiguUnited States23 May
- Web DefacementDeepCore Network targets the website of Katsina Investment Promotion AgencyDeepCore NetworkNigeria23 May
- Access BrokerageAlleged Unauthorized Access to Viper Crew PlatformazazeljakelChile23 May
- Web DefacementJax7 targets the website of omcdemosites.comJAX7—23 May
- Data BreachAlleged Data Breach of DCI Group MexicoazazeljakelMexico23 May
- Web DefacementHax.or targets the website of halalinbroHax.orIndonesia23 May
- Web DefacementHax.or targets the website of KarKonnexHax.orUnited States23 May
- Data LeakAlleged Data Leak of Unidentified organization in PhilippinesGoldstonesPhilippines23 May
- Access BrokerageAlleged sale of unauthorized access to Multiple Organizations in FrancemalariaFrance23 May
- Access BrokerageAlleged Sale of Unauthorized Admin Access to OpenCart in UKbondiana228United Kingdom23 May
- DDoSNoName targets the website of Département de l'EureNoName057(16)France23 May
- DDoSNoName targets the website of National Commission for the Control of Intelligence TechniquesNoName057(16)France23 May
- DDoSNoName targets the website of Landes DepartmentNoName057(16)France23 May
- Data BreachAlleged Data Breach of Mahkamah Agung RepublikMr. Hanz XploitIndonesia23 May
- DDoSNoName targets the website of Toulouse MétropoleNoName057(16)France23 May
- DDoSNoName targets the website of Département des Hautes-PyrénéesNoName057(16)France23 May
- DDoSNoName targets the website of Ville de TarbesNoName057(16)France23 May
- DDoSNoName targets the website of CIFFCO (Centre International de Formation Ferroviaire de la Côte d’Opale)NoName057(16)France23 May
- Data BreachAlleged data breach of Venezuela armyThe BlackH4t MD-GhostVenezuela23 May
- DDoSNoName targets the website of SagemcomNoName057(16)France23 May
- DDoSNoName targets the website of Lazard Frères GestionNoName057(16)France23 May
- DDoSNoName targets the website of Court of AuditorsNoName057(16)France23 May
- DDoSNoName targets the website of Wendel GroupNoName057(16)France23 May
- DDoSNoName targets the website of Register of financial agentsNoName057(16)France23 May
- Data BreachAlleged Data Breach of South African Revenue Service (SARS)ki4taneSouth Africa23 May
- DDoSNoName targets the website of Cartes BancairesNoName057(16)France23 May
- Data BreachAlleged data breach of Bristol Myers SquibbThe BlackH4t MD-GhostUnited States23 May
- Web DefacementDEFACER INDONESIAN TEAM targets the website of NASADEFACER INDONESIAN TEAMUnited States23 May
- Data LeakAlleged Leak of 561K Israel Databases from Multiple WebsitestbabiIsrael23 May
- Data BreachAlleged data breach of FamilyMart Co.,Ltd.tbabiJapan23 May
- Data LeakAlleged leak of Payne County resident databaseZ4ne0daysUnited States23 May
- Web DefacementHoax1337 targets the website of Event BuzzHoax1337Israel23 May
- Web Defacementchinafans targets the website of Asre KazeroonchinafansIran23 May
- Data Breach670k Users | Egoncoin.comN2LXDark Web23 May
- Data BreachPakistani government agencies (Agri, MoRA, FBR, and so on).N2LXPakistan23 May
- Data Breach6,443,648 PII records leaked from the Instagram API.N2LXUnited States23 May
- Data BreachLOGS BBVA + PHONE NUMBER ALL WORKING6nocclueSpain23 May
- Data Breach[USA] New York Police Docs+Xlsx LEAKmosadUnited States23 May
- Data BreachAlleged data leak of VercelXyph0rixUnited States23 May
- Data BreachAlleged leak of WisERP USA Customer recordszSeniorUnited States23 May
- Data BreachAlleged leak of source code from SmartSoft Gaming and FastPayaggregateGeorgia23 May
- Data BreachAlleged data leak of vCarrd databasePixelAgent—23 May
- Data BreachAlleged data leak of Private Messages and Replies from Eromesta6Global23 May
- Data Breach670k Users | Egoncoin.comN2LXDark Web23 May
- Data BreachPakistani government agencies (Agri, MoRA, FBR, and so on).N2LXPakistan23 May
- Data Breach[USA] New York Police Docs+Xlsx LEAKmosadUnited States23 May
- Data LeakAlleged Data Leak of Moroccan Banks and Government Financial SystemsThe BlackH4t MD-GhostMorocco23 May
- Data LeakAlleged Sale of Kuwait LinkedIn RecordsThe BlackH4t MD-GhostKuwait23 May
- Data BreachAlleged data breach of EgonCoinN2LXUnited States23 May
- Data BreachKodex (EDR)neatDark Web23 May
- Data Breachadmin.placa.ai Dashboard Adminm1nd0x0Dark Web23 May
- Data Breach950+ Private Messages/Replies from Eromesta6Dark Web23 May
- Data BreachKuwait Energy Basra (UEGL) 100GBFreeCityKuwait23 May
- Data Breach[UK] Bank User Data: Schwab — 500,000 RecordsFreeCityUnited Kingdom23 May
- Data BreachHuaqiao Telecom — 130,000 RecordsFreeCityUnited States23 May
- Data Breach670k Users | Egoncoin.comN2LXDark Web23 May
- Data Breach[USA] New York Police Docs+Xlsx LEAKmosadUnited States23 May
- RansomwareGENESIS Ransomware group has added an unidentified victimGENESISUnited States23 May
- RansomwareAlleged data breach of Baker Distributing CompanyShinyHuntersUnited States23 May
- RansomwareAlleged data breach of Charter Communications, IncShinyHuntersUnited States23 May
- RansomwareAlleged data breach of DentaQuestShinyHuntersUnited States23 May
- Access BrokerageAlleged unauthorized admin access to PLACA.AIm1nd0x0United States23 May
- Access BrokerageAlleged sale of unauthorized admin access to Chique Bouttiquem1nd0x0United States23 May
- Access BrokerageAlleged sale of unauthorized admin accessm1nd0x0—23 May
- Data BreachAlleged data leak of New York State PolicemosadUnited States23 May
- RansomwareLa Sevillanita falls victim to KRYBIT ransomwareKRYBITArgentina23 May
- Data LeakAlleged Data Leak of Mixed Credential DatabasePandaPixel—23 May
- Data BreachAlleged data breach of Tyumen State UniversityElite SquadRussia23 May
- Data BreachAlleged data breach of Mixtra Inti TekindoElite SquadIndonesia23 May
- Data BreachAlleged data sale of InnovaestheticElite SquadUkraine23 May
- VulnerabilityAlleged sale of vulnerability ShamCashS-RootSyria23 May
- Data BreachAlleged data breach of Himalayan Social JourneyElite SquadIndia23 May
- Web DefacementCiaoxD_ targets the website of AttripsCiaoxD_India23 May
- Access BrokerageAlleged sale of unauthorized domain access to unidentified orginization in SloveniabitsafeSlovenia23 May
- Data BreachAlleged data breach of SmartSoft GamingaggregateincMalta23 May
- Data LeakAlleged unauthorized access to unidentified CCTV cameras in USAZ-PENTEST ALLIANCEUnited States23 May
- Data BreachAlleged data breach of the Autonomous Water and Electricity Distribution Authority of Meknes (RADEM)anonas2Morocco23 May
- RansomwareAMACCAO Group falls victim to NOVA ransomwareNovaVietnam23 May
- Data LeakAlleged data leak of unidentified schools in IndonesiaSCTHIndonesia23 May
- Threat AlertSCTH claims to target Schools in indonesiaSCTHIndonesia23 May
- Data BreachAlleged data breach of AsteriumLazarusUzbekistan23 May
- RansomwareHoy Construction, Inc. falls victim to NOVA ransomwareNovaUnited States23 May
- Web DefacementZod targets the website of Eagle StreetwearZodUnited Kingdom23 May
- Web DefacementCiaoxD_ targets the website of Spatium InteriorsCiaoxD_India23 May
- Access BrokerageAlleged sale of access to the Polish National Criminal Register (NCR)KampucheanPoland23 May
- Web DefacementNoName targets the website of Gestas Olivier TransportNoName057(16)France23 May
- Access BrokerageAlleged sale of unauthorized access to swaziland government emailKampucheanEswatini23 May
- Web DefacementIrene targets the website of MA Negeri PurworejoIreneIndonesia23 May
- Web DefacementZod targets the website of Dimas Tec EquipamentosZodItaly23 May
- Combo ListAlleged sale of Multiple country combolistsDataDaddy—23 May
- Data BreachAlleged data sale of Japan PartnerDataDaddyJapan23 May
- Web DefacementZod targets the website of Eldi MyrtoZodGreece23 May
- Data BreachAlleged data breach of University of Science & Technology SudanKARAWANG ERROR SYSTEMSudan23 May
- DDoSNullsec Philippines targets the website of South African Police ServiceNullsec PhilippinesSouth Africa23 May
- Web DefacementZod targets the website of Eldi GamesZodGreece23 May
- Data BreachAlleged data breach of EssilorLuxotticaMikhelFrance23 May
- RansomwareCablematic falls victim to GUNRA ransomwareGunraSpain23 May
- DDoS313 Team targets the website of Cloudflare313 TeamUnited States23 May
- DDoSKeymous Plus target the website of DGSSIKeymous PlusMorocco23 May
- Web DefacementYamiFool targets the website of 4xonYamiFoolFinland23 May
- RansomwareGITIS S.r.l. falls victim to Akira ransomwareakiraItaly23 May
- Web DefacementBABAYO EROR SYSTEM targets the website of morgankline1.wpengine.comBABAYO EROR SYSTEM—23 May
- RansomwareKarlin Foods falls victim to Akira ransomwareakiraUnited States23 May
- DDoSBABAYO EROR SYSTEM targets the website of Diskominfo-SP Prov. SulselBABAYO EROR SYSTEMIndonesia23 May
No events match your filters.
Page 1 of 1
Active threat actors
click any actor to filter the list aboveNo active actors in this view.