Hackmanac

Hackmanac

Users
Tweets

Hackmanac

@H4ckmanac

Jun 10

𝟑𝟎 𝐝𝐚𝐲𝐬. 𝐍𝐞𝐰 𝐭𝐨𝐩 𝐚𝐜𝐭𝐨𝐫. 𝐍𝐞𝐰 𝐭𝐨𝐩 𝐜𝐨𝐮𝐧𝐭𝐫𝐲. 𝐒𝐚𝐦𝐞 𝐛𝐥𝐢𝐧𝐝 𝐬𝐩𝐨𝐭𝐬. In April, Handala was the most impactful threat actor in our dataset. In May, it dropped out of the top four. 𝐓𝐞𝐚𝐦𝐏𝐂𝐏, previously a single-incident outlier, is now the most severe actor in the landscape, with the highest 𝐖. 𝐀𝐯𝐠. 𝐄𝐒𝐈𝐗© (𝟓.𝟗𝟔) and the strongest positive 𝐈𝐦𝐩𝐚𝐜𝐭 𝐌𝐨𝐦𝐞𝐧𝐭𝐮𝐦 ( 𝟐𝟒.𝟓𝟔%). 𝐆𝐨𝐫𝐝𝐨𝐧𝐅𝐫𝐞𝐞𝐦𝐚𝐧, flagged in our April report as an emerging escalation signal, is now confirmed among the top four. This is what we call 𝐢𝐦𝐩𝐚𝐜𝐭 𝐥𝐞𝐚𝐝𝐞𝐫𝐬𝐡𝐢𝐩 𝐫𝐨𝐭𝐚𝐭𝐢𝐨𝐧: the most critical threats are not static. They emerge, accelerate, and shift faster than traditional monitoring can follow. May 2026 in numbers: → 𝟐,𝟎𝟑𝟑 analyzed attacks ( 𝟒.𝟔%) → Global Avg. 𝐄𝐒𝐈𝐗© 𝟒.𝟕𝟏 ( 𝟐.𝟒%) → 𝐇𝐞𝐚𝐥𝐭𝐡𝐜𝐚𝐫𝐞 still the most severe sector (𝟓.𝟒𝟑), but decelerating → 𝐆𝐨𝐯 / 𝐌𝐢𝐥 / 𝐋𝐄: first signs of rising impact ( 𝟕.𝟖%) in a sector historically defined by volume, not severity → 𝐒𝐨𝐮𝐭𝐡 𝐀𝐟𝐫𝐢𝐜𝐚 rises to most impacted country (𝟓.𝟔𝟏) → 𝐌𝐢𝐧𝐢𝐧𝐠 / 𝐐𝐮𝐚𝐫𝐫𝐲𝐢𝐧𝐠: most structurally overexposed sector → 𝐏𝐨𝐥𝐚𝐧𝐝 ( 𝟑𝟓.𝟑%), 𝐃𝐞𝐧𝐦𝐚𝐫𝐤 ( 𝟑𝟒.𝟑%), 𝐒𝐨𝐮𝐭𝐡 𝐊𝐨𝐫𝐞𝐚 ( 𝟐𝟗.𝟓%): sharpest geographic acceleration Cyber risk is no longer just about where attacks concentrate. It's about how fast impact shifts between actors, sectors, and geographies. The full analysis is in the 𝙃𝙖𝙘𝙠𝙢𝙖𝙣𝙖𝙘 𝙈𝙤𝙣𝙩𝙝𝙡𝙮 𝙍𝙚𝙥𝙤𝙧𝙩 — 𝙈𝙖𝙮 𝟮𝟬𝟮𝟲. 📄 Read online: online.fliphtml5.com/hackman… 📥 Download: hackmanac.com/monthly-report…

3,916

Hackmanac

Hackmanac

@H4ckmanac

Apr 22

‼️We just hit 50,000 cyberattacks analyzed From 2018 to today, every case manually reviewed, verified, and structured. That’s the foundation of HackRisk.io. Thanks to the Hackmanac team and everyone supporting us!

8,486

にゃん☆たく/takumi.a

にゃん☆たく/takumi.a

@taku888infinity

Mar 28

Hackmanacのポストは”リークサイトやフォーラムでこんなものが掲載されてたよ！掲載された情報の精査はしてないよ！”な気がしてるから検知できる手段として見るのは良いと思うけど、『Hackmanacがポストしたからヤバい！』と反応するのは違うと思ってマンモス。

1,033

SITION

SITION

@SITIONjp

Mar 27

📡 JAXA、新興ランサムウェアグループ「ALP-001」に侵害を主張される — 6.9TBのデータ流出かサイバー脅威インテリジェンスのHackmanac（@H4ckmanac）が3月27日、JAXA（宇宙航空研究開発機構）がランサムウェアグループ「ALP-001」による侵害を受けたと報告した。攻撃者は6.9TBのデータを窃取したと主張している。 ■ 何が起きたのか - 脅威アクター: ALP-001 - 対象: JAXA（jaxa.jp） - 主張されるデータ量: 6.9TB - 観測日: 2026年3月26日 - ステータス: 未検証（Pending verification） - 身代金期限: 約10日（4月5日頃） - ESIX©スコア: 7.84 ■ ALP-001とは何者か 2026年3月に出現した新興グループ。その正体は、少なくとも2024年半ばからダークウェブフォーラム（Exploit、DarkForums等）で活動してきたInitial Access Broker（IAB）だ。従来はVPN・Citrixゲートウェイ・SSH等の企業ネットワークへの侵入口を売買していたが、自前のデータリークサイトを立ち上げ、恐喝型オペレーションへと進化した。「Alpha Group」「DGJT Group」などの別名でも知られる。 3月21日にHikvision（19.9TB窃取を主張）、仏農機メーカーPellenc（228GB）、米Ingersoll Randなどを標的にしており、JAXAはその最新の標的となる。 ■ JAXAの過去のインシデント JAXAは2023〜2024年にも複数のサイバー攻撃を受けている。VPN脆弱性を起点にMicrosoft 365から1万件以上のファイルが流出した可能性があり、NDA締結先の情報も含まれていた。今回のALP-001の主張が事実であれば、日本の宇宙機関のセキュリティ体制が再び問われることになる。 ■ 現時点での注意 ALP-001の主張は未検証。このグループはIABからの転身組であり、ネットワークアクセス自体は本物でも、大規模データ窃取の証拠は現時点で確認されていない。JAXAからの公式発表を待つ必要がある。

Hackmanac

@H4ckmanac

Mar 27

🚨Cyber Alert ‼️ 🇯🇵Japan - 𝗝𝗮𝗽𝗮𝗻 𝗔𝗲𝗿𝗼𝘀𝗽𝗮𝗰𝗲 𝗘𝘅𝗽𝗹𝗼𝗿𝗮𝘁𝗶𝗼𝗻 𝗔𝗴𝗲𝗻𝗰𝘆 (𝗝𝗔𝗫𝗔) ALP-001 hacking group claims to have breached Japan Aerospace Exploration Agency (JAXA). Allegedly, the attackers exfiltrated 6.9 TB of data. Threat actor: ALP-001 Sector: Manufacturing Data exposure (claimed): 6.9 TB of data Data type: Not specified Observed: Mar 26, 2026 Status: Pending verification ESIX©: 7.84 Full details and impact assessment on HackRisk.io

2,959

Hackmanac

Hackmanac

@H4ckmanac

Mar 24

JD - 🤔 Hey Hackmanac, how does the cyber threat landscape look over the last 3 months? HM - 6,040 cyber attacks recorded ( 40.5% vs the previous 3 months) JD - 🧐 But how many of these are severe? HM - 874 critical attacks (14.5% of total, 21.4%) JD - 😰 And which sector is the most impacted? HM - Healthcare (5.57 avg. ESIX) JD - 😱 Full details and impact assessment on HackRisk.io

4,389

Hackmanac

Hackmanac

@H4ckmanac

Mar 20

Eid Al Fitr Mubarak from Hackmanac Team 🌙 ✨

4,906

Hackmanac

Hackmanac

@H4ckmanac

Mar 9

Our 𝐅𝐞𝐛𝐫𝐮𝐚𝐫𝐲 𝟐𝟎𝟐𝟔 𝐇𝐚𝐜𝐤𝐦𝐚𝐧𝐚𝐜 𝐌𝐨𝐧𝐭𝐡𝐥𝐲 𝐂𝐲𝐛𝐞𝐫 𝐑𝐢𝐬𝐤 𝐑𝐞𝐩𝐨𝐫𝐭 is ready! This edition introduces several new analytical elements, including the 𝐈𝐧𝐝𝐮𝐬𝐭𝐫𝐲 𝐌𝐚𝐠𝐢𝐜 𝐐𝐮𝐚𝐝𝐫𝐚𝐧𝐭, designed to visualise how cyber risk distributes across sectors by combining attack exposure and impact severity by ESIX©. The report applies the 𝐇𝐚𝐜𝐤𝐦𝐚𝐧𝐚𝐜 𝐂𝐲𝐛𝐞𝐫 𝐑𝐢𝐬𝐤 𝐅𝐫𝐚𝐦𝐞𝐰𝐨𝐫𝐤, a four-dimension model analysing confirmed cyber attacks across: • 𝐈𝐧𝐝𝐮𝐬𝐭𝐫𝐢𝐞𝐬 • 𝐆𝐞𝐨𝐠𝐫𝐚𝐩𝐡𝐲 • 𝐓𝐡𝐫𝐞𝐚𝐭 𝐀𝐜𝐭𝐨𝐫𝐬 • 𝐄𝐦𝐞𝐫𝐠𝐢𝐧𝐠 𝐑𝐢𝐬𝐤 𝐒𝐢𝐠𝐧𝐚𝐥𝐬 using three core indicators: • 𝐄𝐒𝐈𝐗© — severity per incident • 𝐈𝐦𝐩𝐚𝐜𝐭 𝐌𝐨𝐦𝐞𝐧𝐭𝐮𝐦 — month-over-month acceleration of cyber impact • 𝐐𝐒𝐈 (𝐐𝐮𝐢𝐞𝐭 𝐒𝐡𝐢𝐟𝐭 𝐈𝐧𝐝𝐞𝐱) — divergence between attack activity and damage concentration Some insights from February: • 𝐌𝐚𝐧𝐮𝐟𝐚𝐜𝐭𝐮𝐫𝐢𝐧𝐠 emerges in the Critical Risk Zone, combining high exposure with sustained incident severity. • Most industries cluster in Tail Risk Hotspots, where cyber incidents generate 𝐝𝐢𝐬𝐩𝐫𝐨𝐩𝐨𝐫𝐭𝐢𝐨𝐧𝐚𝐭𝐞 𝐢𝐦𝐩𝐚𝐜𝐭 𝐝𝐞𝐬𝐩𝐢𝐭𝐞 𝐦𝐨𝐝𝐞𝐫𝐚𝐭𝐞 𝐚𝐜𝐭𝐢𝐯𝐢𝐭𝐲 𝐥𝐞𝐯𝐞𝐥𝐬. • 𝐅𝐫𝐚𝐧𝐜𝐞 shows the strongest acceleration of cyber impact, with Impact Momentum exceeding 30% month-over-month. • Several threat actors generate 𝐝𝐢𝐬𝐩𝐫𝐨𝐩𝐨𝐫𝐭𝐢𝐨𝐧𝐚𝐭𝐞 𝐢𝐦𝐩𝐚𝐜𝐭 𝐫𝐞𝐥𝐚𝐭𝐢𝐯𝐞 𝐭𝐨 𝐭𝐡𝐞𝐢𝐫 𝐚𝐜𝐭𝐢𝐯𝐢𝐭𝐲 𝐥𝐞𝐯𝐞𝐥𝐬, highlighting increasing operational efficiency. 📊 Download the full report: hackmanac.com/monthly-report… For continuous access to the underlying dataset, trends and severity indicators: 👉 hackrisk.io

4,820

Sofia Scozzari Z. Manzoni

Sofia Scozzari Z. Manzoni

@SofiaSZM

Mar 7

Over the past week we have been closely monitoring the cyber dimension of the ongoing tensions in the Middle East. Cyber activity is already accompanying the conflict, involving multiple countries, threat actors and sectors across the region. Today we published the first issue of the 𝐇𝐚𝐜𝐤𝐦𝐚𝐧𝐚𝐜 𝐌𝐢𝐝𝐝𝐥𝐞 𝐄𝐚𝐬𝐭 𝐂𝐲𝐛𝐞𝐫 𝐂𝐨𝐧𝐟𝐥𝐢𝐜𝐭 𝐌𝐨𝐧𝐢𝐭𝐨𝐫, a weekly snapshot designed to track how the cyber landscape evolves as the situation develops. The analysis is based on 𝟑𝟖𝟐 𝐩𝐮𝐛𝐥𝐢𝐜𝐥𝐲 𝐝𝐢𝐬𝐜𝐥𝐨𝐬𝐞𝐝 𝐜𝐲𝐛𝐞𝐫 𝐢𝐧𝐜𝐢𝐝𝐞𝐧𝐭𝐬 recorded in the 𝐟𝐢𝐫𝐬𝐭 𝟕 𝐝𝐚𝐲𝐬 𝐨𝐟 𝐭𝐡𝐞 𝐜𝐨𝐧𝐟𝐥𝐢𝐜𝐭. Of course, what we observe represents only the visible layer of a much broader cyber battlefield — especially when espionage, sabotage and information warfare are involved. We will continue monitoring the situation and publishing updates every 7 days. 👇 Full analysis in the original post.

Hackmanac

@H4ckmanac

Mar 7

For the past seven days we have been closely monitoring the cyber dimension of the ongoing tensions in the Middle East. Today we are introducing a new weekly intelligence snapshot: the 𝐇𝐚𝐜𝐤𝐦𝐚𝐧𝐚𝐜 𝐌𝐢𝐝𝐝𝐥𝐞 𝐄𝐚𝐬𝐭 𝐂𝐲𝐛𝐞𝐫 𝐂𝐨𝐧𝐟𝐥𝐢𝐜𝐭 𝐌𝐨𝐧𝐢𝐭𝐨𝐫. The goal is to provide a structured view of the cyber activity surrounding the conflict — highlighting 𝐚𝐟𝐟𝐞𝐜𝐭𝐞𝐝 𝐜𝐨𝐮𝐧𝐭𝐫𝐢𝐞𝐬, 𝐭𝐚𝐫𝐠𝐞𝐭𝐞𝐝 𝐬𝐞𝐜𝐭𝐨𝐫𝐬, 𝐭𝐡𝐫𝐞𝐚𝐭 𝐚𝐜𝐭𝐨𝐫𝐬 and 𝐭𝐞𝐜𝐡𝐧𝐢𝐪𝐮𝐞𝐬 𝐨𝐛𝐬𝐞𝐫𝐯𝐞𝐝. The data presented in this monitor is based exclusively on successful cyber attacks that have become publicly disclosed. Especially in a sensitive geopolitical context like the current one, many operations — particularly those involving espionage, sabotage or information warfare — are unlikely to surface immediately, if at all. As a result, the activity we observe should be considered only the visible layer of a much broader cyber conflict landscape. First 7 days overview: • 𝟑𝟖𝟐 𝐜𝐲𝐛𝐞𝐫 𝐢𝐧𝐜𝐢𝐝𝐞𝐧𝐭𝐬 𝐨𝐛𝐬𝐞𝐫𝐯𝐞𝐝 𝐚𝐜𝐫𝐨𝐬𝐬 𝐭𝐡𝐞 𝐫𝐞𝐠𝐢𝐨𝐧 • 𝟏𝟏 𝐜𝐨𝐮𝐧𝐭𝐫𝐢𝐞𝐬 𝐢𝐦𝐩𝐚𝐜𝐭𝐞𝐝 • 𝟒𝟓 𝐭𝐡𝐫𝐞𝐚𝐭 𝐚𝐜𝐭𝐨𝐫𝐬 𝐢𝐧𝐯𝐨𝐥𝐯𝐞𝐝 𝐢𝐧 𝐭𝐡𝐞 𝐚𝐜𝐭𝐢𝐯𝐢𝐭𝐲 • 𝐀𝐯𝐞𝐫𝐚𝐠𝐞 𝐄𝐒𝐈𝐗© 𝐢𝐦𝐩𝐚𝐜𝐭 𝐬𝐜𝐨𝐫𝐞: 𝟑.𝟕𝟑 The data shows a strong concentration of activity around 𝐠𝐨𝐯𝐞𝐫𝐧𝐦𝐞𝐧𝐭, 𝐦𝐢𝐥𝐢𝐭𝐚𝐫𝐲 and 𝐥𝐚𝐰 𝐞𝐧𝐟𝐨𝐫𝐜𝐞𝐦𝐞𝐧𝐭 targets, which alone account for nearly half of the observed incidents. In terms of geography, the highest volumes of activity have been observed in 𝐈𝐬𝐫𝐚𝐞𝐥, 𝐊𝐮𝐰𝐚𝐢𝐭 and 𝐉𝐨𝐫𝐝𝐚𝐧, while 𝐈𝐫𝐚𝐧, 𝐈𝐫𝐚𝐪 and 𝐭𝐡𝐞 𝐔𝐀𝐄 appear as the most impacted countries. From a technical perspective, 𝐃𝐃𝐨𝐒 campaigns dominate the activity, representing the vast majority of incidents recorded during the first week of the conflict — although typically associated with lower impact levels. By contrast, 𝐦𝐮𝐥𝐭𝐢𝐩𝐥𝐞 𝐭𝐞𝐜𝐡𝐧𝐢𝐪𝐮𝐞𝐬 and 𝐦𝐚𝐥𝐰𝐚𝐫𝐞 appear to be the most dangerous threats in terms of severity. This monitor will be updated every 7 days to track how the cyber dimension of the conflict evolves over time.

389

Hackmanac

Hackmanac

@H4ckmanac

Mar 7

10,464

Sofia Scozzari Z. Manzoni

Sofia Scozzari Z. Manzoni

@SofiaSZM

Mar 4

Grazie a Elena Betti per avermi permesso di raccontare a @wireditalia cosa sta accadendo davvero in UAE, dove vivo con la mia famiglia da 9 anni. La situazione nella zona è certamente molto delicata, il paese tuttavia non è oggetto di offensive dirette, ma solo indirette, in quanto i target di missili e droni sono solo strategici e militari. Nonostante il comprensibile clima di tensione e di prudenza, non c'è panico, ma molta fiducia nelle istituzioni locali, che vantano uno dei sistemi difensivi migliori al mondo e stanno gestendo l'emergenza con precisione ed efficacia (94% delle offensive intercettate e distrutte nel momento in cui scrivo il post). L'aspetto forse più importante, oltre alla protezione dei residenti, è che l'economia continua a funzionare, con negozi e centri commerciali aperti e servizi di delivery operativi come sempre, un fortissimo segno di resilienza. Parallelamente, da CEO & Founder di Hackmanac, ho osservato e raccontato un’altra dimensione del conflitto, quella digitale. Ogni escalation geopolitica moderna porta con sé anche una dimensione cyber, e i primi segnali hanno iniziato ad emergere già dai primi giorni nella regione. Qui l'articolo completo con entrambe le prospettive: 🔗 wired.it/article/dubai-attac…

Com'è la vita a Dubai dopo gli attacchi missilistici iraniani e il rischio di una guerra cyber

Notti di intercettazioni nei cieli, evacuazioni preventive e spazio aereo chiuso. Ma in città il clima è di prudenza, non di panico. E mentre le difese intercettano missili e droni, aumentano DDoS,...

wired.it

2,323

Hackmanac

Hackmanac

@H4ckmanac

Mar 1

🚨Cyber Alert‼️ 🇦🇪UAE - Scammers are taking advantage of the situation in the UAE. The caller claims to be from the Ministry of Interior (MOI) and asks you to confirm that you received the national alert. They request your Emirates ID (EID) number for verification. Please do not provide any personal information or data. The government would never call you to ask for such details. Stay safe, Hackmanac Team

21,370

Hackmanac

Hackmanac

@H4ckmanac

Feb 18

𝐖𝐞’𝐯𝐞 𝐣𝐮𝐬𝐭 𝐫𝐞𝐥𝐞𝐚𝐬𝐞𝐝 𝐨𝐮𝐫 𝐟𝐢𝐫𝐬𝐭 𝐌𝐨𝐧𝐭𝐡𝐥𝐲 𝐑𝐞𝐩𝐨𝐫𝐭 𝐨𝐟 𝟐𝟎𝟐𝟔! Starting this year, Hackmanac introduces a dedicated monthly severity-driven analysis of confirmed cyber attacks, designed to go beyond volume and reveal where real damage is intensifying. This edition introduces two new analytical lenses: •𝐈𝐦𝐩𝐚𝐜𝐭 𝐌𝐨𝐦𝐞𝐧𝐭𝐮𝐦 — measuring the month-over-month acceleration of our ESIX© severity index •𝐐𝐒𝐈 (𝐐𝐮𝐢𝐞𝐭 𝐒𝐡𝐢𝐟𝐭 𝐈𝐧𝐝𝐞𝐱) — identifying where impact concentration exceeds activity levels Combined with attack volume and ESIX© impact analysis, these metrics provide clearer answers to strategic risk questions: •Where is severity accelerating? •Which industries are structurally over-exposed? •Which threat actors generate disproportionate damage? •Where are early systemic signals emerging? This report is built for: •CISOs and security leaders prioritising exposure •Cyber insurance and underwriting teams assessing loss concentration •Risk managers and boards seeking severity-based indicators •Threat intelligence professionals tracking structural shifts For continuous, real-time access to the complete dataset, trends and severity breakdowns, explore 𝐇𝐚𝐜𝐤𝐑𝐢𝐬𝐤.𝐢𝐨, our Strategic Threat Intelligence platform. 🔎 𝐃𝐨𝐰𝐧𝐥𝐨𝐚𝐝 𝐭𝐡𝐞 𝐫𝐞𝐩𝐨𝐫𝐭 𝐟𝐨𝐫 𝐟𝐫𝐞𝐞 𝐡𝐞𝐫𝐞: hackmanac.com/monthly-report…

4,702

Hackmanac

Hackmanac

@H4ckmanac

Feb 18

Ramadan Kareem from Hackmanac Team 🌙

102

5,790

にゃん☆たく/takumi.a

にゃん☆たく/takumi.a

@taku888infinity

Feb 16

Hackmanacを一次ソースとして扱うのヤフーニュースを1次ソースとして扱うのと同じ感覚な気がするの僕だけ？

4,075

Hackmanac

Hackmanac

@H4ckmanac

Feb 13

🚨Cyberattack Alert ‼️ 🇦🇪UAE - Emirates National Group The Gentlemen hacking group claims to have breached Emirates National Group. Sector: Transportation Threat class: Cybercrime Observed: Feb 12, 2026 Status: Pending verification — About this post: Hackmanac provides early warning and cyber situational awareness through its social channels. This alert is based on publicly available information that our analysts retrieved from clear and dark web sources. No confidential or proprietary data was downloaded, copied, or redistributed, and sensitive details were redacted from the attached screenshot(s). For more details about this incident, our ESIX impact score, and additional context, visit HackRisk.io.

7,461

Hackmanac

Hackmanac

@H4ckmanac

Feb 13

🚨Cyberattack Alert ‼️ 🇪🇸Spain - Renovagy LockBit 5.0 hacking group claims to have breached Renovagy. Sector: Professional / Scientific / Technical Threat class: Cybercrime Observed: Feb 12, 2026 Status: Pending verification — About this post: Hackmanac provides early warning and cyber situational awareness through its social channels. This alert is based on publicly available information that our analysts retrieved from clear and dark web sources. No confidential or proprietary data was downloaded, copied, or redistributed, and sensitive details were redacted from the attached screenshot(s). For more details about this incident, our ESIX impact score, and additional context, visit HackRisk.io.

7,708

Hackmanac

Hackmanac

@H4ckmanac

Feb 13

🚨Cyber Alert ‼️ 🇮🇹Italy - Siem Srl Space Bears hacking group claims to have breached Siem Srl. Allegedly, the attackers exfiltrated data, including customer contracts, financial reports, customer drawings (factories, airports, etc.), employee personal data, and projects. Sector: Professional Threat class: Cybercrime Observed: Feb 13, 2026 Status: Pending verification — About this post: Hackmanac provides early warning and cyber situational awareness through its social channels. This alert is based on publicly available information that our analysts retrieved from clear and dark web sources. No confidential or proprietary data was downloaded, copied, or redistributed, and sensitive details were redacted from the attached screenshot(s). For more details about this incident, our ESIX impact score, and additional context, visit HackRisk.io.

4,663

Hackmanac

Hackmanac

@H4ckmanac

Feb 12

🚨Cyber Alert ‼️ 🇯🇵Japan - Nippon Medical School Musashi Kosugi Hospital NetRunnerPR threat actor claims to have breached Nippon Medical School Musashi Kosugi Hospital and exfiltrated 131,135 patient PII records, including names, IDs, contacts, and personal details, with samples released as proof. The actor also threatened to leak 20,000 additional records on February 16, 2026. Sector: Healthcare Threat class: Cybercrime Observed: Feb 11, 2026 Status: Pending verification — About this post: Hackmanac provides early warning and cyber situational awareness through its social channels. This alert is based on publicly available information that our analysts retrieved from clear and dark web sources. No confidential or proprietary data was downloaded, copied, or redistributed, and sensitive details were redacted from the attached screenshot(s). For more details about this incident, our ESIX impact score, and additional context, visit HackRisk.io.

148

56,715

Hackmanac

Hackmanac

@H4ckmanac

Feb 12

🚨Cyberattack Alert ‼️ 🇺🇸US - Tsunami Tsolutions Everest hacking group claims to have breached Tsunami Tsolutions. Allegedly, the attackers exfiltrated 562 GB of data, including a database containing proprietary aviation data, aircraft component documentation, maintenance records, software source code, and export-controlled technical files. Sector: Professional / Scientific / Technical Threat class: Cybercrime Observed: Feb 11, 2026 Status: Pending verification — About this post: Hackmanac provides early warning and cyber situational awareness through its social channels. This alert is based on publicly available information that our analysts retrieved from clear and dark web sources. No confidential or proprietary data was downloaded, copied, or redistributed, and sensitive details were redacted from the attached screenshot(s). For more details about this incident, our ESIX impact score, and additional context, visit HackRisk.io.

6,582

Hackmanac

Hackmanac

@H4ckmanac

Feb 12

🚨Cyberattack Alert ‼️ 🇬🇭Ghana - Ghana Bauxite Company Limited The Gentlemen hacking group claims to have breached Ghana Bauxite Company Limited. Sector: Mining / Quarrying Threat class: Cybercrime Observed: Feb 12, 2026 Status: Pending verification — About this post: Hackmanac provides early warning and cyber situational awareness through its social channels. This alert is based on publicly available information that our analysts retrieved from clear and dark web sources. No confidential or proprietary data was downloaded, copied, or redistributed, and sensitive details were redacted from the attached screenshot(s). For more details about this incident, our ESIX impact score, and additional context, visit HackRisk.io.

4,512