Hackmanac
@hackmanac.com
We track verified, real-world cyber attacks to help you develop effective Cybersecurity strategies. Try HackRisk.io, your Strategic Threat Intelligence platform.
🌐 hackmanac.com
🌐 hackrisk.io
🌐 hackmanac.com
🌐 hackrisk.io
Pinned
Hackmanac
@hackmanac.com
· 13d
🚨 𝐖𝐞𝐥𝐜𝐨𝐦𝐞 𝐭𝐨 𝐇𝐚𝐜𝐤𝐦𝐚𝐧𝐚𝐜 — 𝐒𝐭𝐫𝐚𝐭𝐞𝐠𝐢𝐜 𝐂𝐲𝐛𝐞𝐫 𝐓𝐡𝐫𝐞𝐚𝐭 𝐈𝐧𝐭𝐞𝐥𝐥𝐢𝐠𝐞𝐧𝐜𝐞, 𝐛𝐮𝐢𝐥𝐭 𝐟𝐨𝐫 𝐝𝐞𝐜𝐢𝐬𝐢𝐨𝐧𝐬 🚨
1/6
1/6
🚨Cyberattack Alert ‼️
🇰🇷South Korea - Inha University
Gunra hacking group claims to have breached Inha University.
Allegedly, the attackers exfiltrated 650 GB of data, including the internal main database.
🇰🇷South Korea - Inha University
Gunra hacking group claims to have breached Inha University.
Allegedly, the attackers exfiltrated 650 GB of data, including the internal main database.
December 29, 2025 at 11:02 AM
🚨Cyberattack Alert ‼️
🇰🇷South Korea - Inha University
Gunra hacking group claims to have breached Inha University.
Allegedly, the attackers exfiltrated 650 GB of data, including the internal main database.
🇰🇷South Korea - Inha University
Gunra hacking group claims to have breached Inha University.
Allegedly, the attackers exfiltrated 650 GB of data, including the internal main database.
🚨Cyberattack Alert ‼️
🇸🇦Saudi Arabia - Omrania
INC Ransom hacking group claims to have breached Omrania.
Allegedly, the attackers exfiltrated 400 GB of data, including confidential documents, clients’ data, NDAs, financial data, corporate data, business agreements, projects, and drawings.
🇸🇦Saudi Arabia - Omrania
INC Ransom hacking group claims to have breached Omrania.
Allegedly, the attackers exfiltrated 400 GB of data, including confidential documents, clients’ data, NDAs, financial data, corporate data, business agreements, projects, and drawings.
December 29, 2025 at 10:49 AM
🚨Cyberattack Alert ‼️
🇸🇦Saudi Arabia - Omrania
INC Ransom hacking group claims to have breached Omrania.
Allegedly, the attackers exfiltrated 400 GB of data, including confidential documents, clients’ data, NDAs, financial data, corporate data, business agreements, projects, and drawings.
🇸🇦Saudi Arabia - Omrania
INC Ransom hacking group claims to have breached Omrania.
Allegedly, the attackers exfiltrated 400 GB of data, including confidential documents, clients’ data, NDAs, financial data, corporate data, business agreements, projects, and drawings.
🚨Cyber Alert ‼️
🇯🇵Japan - Tohoku University (東北大学)
On December 9, 2025, Tohoku University detected unauthorized access to a server involving four compromised accounts, two faculty and two students.
🇯🇵Japan - Tohoku University (東北大学)
On December 9, 2025, Tohoku University detected unauthorized access to a server involving four compromised accounts, two faculty and two students.
December 28, 2025 at 2:08 PM
🚨Cyber Alert ‼️
🇯🇵Japan - Tohoku University (東北大学)
On December 9, 2025, Tohoku University detected unauthorized access to a server involving four compromised accounts, two faculty and two students.
🇯🇵Japan - Tohoku University (東北大学)
On December 9, 2025, Tohoku University detected unauthorized access to a server involving four compromised accounts, two faculty and two students.
🚨Cyberattack Alert ‼️
🇫🇷France - Atalian
Qilin hacking group claims to have breached Atalian.
Allegedly, the attackers exfiltrated 500 GB of data.
Samples have been provided.
Sector: Other Services
Threat class: Cybercrime
Observed: Dec 28, 2025
Status: Pending verification
🇫🇷France - Atalian
Qilin hacking group claims to have breached Atalian.
Allegedly, the attackers exfiltrated 500 GB of data.
Samples have been provided.
Sector: Other Services
Threat class: Cybercrime
Observed: Dec 28, 2025
Status: Pending verification
December 28, 2025 at 2:04 PM
🚨Cyberattack Alert ‼️
🇫🇷France - Atalian
Qilin hacking group claims to have breached Atalian.
Allegedly, the attackers exfiltrated 500 GB of data.
Samples have been provided.
Sector: Other Services
Threat class: Cybercrime
Observed: Dec 28, 2025
Status: Pending verification
🇫🇷France - Atalian
Qilin hacking group claims to have breached Atalian.
Allegedly, the attackers exfiltrated 500 GB of data.
Samples have been provided.
Sector: Other Services
Threat class: Cybercrime
Observed: Dec 28, 2025
Status: Pending verification
🚨New Cyberattack Alert ‼️
Cybersecurity researchers at ESET uncovered a new cybercrime trend: hackers are now using AI-generated malware to intercept payments made through NFC-enabled devices.
1/2
Cybersecurity researchers at ESET uncovered a new cybercrime trend: hackers are now using AI-generated malware to intercept payments made through NFC-enabled devices.
1/2
December 26, 2025 at 9:36 AM
🚨New Cyberattack Alert ‼️
Cybersecurity researchers at ESET uncovered a new cybercrime trend: hackers are now using AI-generated malware to intercept payments made through NFC-enabled devices.
1/2
Cybersecurity researchers at ESET uncovered a new cybercrime trend: hackers are now using AI-generated malware to intercept payments made through NFC-enabled devices.
1/2
🚨Cyberattack Alert ‼️
A cyber attack method known as “address poisoning" caused nearly $50 million worth of USDT to be sent to a wrong wallet.
According to Charles Hoskinson, founder of Cardano, such a loss is far more challenging to experience in certain blockchain architectures.
1/2
A cyber attack method known as “address poisoning" caused nearly $50 million worth of USDT to be sent to a wrong wallet.
According to Charles Hoskinson, founder of Cardano, such a loss is far more challenging to experience in certain blockchain architectures.
1/2
December 26, 2025 at 9:32 AM
🚨Cyberattack Alert ‼️
A cyber attack method known as “address poisoning" caused nearly $50 million worth of USDT to be sent to a wrong wallet.
According to Charles Hoskinson, founder of Cardano, such a loss is far more challenging to experience in certain blockchain architectures.
1/2
A cyber attack method known as “address poisoning" caused nearly $50 million worth of USDT to be sent to a wrong wallet.
According to Charles Hoskinson, founder of Cardano, such a loss is far more challenging to experience in certain blockchain architectures.
1/2
🚨Vulnerability Alert ‼️
Security researcher Yarden Porat discovered a vulnerability in LangChain that exploits how the framework handles internal serialization markers.
The flaw, dubbed CVE-2025-68664, received a CVSS score of 9.3, indicating critical severity.
1/2
Security researcher Yarden Porat discovered a vulnerability in LangChain that exploits how the framework handles internal serialization markers.
The flaw, dubbed CVE-2025-68664, received a CVSS score of 9.3, indicating critical severity.
1/2
December 26, 2025 at 9:21 AM
🚨Vulnerability Alert ‼️
Security researcher Yarden Porat discovered a vulnerability in LangChain that exploits how the framework handles internal serialization markers.
The flaw, dubbed CVE-2025-68664, received a CVSS score of 9.3, indicating critical severity.
1/2
Security researcher Yarden Porat discovered a vulnerability in LangChain that exploits how the framework handles internal serialization markers.
The flaw, dubbed CVE-2025-68664, received a CVSS score of 9.3, indicating critical severity.
1/2
🚨Cyberattack Alert ‼️
🇮🇹Italy - Fiorucci
On December 22, 2025, Fiorucci suffered a cyberattack that encrypted parts of its internal systems, disrupting order processing during the Christmas season.
🇮🇹Italy - Fiorucci
On December 22, 2025, Fiorucci suffered a cyberattack that encrypted parts of its internal systems, disrupting order processing during the Christmas season.
December 25, 2025 at 9:27 AM
🚨Cyberattack Alert ‼️
🇮🇹Italy - Fiorucci
On December 22, 2025, Fiorucci suffered a cyberattack that encrypted parts of its internal systems, disrupting order processing during the Christmas season.
🇮🇹Italy - Fiorucci
On December 22, 2025, Fiorucci suffered a cyberattack that encrypted parts of its internal systems, disrupting order processing during the Christmas season.
🚨Cyber Alert ‼️
🇮🇩Indonesia - Holywings
Demetrius threat actor claims to have breached Holywings.
Allegedly, the attacker leaked over 60,000 user records, including ID numbers, phone numbers, email addresses, hashed passwords, and recruitment-related information.
🇮🇩Indonesia - Holywings
Demetrius threat actor claims to have breached Holywings.
Allegedly, the attacker leaked over 60,000 user records, including ID numbers, phone numbers, email addresses, hashed passwords, and recruitment-related information.
December 25, 2025 at 9:25 AM
🚨Cyber Alert ‼️
🇮🇩Indonesia - Holywings
Demetrius threat actor claims to have breached Holywings.
Allegedly, the attacker leaked over 60,000 user records, including ID numbers, phone numbers, email addresses, hashed passwords, and recruitment-related information.
🇮🇩Indonesia - Holywings
Demetrius threat actor claims to have breached Holywings.
Allegedly, the attacker leaked over 60,000 user records, including ID numbers, phone numbers, email addresses, hashed passwords, and recruitment-related information.
🚨Cyberattack Alert ‼️
🇯🇵Japan - 47club (よんななクラブ)
SafePay hacking group claims to have breached 47club.
Ransom deadline: 29th Dec. 2025
Sector: Wholesale / Retail
Threat class: Cybercrime
Observed: Dec 24, 2025
Status: Pending verification
🇯🇵Japan - 47club (よんななクラブ)
SafePay hacking group claims to have breached 47club.
Ransom deadline: 29th Dec. 2025
Sector: Wholesale / Retail
Threat class: Cybercrime
Observed: Dec 24, 2025
Status: Pending verification
December 25, 2025 at 9:08 AM
🚨Cyberattack Alert ‼️
🇯🇵Japan - 47club (よんななクラブ)
SafePay hacking group claims to have breached 47club.
Ransom deadline: 29th Dec. 2025
Sector: Wholesale / Retail
Threat class: Cybercrime
Observed: Dec 24, 2025
Status: Pending verification
🇯🇵Japan - 47club (よんななクラブ)
SafePay hacking group claims to have breached 47club.
Ransom deadline: 29th Dec. 2025
Sector: Wholesale / Retail
Threat class: Cybercrime
Observed: Dec 24, 2025
Status: Pending verification
🚨Cyber Alert‼️
Critical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of Instances
Source: thehackernews.com/2025/12/crit...
Critical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of Instances
Source: thehackernews.com/2025/12/crit...
December 24, 2025 at 10:36 AM
🚨Cyber Alert‼️
Critical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of Instances
Source: thehackernews.com/2025/12/crit...
Critical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of Instances
Source: thehackernews.com/2025/12/crit...
With the new year just around the corner, we will pause #HackTuesday and #RiskFriday for two weeks.
However, we will continue to share alerts on relevant cyberattacks and keep HackRisk.io fully updated and running as usual throughout the holiday period.
1/2
However, we will continue to share alerts on relevant cyberattacks and keep HackRisk.io fully updated and running as usual throughout the holiday period.
1/2
December 24, 2025 at 10:19 AM
With the new year just around the corner, we will pause #HackTuesday and #RiskFriday for two weeks.
However, we will continue to share alerts on relevant cyberattacks and keep HackRisk.io fully updated and running as usual throughout the holiday period.
1/2
However, we will continue to share alerts on relevant cyberattacks and keep HackRisk.io fully updated and running as usual throughout the holiday period.
1/2
🚨Cyber Alert ‼️
🇯🇵Japan: Keio University – Shonan Fujisawa Campus
Keio University’s Shonan Fujisawa Campus Information Center disclosed a suspected external intrusion exploiting an unknown vulnerability in its email system.
🇯🇵Japan: Keio University – Shonan Fujisawa Campus
Keio University’s Shonan Fujisawa Campus Information Center disclosed a suspected external intrusion exploiting an unknown vulnerability in its email system.
December 24, 2025 at 9:21 AM
🚨Cyber Alert ‼️
🇯🇵Japan: Keio University – Shonan Fujisawa Campus
Keio University’s Shonan Fujisawa Campus Information Center disclosed a suspected external intrusion exploiting an unknown vulnerability in its email system.
🇯🇵Japan: Keio University – Shonan Fujisawa Campus
Keio University’s Shonan Fujisawa Campus Information Center disclosed a suspected external intrusion exploiting an unknown vulnerability in its email system.
🚨Cyberattack Alert ‼️
🇪🇸Spain - Notin
Everest hacking group claims to have breached Notin.
🇪🇸Spain - Notin
Everest hacking group claims to have breached Notin.
December 24, 2025 at 8:56 AM
🚨Cyberattack Alert ‼️
🇪🇸Spain - Notin
Everest hacking group claims to have breached Notin.
🇪🇸Spain - Notin
Everest hacking group claims to have breached Notin.
🚨Cyberattack Alert ‼️
🇯🇵Japan - OMNIBUS JAPAN INC.
Lynx hacking group claims to have breached OMNIBUS JAPAN INC.
Sector: News / Multimedia
Threat class: Cybercrime
Observed: Dec 23, 2025
Status: Pending verification
🇯🇵Japan - OMNIBUS JAPAN INC.
Lynx hacking group claims to have breached OMNIBUS JAPAN INC.
Sector: News / Multimedia
Threat class: Cybercrime
Observed: Dec 23, 2025
Status: Pending verification
December 24, 2025 at 8:48 AM
🚨Cyberattack Alert ‼️
🇯🇵Japan - OMNIBUS JAPAN INC.
Lynx hacking group claims to have breached OMNIBUS JAPAN INC.
Sector: News / Multimedia
Threat class: Cybercrime
Observed: Dec 23, 2025
Status: Pending verification
🇯🇵Japan - OMNIBUS JAPAN INC.
Lynx hacking group claims to have breached OMNIBUS JAPAN INC.
Sector: News / Multimedia
Threat class: Cybercrime
Observed: Dec 23, 2025
Status: Pending verification
🚨Cyberattack Alert ‼️
🇲🇾Malaysia - Universiti Sains Islam Malaysia (USIM)
Qilin hacking group claims to have breached Islamic Sciene University of Malaysia.
Allegedly, the attackers exfiltrated 107 GB of data.
🇲🇾Malaysia - Universiti Sains Islam Malaysia (USIM)
Qilin hacking group claims to have breached Islamic Sciene University of Malaysia.
Allegedly, the attackers exfiltrated 107 GB of data.
December 23, 2025 at 10:45 AM
🚨Cyberattack Alert ‼️
🇲🇾Malaysia - Universiti Sains Islam Malaysia (USIM)
Qilin hacking group claims to have breached Islamic Sciene University of Malaysia.
Allegedly, the attackers exfiltrated 107 GB of data.
🇲🇾Malaysia - Universiti Sains Islam Malaysia (USIM)
Qilin hacking group claims to have breached Islamic Sciene University of Malaysia.
Allegedly, the attackers exfiltrated 107 GB of data.
🚨Cyber Alert ‼️
🇯🇵Japan - Nissan Motor Co., Ltd.
Nissan Motor Co., Ltd. disclosed a data breach after unauthorized access to servers operated by its contractor Red Hat.
🇯🇵Japan - Nissan Motor Co., Ltd.
Nissan Motor Co., Ltd. disclosed a data breach after unauthorized access to servers operated by its contractor Red Hat.
December 22, 2025 at 9:13 AM
🚨Cyber Alert ‼️
🇯🇵Japan - Nissan Motor Co., Ltd.
Nissan Motor Co., Ltd. disclosed a data breach after unauthorized access to servers operated by its contractor Red Hat.
🇯🇵Japan - Nissan Motor Co., Ltd.
Nissan Motor Co., Ltd. disclosed a data breach after unauthorized access to servers operated by its contractor Red Hat.
🚨 #𝐑𝐈𝐒𝐊𝐅𝐑𝐈𝐃𝐀𝐘: 𝐖𝐄𝐄𝐊 𝟏𝟎-𝟏𝟔/𝟏𝟐/𝟐𝟓 🚀
Every week we analyse confirmed, successful cyber attacks and score them with our proprietary ESIX© — a composite metric that measures operational, financial, technical and reputational impact.
Here’s this week’s snapshot from HackRisk.io 👇
1/7
Every week we analyse confirmed, successful cyber attacks and score them with our proprietary ESIX© — a composite metric that measures operational, financial, technical and reputational impact.
Here’s this week’s snapshot from HackRisk.io 👇
1/7
December 19, 2025 at 10:26 AM
🚨 #𝐑𝐈𝐒𝐊𝐅𝐑𝐈𝐃𝐀𝐘: 𝐖𝐄𝐄𝐊 𝟏𝟎-𝟏𝟔/𝟏𝟐/𝟐𝟓 🚀
Every week we analyse confirmed, successful cyber attacks and score them with our proprietary ESIX© — a composite metric that measures operational, financial, technical and reputational impact.
Here’s this week’s snapshot from HackRisk.io 👇
1/7
Every week we analyse confirmed, successful cyber attacks and score them with our proprietary ESIX© — a composite metric that measures operational, financial, technical and reputational impact.
Here’s this week’s snapshot from HackRisk.io 👇
1/7
🚨Cyberattack Alert ‼️
🇦🇷Argentina - Club Atlético River Plate
Qilin hacking group claims to have breached Club Atlético River Plate.
Samples have been provided.
Sector: Sport
Threat class: Cybercrime
Observed: Dec 19, 2025
Status: Pending verification
🇦🇷Argentina - Club Atlético River Plate
Qilin hacking group claims to have breached Club Atlético River Plate.
Samples have been provided.
Sector: Sport
Threat class: Cybercrime
Observed: Dec 19, 2025
Status: Pending verification
December 19, 2025 at 9:55 AM
🚨Cyberattack Alert ‼️
🇦🇷Argentina - Club Atlético River Plate
Qilin hacking group claims to have breached Club Atlético River Plate.
Samples have been provided.
Sector: Sport
Threat class: Cybercrime
Observed: Dec 19, 2025
Status: Pending verification
🇦🇷Argentina - Club Atlético River Plate
Qilin hacking group claims to have breached Club Atlético River Plate.
Samples have been provided.
Sector: Sport
Threat class: Cybercrime
Observed: Dec 19, 2025
Status: Pending verification
🚨Cyber Alert ‼️
🇦🇪UAE - Al Ain Club
The threat actor who on Nov. 17 claimed to have breached Al-Ahli Saudi FC is now claiming to have breached Al Ain Club, allegedly leaking 141 internal documents containing sensitive personal and financial data, including IDs, passports, player contracts, and IBANs
🇦🇪UAE - Al Ain Club
The threat actor who on Nov. 17 claimed to have breached Al-Ahli Saudi FC is now claiming to have breached Al Ain Club, allegedly leaking 141 internal documents containing sensitive personal and financial data, including IDs, passports, player contracts, and IBANs
December 19, 2025 at 9:26 AM
🚨Cyber Alert ‼️
🇦🇪UAE - Al Ain Club
The threat actor who on Nov. 17 claimed to have breached Al-Ahli Saudi FC is now claiming to have breached Al Ain Club, allegedly leaking 141 internal documents containing sensitive personal and financial data, including IDs, passports, player contracts, and IBANs
🇦🇪UAE - Al Ain Club
The threat actor who on Nov. 17 claimed to have breached Al-Ahli Saudi FC is now claiming to have breached Al Ain Club, allegedly leaking 141 internal documents containing sensitive personal and financial data, including IDs, passports, player contracts, and IBANs
🚨Zero-day Alert‼️
Cisco Alerts on Critical 10.0 CVSS AsyncOS Zero Day Actively Exploited by China Linked APT, No Patch Available
Cisco Alerts on Critical 10.0 CVSS AsyncOS Zero Day Actively Exploited by China Linked APT, No Patch Available
December 19, 2025 at 8:47 AM
🚨Zero-day Alert‼️
Cisco Alerts on Critical 10.0 CVSS AsyncOS Zero Day Actively Exploited by China Linked APT, No Patch Available
Cisco Alerts on Critical 10.0 CVSS AsyncOS Zero Day Actively Exploited by China Linked APT, No Patch Available
🚨Cyber Alert ‼️
🇫🇷France - France Travail (Missions Locales)
Indra threat actor claims to be selling personal data of 1,551,344 France Travail users, allegedly linked to Missions Locales.
🇫🇷France - France Travail (Missions Locales)
Indra threat actor claims to be selling personal data of 1,551,344 France Travail users, allegedly linked to Missions Locales.
December 19, 2025 at 6:14 AM
🚨Cyber Alert ‼️
🇫🇷France - France Travail (Missions Locales)
Indra threat actor claims to be selling personal data of 1,551,344 France Travail users, allegedly linked to Missions Locales.
🇫🇷France - France Travail (Missions Locales)
Indra threat actor claims to be selling personal data of 1,551,344 France Travail users, allegedly linked to Missions Locales.
🚨Cyber Alert ‼️
🇦🇷Argentina - Threat Actor Claims Massive Data Leak Involving Argentinian Data Broker
🇦🇷Argentina - Threat Actor Claims Massive Data Leak Involving Argentinian Data Broker
December 19, 2025 at 5:52 AM
🚨Cyber Alert ‼️
🇦🇷Argentina - Threat Actor Claims Massive Data Leak Involving Argentinian Data Broker
🇦🇷Argentina - Threat Actor Claims Massive Data Leak Involving Argentinian Data Broker
🚨Cyber Alert ‼️
🇯🇵Japan - Organizations in Japan warned of an ongoing phishing and social engineering campaign using impersonation emails
The messages use the recipient company’s name as the subject and spoof the CEO as the sender, asking recipients to create a LINE group and reply with its QR code.
🇯🇵Japan - Organizations in Japan warned of an ongoing phishing and social engineering campaign using impersonation emails
The messages use the recipient company’s name as the subject and spoof the CEO as the sender, asking recipients to create a LINE group and reply with its QR code.
December 19, 2025 at 5:34 AM
🚨Cyber Alert ‼️
🇯🇵Japan - Organizations in Japan warned of an ongoing phishing and social engineering campaign using impersonation emails
The messages use the recipient company’s name as the subject and spoof the CEO as the sender, asking recipients to create a LINE group and reply with its QR code.
🇯🇵Japan - Organizations in Japan warned of an ongoing phishing and social engineering campaign using impersonation emails
The messages use the recipient company’s name as the subject and spoof the CEO as the sender, asking recipients to create a LINE group and reply with its QR code.
🚨Cyberattack Alert ‼️
🇪🇸Spain - Grandes Vinos
Qilin hacking group claims to have breached Grandes Vinos.
Allegedly, the attackers exfiltrated 620 GB of data.
Sector: Manufacturing
Threat class: Cybercrime
Observed: Dec 18, 2025
Status: Pending verification
🇪🇸Spain - Grandes Vinos
Qilin hacking group claims to have breached Grandes Vinos.
Allegedly, the attackers exfiltrated 620 GB of data.
Sector: Manufacturing
Threat class: Cybercrime
Observed: Dec 18, 2025
Status: Pending verification
December 18, 2025 at 1:43 PM
🚨Cyberattack Alert ‼️
🇪🇸Spain - Grandes Vinos
Qilin hacking group claims to have breached Grandes Vinos.
Allegedly, the attackers exfiltrated 620 GB of data.
Sector: Manufacturing
Threat class: Cybercrime
Observed: Dec 18, 2025
Status: Pending verification
🇪🇸Spain - Grandes Vinos
Qilin hacking group claims to have breached Grandes Vinos.
Allegedly, the attackers exfiltrated 620 GB of data.
Sector: Manufacturing
Threat class: Cybercrime
Observed: Dec 18, 2025
Status: Pending verification