Account required
Sign in to view threat intelligence
CTI data is restricted to registered users. Create a free account to browse the dashboard, then upgrade to a paid plan to unlock event details and IOCs.
Cyber Threat Intelligence
Daily snapshot
Daily brief 20 May 2026
GitHub Breach, npm Supply Chain Attack, and Mass Data Leaks Dominate May 20
GitHub confirms internal repo theft via VS Code extension; Microsoft disrupts Fox Tempest signing service; 53 critical data exposure events hit US, France, India.
Events
0
In current view
Critical exposure
0
Last 24 hours
0
vs previous 24h
Distinct actors
0
In current view
By attack category · 9
Data Exposure
0
Ransomware
0
Access Brokerage
0
DDoS
0
Web Defacement
0
Malware Ops
0
Vulnerability
0
Threat Alert
0
Cyber Operation
0
Top victim countries
No country data in this view.
Subscriber-only
CTI brief — 2026-05-20
The CTI dashboard tracks dark-web disclosures, ransomware claims, data leaks and active threat actors. Full event list, threat-actor profiles and historical archive are available to subscribers.
Events
showing 0
Category
Title
Actor
Country
Date
- Web DefacementBABAYO EROR SYSTEM targets the Kabupaten SukabumiBabayoErorSystemIndonesia20 May
- Access BrokerageAlleged unauthorized access to unidentified cctv camera in FranceShadow ClawZ 404France20 May
- Data BreachAlleged Data Breach of Dirección Nacional de Identificación Civil UruguayLaPampaLeaksUruguay20 May
- RansomwareCZ Collections falls victim to Qilin ransomwareQilinUnited States20 May
- RansomwareWNS Lowery falls victim to Qilin ransomwareQilinUnited States20 May
- RansomwareCJ Architects falls victim to Qilin ransomwareQilinUnited States20 May
- Web Defacementchinafans targets the website of Créer Entreprise DubaichinafansUnited Arab Emirates20 May
- RansomwareVial Agro S.A falls victim to Qilin ransomwareQilinArgentina20 May
- DDoSRipperSec targets the website of ChabadRipperSecIsrael20 May
- DDoSBD Anonymous targets the website of ECA Hytec SystemsBD Anonymous—20 May
- Web DefacementHellR00ters Team targets the website of teely.shopHellR00ters Team—20 May
- DDoSTeam The Flash DDoS BOX targets the website of Asoy89Team The Flash DDoS BOX—20 May
- Web DefacementHellR00ters Team targets the website of Pro Print JA LLCHellR00ters TeamUnited States20 May
- Web DefacementHellR00ters Team targets the website of stempelmanufaktur-berlin.deHellR00ters TeamGermany20 May
- RansomwareSid Harvey Industries Inc. falls victim to Akira ransomwareakiraUnited States20 May
- Access BrokerageAlleged Sale of windows 10-11 Shelli550x—20 May
- RansomwareExchange Group falls victim to PEAR ransomwarePEARCanada20 May
- Data LeakAlleged data leak of Multiple countriesThe BlackH4t MD-Ghost—20 May
- Data LeakAlleged sale of South African RecordsThe BlackH4t MD-GhostSouth Africa20 May
- Data LeakAlleged leak of Government data from UAErealchimeraUnited Arab Emirates20 May
- RansomwareIndian Creek Valley Water Authority falls victim to PEAR ransomwarePEARUnited States20 May
- Access BrokerageAlleged sale of unauthorized admin access to unidentified store in USAShopifyUnited States20 May
- Access BrokerageAlleged sale of unauthorized admin access to unidentified store in USAShopifyUnited States20 May
- Access BrokerageAlleged sale of unauthorized admin access to unidentified store in USAShopifyUnited States20 May
- RansomwareFana Jewelry falls victim to PEAR ransomwarePEARUnited States20 May
- Access BrokerageAlleged sale of unauthorized admin access to unidentified store in USAShopifyUnited States20 May
- DDoSArmenian code targets the website of Ziraat DinamikArmenian codeTurkey20 May
- RansomwarePro Farm Group Inc. falls victim to PEAR ransomwarePEARUnited States20 May
- Access BrokerageAlleged sale of unauthorized access to unidentified shop in AustriaBig-BroAustria20 May
- Access BrokerageAlleged unauthorized access to MEA Technologies surveillance systemZ-PENTEST ALLIANCEAustralia20 May
- Data BreachAlleged data breach of SMK Mudita SingkawangBARZXPLOITIndonesia20 May
- Data LeakAlleged data leak of Israel GovernmentThe BlackH4t MD-GhostIsrael20 May
- RansomwareVega Corporation falls victim to DragonForce ransomwareDragonForceUnited States20 May
- Data LeakAlleged data leak of People's Data from BelgiumMikhelBelgium20 May
- Data BreachAlleged data leak of IDF intelligenceThe BlackH4t MD-GhostIsrael20 May
- Access BrokerageAlleged Unauthorized admin access to 2id.com.brVandalBrazil20 May
- DDoSRipperSec targets the website of MaslanRipperSecIsrael20 May
- Data BreachAlleged data breach of Cioni Materie PlastichehuntertraceItaly20 May
- Data BreachAlleged data breach of AGREGATKAdreadRussia20 May
- Data LeakAlleged data leak of B2B BusinessVyntraJapan20 May
- DDoSNoName targets the website of L4.uaNoName057(16)Ukraine20 May
- DDoSNoName targets the website of ShtormNoName057(16)Ukraine20 May
- Data BreachAlleged data breach of FastermessagehuntertraceBenin20 May
- Data LeakAlleged data leak of English Medium Schools IndiaVyntraIndia20 May
- Cyber OperationCyber Attack Hits KENT INDUSTRIAL CO., LTD——20 May
- Data LeakAlleged sale of US Citizen SSN DatabasedreadUnited States20 May
- DDoSNoName targets the website of FreenetNoName057(16)Ukraine20 May
- Data BreachAlleged data breach of Philippine government agenciesS10Philippines20 May
- Data BreachAlleged data breach of PractisishuntertraceCosta Rica20 May
- Web DefacementHellR00ters Team targets the website of SignCraftHellR00ters Team—20 May
- Access BrokerageAlleged Unauthorized Access to geocargaweb.sincotic.cohuntertrace—20 May
- Data BreachAlleged data breach of iShiphuntertraceUnited States20 May
- Data LeakAlleged Data Leak of Israel PII recordsS10Israel20 May
- Access BrokerageAlleged breach of Unidentified U.S. medical transport networkhuntertraceUnited States20 May
- Data BreachAlleged data breach of United Parcel Service (UPS)huntertraceUnited States20 May
- Data LeakAlleged data leak of French PII recordsS10France20 May
- Web DefacementHellR00ters Team targets the website of PrintTubHellR00ters TeamUnited States20 May
- Threat AlertThe BlackH4t MD-Ghost claims to target IsraelThe BlackH4t MD-GhostIsrael20 May
- Data LeakAlleged data breach of Unidentified Ukrainian logistics companyJapaneseGoldUkraine20 May
- Data BreachGitHub Suffers Data breach—United States20 May
- Web DefacementHellR00ters Team targets the website of photogenicuk.comHellR00ters Team—20 May
- Data BreachAlleged data breach of 4moneyVandalIndia20 May
- Web DefacementHax.or targets the website of Kabuchi KidsHax.or—20 May
- Web DefacementHellR00ters Team targets the website of Marco il tipografoHellR00ters TeamItaly20 May
- Web DefacementHax.or targets the website of AutoLeadFindrHax.or—20 May
- Data BreachAlleged sale of data from Kintetsu World ExpressMoneyistimeSingapore20 May
- Web DefacementHellR00ters Team targets the website of pimpariHellR00ters TeamArgentina20 May
- Web DefacementHellR00ters Team targets the website of Lola DesignHellR00ters TeamUnited Kingdom20 May
- DDoSNoName targets the website of Court of AuditorsNoName057(16)France20 May
- DDoSNoName targets the website of Cartes BancairesNoName057(16)France20 May
- Access BrokerageAlleged sale of unauthorized access to unidentified Wordpress shop in TaiwanHotelTaiwan20 May
- Data BreachAlleged data breach of NickshitoBARZXPLOITUnited Kingdom20 May
- DDoSNoName targets the website of The National Commission for the Control of Intelligence TechniquesNoName057(16)France20 May
- DDoSNoName targets the website of CIFFCONoName057(16)France20 May
- DDoSNoName targets the website of Cartes BancairesNoName057(16)France20 May
- Data BreachAlleged data breach of Universidad del QuindíoSkull1172Colombia20 May
- DDoS313 Team targets the website of GoDaddy313 TeamUnited States20 May
- Malware OpsAlleged Release of ThreatMetrix iOS Fingerprinting Bypass Source CodeNiugima—20 May
- Access BrokerageAlleged sale of unauthorized access to unidentified Wordpress shop in USHotelUnited States20 May
- Web DefacementHellR00ters Team targets the website of Lagomar Graphic ArtsHellR00ters TeamSpain20 May
- Web DefacementHellR00ters Team targets the website of Future On'Print SARLHellR00ters TeamFrance20 May
- Data BreachIndian stock market investors: 10.6 millionFreeCityIndia20 May
- Web DefacementHellR00ters Team targets the website of Go Mobile SignsHellR00ters TeamUnited States20 May
- Data Breachmarcusmillichap.comBlack CardUnited States20 May
- Data Breachbouyguestelecom.fr 5.8MBlack CardFrance20 May
- Data Breachcolisprive.fr 8MBlack CardFrance20 May
- Data Breachtastytrade.com 1.3MBlack CardUnited States20 May
- Web DefacementHellR00ters Team targets the website of ASJ HondurasHellR00ters TeamHonduras20 May
- Web DefacementHellR00ters Team tagets the website of InkeoHellR00ters TeamMorocco20 May
- Web DefacementHellR00ters Team targets the website of Dot BadgesHellR00ters TeamIndia20 May
- Web DefacementHellR00ters Team targets the website of Green PrintHellR00ters TeamSerbia20 May
- Web DefacementHellR00ters Team targets the website of Crucial Pack SolutionsHellR00ters TeamUnited States20 May
- Web DefacementHellR00ters Team targets the website of Brand Bihar OnlineHellR00ters TeamIndia20 May
- Web DefacementHellR00ters Team targets the website of Imprentas ChileHellR00ters TeamChile20 May
- Web DefacementHellR00ters Team targets the website of BDCHellR00ters TeamMorocco20 May
- Web DefacementHellR00ters Team targets the website of CorpoGiftzHellR00ters TeamIndia20 May
- Web DefacementHellR00ters Team targets the website of Riode e-commerceHellR00ters TeamNetherlands20 May
- Web DefacementHellR00ters team targets the webiste of GspaudaHellR00ters TeamLithuania20 May
- Web DefacementHellR00ters Team targets the website of Billy's Print ShopHellR00ters TeamUnited States20 May
- Web DefacementHellR00ters Team targets the website of Art Neoon OÜHellR00ters TeamEstonia20 May
- Web DefacementHellR00ters Team targets the website of ALPrints.caHellR00ters TeamCanada20 May
- Data BreachReltio.com USA | Cloud Master Data Management +800KzSeniorUnited States20 May
- Web DefacementHellR00ters Team targets the website of Angel BroderieHellR00ters TeamBelgium20 May
- Web DefacementHellR00ters Team targets the website of Innovo ComunicaciónHellR00ters TeamSpain20 May
- Web DefacementHellR00ters Team KositeHellR00ters TeamSouth Korea20 May
- Web DefacementHellR00ters Team targets the website of Kanishka PrinterHellR00ters TeamIndia20 May
- Web DefacementHellR00ters Team targets the website of Magic GroupHellR00ters TeamEgypt20 May
- Web DefacementHellR00ters Team targets the website of Kumi BadgesHellR00ters TeamIndia20 May
- Web DefacementHellR00ters Team targets the website of SveltoHellR00ters TeamItaly20 May
- Web DefacementHellR00ters Team targets the website of Truong Phat PackagingHellR00ters TeamVietnam20 May
- Web DefacementHellR00ters Team targets the website of RecenzoHellR00ters TeamRomania20 May
- Web DefacementHellR00ters Team targets the website of OvisHellR00ters TeamAlbania20 May
- Web DefacementHELLR00TERS TEAM targets the website of HusemobilHellR00ters TeamRomania20 May
- Web DefacementHellR00ters Team targets the website of Ladybird StudiosHellR00ters TeamIreland20 May
- Web DefacementHellR00ters Team targets the website of Pushpa Seafoods LtdHellR00ters TeamUnited Kingdom20 May
- Web DefacementHELLR00TERS TEAM targets the website of InfernoMarkHellR00ters TeamUnited States20 May
- Web DefacementHellR00ters Team targets the website of Mainline ThemesHellR00ters TeamUnited States20 May
- Web DefacementHellR00ters Team targets the website of NalepiHellR00ters TeamSerbia20 May
- Data LeakAlleged leak of GitHub RecordsLazarusUnited States20 May
- Data BreachAlleged source code leak of GitHubTeamPCPUnited States20 May
- Data LeakAlleged data leak of revora.orgTanaka—20 May
- Data LeakAlleged Sale of Driving License Data in UKKYCMyASSUnited Kingdom20 May
- Data LeakAlleged Sale of Driving License Data in USAKYCMyASSUnited States20 May
- Data LeakAlleged Sale of Germany ID CardKYCMyASSGermany20 May
- Data LeakAlleged Sale of France ID cardsKYCMyASSFrance20 May
- Data BreachAlleged data leak of ReltiozSeniorUnited States20 May
- Data LeakAlleged data leak from Government site of Georgia404 CREW CYBER TEAMGeorgia20 May
- Data BreachAlleged data leak of Department of Population and Civil Registration of Karawang RegencyMr. Hanz XploitIndonesia20 May
- Data BreachAlleged data leak of Bank of IndiaMr. Hanz XploitIndia20 May
- Access BrokerageAlleged sale of wp admin and shell access to an unidentified shop in UKReveUnited Kingdom20 May
- Access BrokerageAlleged unauthorized access to unidentified surveillance camera in LatviaZ-PENTEST ALLIANCELatvia20 May
- Data BreachAlleged Data Breach of Judiciary of Mendoza ProvinceCitizenArgentina20 May
- Data BreachAlleged data sale of MiClubDatabasehooliganAustralia20 May
- DDoSCOUP TEAM targets the website of Linux.orgCOUP TEAMUnited States20 May
- DDoSKeymous Plus targets the website of Attijariwafa BankKeymous PlusMorocco20 May
- Data BreachAlleged Data Breach of Ministry of Defense in Kuwait0cx00iqKuwait20 May
- RansomwareOlipes Lubricantes y Grasas falls victim to SAFEPAY ransomwareSAFEPAYSpain20 May
- RansomwareNothing falls victim to INC Ransom ransomwareINC RANSOMUnited Kingdom20 May
- Data BreachAlleged Data Breach of SMK Negeri 1 Banjar AgungCitizenIndonesia20 May
- Data BreachAlleged data breach of JDIH Kementerian PerhubunganBROTHERHOOD CAPUNG INDONESIAIndonesia20 May
- Data LeakAlleged Data Leak of Institut Teknologi BandungCitizenIndonesia20 May
- Access BrokerageAlleged unauthorized cctv access to an unidentified warehouse in FranceNoName057(16)France20 May
- Data BreachAlleged Data Breach of Ruca Baru BoxerCitizenArgentina20 May
- Access BrokerageAlleged sale of unauthorized admin access to a WordPress shop in CanadaShopifyCanada20 May
- Data BreachAlleged Data Breach of National Office for the Management and Exploitation of Protected Cultural PropertiesCitizenAlgeria20 May
- Access BrokerageAlleged sale of Unauthorized Admin Access to a WordPress Shop in usaraimondoUnited States20 May
- RansomwareTaurus Investment Holdings, LLC falls victim to DragonForce ransomwareDragonForceUnited States20 May
- RansomwareWyższa Szkoła Biznesu - National Louis University w Nowym Sączu falls victim to Nova RansomwareNovaPoland20 May
- Access BrokerageAlleged unauthorized admin access to RumahMotoGPDarkMafiaXIndonesia20 May
- RansomwareZFG ALTHERM Engineering falls victim to DragonForce ransomwareDragonForceAustria20 May
- Data LeakAlleged data leak of an unidentified organization in IsraelThe BlackH4t MD-GhostIsrael20 May
- Data LeakAlleged sale of payment card and fullz datadown1212—20 May
- Threat AlertLaPampaLeaks claims to target UruguayLaPampaLeaksUruguay20 May
- DDoSWolves of Turan targets the website of Ministry of Health of the Republic of ArmeniaWolves of TuranArmenia20 May
- Threat AlertAlleged sale of Hash Cracking ServiceisPacino—20 May
- DDoSWolves of Turan targets the website of Ministry of Foreign Affairs of the Republic of ArmeniaWolves of TuranArmenia20 May
- Web DefacementPASKO CYBER REXOR targets the website of MenufayPASKO CYBER REXORTurkey20 May
No events match your filters.
Page 1 of 1
Active threat actors
click any actor to filter the list aboveNo active actors in this view.