Fixed Intel
Database

Data Breaches

Data breach reports, incident analysis, and impact assessment

Canvas Breach Disrupts Schools & Colleges Nationwide
Krebs on Security
Data Breaches

Canvas Breach Disrupts Schools & Colleges Nationwide

An ongoing data extortion attack targeting the widely-used education technology platform Canvas disrupted classes and coursework at school districts and universities across the United States today, after a cybercrime group defaced the service's login page with a ransom demand that…

Krebs on Security5h ago6m2
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
Krebs on Security
Data Breaches

Anti-DDoS Firm Heaped Attacks on Brazilian ISPs

A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible for an extended campaign of massive DDoS attacks against other network operators in Brazil, KrebsOnSecurity has learned. The firm's chief…

Krebs on SecurityApr 30, 20267m2
‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty
Krebs on Security
Data Breaches

‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty

A 24-year-old British national and senior member of the cybercrime group "Scattered Spider" has pleaded guilty to wire fraud conspiracy and aggravated identity theft. Tyler Robert Buchanan admitted his role in a series of text-message phishing attacks in the summer…

Krebs on SecurityApr 21, 20265m2
Data Breaches

Patch Tuesday, April 2026 Edition

Krebs on Security
Data Breaches

Patch Tuesday, April 2026 Edition

Microsoft today pushed software updates to fix a staggering 167 security vulnerabilities in its Windows operating systems and related software, including a SharePoint Server zero-day and a publicly disclosed weakness in Windows Defender dubbed "BlueHammer." Separately, Google Chrome fixed its…

Krebs on SecurityApr 14, 20263m2
Russia Hacked Routers to Steal Microsoft Office Tokens
Krebs on Security
Data Breaches

Russia Hacked Routers to Steal Microsoft Office Tokens

Hackers linked to Russia's military intelligence units are using known flaws in older Internet routers to mass harvest authentication tokens from Microsoft Office users, security experts warned today. The spying campaign allowed state-backed Russian hackers to quietly siphon authentication tokens…

Krebs on SecurityApr 7, 20264m2
Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab
Krebs on Security
Data Breaches

Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab

An elusive hacker who went by the handle "UNKN" and ran the early Russian ransomware groups GandCrab and REvil now has a name and a face. Authorities in Germany say 31-year-old Russian Daniil Maksimovich Shchukin headed both cybercrime gangs and…

Krebs on SecurityApr 6, 20266m2
‘CanisterWorm’ Springs Wiper Attack Targeting Iran
Krebs on Security
Data Breaches

‘CanisterWorm’ Springs Wiper Attack Targeting Iran

A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wipes data on infected systems that use Iran's time zone or have…

Krebs on SecurityMar 23, 20265m2
Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
Krebs on Security
Data Breaches

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

The U.S. Justice Department joined authorities in Canada and Germany in dismantling the online infrastructure behind four highly disruptive botnets that compromised more than three million hacked Internet of Things (IoT) devices, such as routers and web cameras. The feds…

Krebs on SecurityMar 20, 20263m2
Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker
Krebs on Security
Data Breaches

Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker

A hacktivist group with links to Iran's intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology company based in Michigan. News reports out of Ireland, Stryker's largest hub outside of the United States, said…

Krebs on SecurityMar 11, 20264m5
Microsoft Patch Tuesday, March 2026 Edition
Krebs on Security
Data Breaches

Microsoft Patch Tuesday, March 2026 Edition

Microsoft Corp. today pushed security updates to fix at least 77 vulnerabilities in its Windows operating systems and other software. There are no pressing "zero-day" flaws this month (compared to February's five zero-day treat), but as usual some patches may…

Krebs on SecurityMar 11, 20264m5
How AI Assistants are Moving the Security Goalposts
Krebs on Security
Data Breaches

How AI Assistants are Moving the Security Goalposts

AI-based assistants or "agents" -- autonomous programs that have access to the user's computer, files, online services and can automate virtually any task -- are growing in popularity with developers and IT workers. But as so many eyebrow-raising headlines over…

Krebs on SecurityMar 8, 202611m8
Who is the Kimwolf Botmaster “Dort”?
Krebs on Security
Data Breaches

Who is the Kimwolf Botmaster “Dort”?

In early January 2026, KrebsOnSecurity revealed how a security researcher disclosed a vulnerability that was used to assemble Kimwolf, the world's largest and most disruptive botnet. Since then, the person in control of Kimwolf -- who goes by the handle…

Krebs on SecurityFeb 28, 20267m9