‼️🇺🇸 IT access to a U.S. company with $20M+ in revenue is being auctioned, with proof showing a remote monitoring and management (RMM) panel connected to multiple endpoints. The listing claims access to over 8,040 networks with daily updates. The auction starts at $2,000 with a blitz price of $3,500. Note: The green bars are not done by me.

‼️🇮🇷 A data set from the Islamic Azad University in Iran has allegedly been leaked, exposing multiple tables of sensitive records. The data includes user credentials with national IDs and passwords, student personal information, faculty payment records, and administrative department structures. The leak also contains detailed student registration data with extensive academic and personal fields.

‼️ Reuters reports that French prosecutors raided X’s Paris offices on Tuesday as part of a criminal investigation originally opened in January 2025 over alleged algorithm manipulation. The probe has since expanded to include charges of complicity in distributing child sexual abuse material, generating sexually explicit deepfakes via the Grok AI chatbot, and Holocaust denial, which is a crime under French law. The raid was carried out by the Paris prosecutor’s cybercrime unit with support from Europol and French police. Voluntary interview summonses for April 20 have been issued to both Elon Musk and former X CEO Linda Yaccarino. X has previously denied wrongdoing and characterized the French investigation as politically motivated.

❗️🇲🇹 Gozo Channel, the ferry operator connecting Malta's islands, confirmed it was targeted in a cyberattack on Tuesday. The company said the incident impacted certain internal IT systems but was quickly contained thanks to existing infrastructure safeguards and contingency protocols. Ferry services were not disrupted. The company emphasized that all vessels continue to run on their normal schedule and that operations remain fully unaffected. Technical teams are currently working to restore the administrative systems that were impacted, and the company plans to bring in specialist cybersecurity forensic experts to support the investigation and recovery effort.

Gozo Channel Ltd. maintains full ferry operations following cyber security incident - The Malta Independent

Gozo Channel Ltd said that it has experienced a cyber security incident affecting certain IT systems. The Company wishes to reassure the public tha...

❗️🇵🇰 Internal documents from the Pakistan Institute of Education (PIE) have allegedly been leaked, including strategic planning documents, budget breakdowns, and organizational charts. The threat actor claims the leak focuses on institutional operations and priorities rather than personal data, and has teased additional leaks to follow.

‼️🇺🇸 Customer data sets from multiple Harley-Davidson dealerships across the U.S. have allegedly been leaked, totaling over 55,000 rows across 10 files. The exposed data includes VINs, vehicle details, customer names, phone numbers, email addresses, physical addresses, warranty and service dates, and purchase information.

‼️🇺🇸 Confidential military data from SEKISUI Aerospace Corporation, a Tier 1 supplier for Boeing 737/787 programs and U.S. military contracts, is allegedly being sold for $200,000. The 70 GB package reportedly contains ITAR/export-controlled engineering drawings, STEP and CATIA files, bills of materials with Boeing part numbers, tooling and fixture data, and 3D assembly models tied to programs for Boeing Commercial, Boeing Defense, NASA, Lockheed Martin, and Northrop Grumman.

‼️🇩🇴 A threat actor has leaked a citizen database from the Dominican Republic containing 6.1 million SQL records and 4.1 million citizen photos. The exposed data includes cedula numbers, names, civil status, dates of birth, sex, birthplace, blood type, and occupation.

❗️🇪🇬 A threat actor is selling a full database leak from HIMS University in Egypt, containing 28,124 records across multiple files. The exposed data includes student PII with plaintext passwords, Fawry and Banque Misr payment transaction logs, Mastercard/Banque Misr payment gateway API credentials, and detailed staff bank account information. The asking price starts at $250 in Monero.

‼️🇺🇸 Infrastructure Destruction Squad claims to have breached the servers of Lawrence Livermore National Laboratory, a facility affiliated with the U.S. Department of Energy. The alleged breach reportedly includes over 15 TB of sensitive data encompassing engineering blueprints, classified internal video recordings, and documents related to nuclear physics, fusion, particle acceleration, and pulsed sphere experiments. The group is offering full server access for $12,000.