π¨βΌοΈ BREAKING: Adobe has been breached by threat actor Mr. Raccoon, leaking 13 million support tickets with personal data, 15,000 employee records, all HackerOne submissions, internal documents and more.
Mr. Raccoon gained access through an Indian BPO, first deploying a remote access tool on an employee, then phishing their manager.
Mr. Raccoon told us: "They allowed you to export all tickets in one request from an agent."
We've reviewed multiple files confirming the scope of the breach. Among the details: Mr. Raccoon gained webcam access on the targeted employee through a RAT delivered via email and also obtained private conversations through WhatsApp.
Mr. Raccoon gained access through an Indian BPO, first deploying a remote access tool on an employee, then phishing their manager.
Mr. Raccoon told us: "They allowed you to export all tickets in one request from an agent."
We've reviewed multiple files confirming the scope of the breach. Among the details: Mr. Raccoon gained webcam access on the targeted employee through a RAT delivered via email and also obtained private conversations through WhatsApp.
π€£24β€4π₯΄3π₯1π€―1
βοΈ Tracker updated -> 4 new verified breaches added:
πΊπΈ S&P Global (verified)
πΊπΈ Mercor AI (verified)
πΊπΈ Lightning AI (verified)
π©πͺ ownCloud (verified)
Total identified alleged victims: 61
teampcp.cyberdigest.international π
πΊπΈ S&P Global (verified)
πΊπΈ Mercor AI (verified)
πΊπΈ Lightning AI (verified)
π©πͺ ownCloud (verified)
Total identified alleged victims: 61
teampcp.cyberdigest.international π
π₯6β€3π©1
European Commission has been added to the tracker and confirmed, bringing the total to 62 alleged victims.
https://cert.europa.eu/blog/european-commission-cloud-breach-trivy-supply-chain
Tracker: https://teampcp.cyberdigest.international/
https://cert.europa.eu/blog/european-commission-cloud-breach-trivy-supply-chain
Tracker: https://teampcp.cyberdigest.international/
π€£1
βΌοΈ The axios lead maintainer has gone public on how he was socially engineered into installing the malware behind the npm supply chain attack.
We have example images showing exactly how the attack was staged.
We have example images showing exactly how the attack was staged.
π8π7π€―1π€£1
π¨βΌοΈ Mercor has paid ransom to ShinyHunters following the LiteLLM supply chain breach compromise.
Mercor works with major AI companies including OpenAI and Anthropic to train AI models.
Mercor works with major AI companies including OpenAI and Anthropic to train AI models.
β€11π±1
βοΈRANSOM-ISAC published a solid piece on TeamPCP β featuring several of our posts.
https://www.ransom-isac.com/blog/supply-chain-confidence/
https://www.ransom-isac.com/blog/supply-chain-confidence/
β€2
π¨βΌοΈ BREAKING: The Crunchyroll breach data, leaked via an Indian outsourcing partner, has been sold.
1.2 million of 2 million customer records were purchased by a single buyer.
We've obtained the 1.2 million emails from Mr. Raccoon and will be sharing them with HaveIBeenPwned.
1.2 million of 2 million customer records were purchased by a single buyer.
We've obtained the 1.2 million emails from Mr. Raccoon and will be sharing them with HaveIBeenPwned.
β€19
βΌοΈ We have just updated the TeamPCP supply chain attack tracker at https://teampcp.cyberdigest.international/ after TeamPCP supplied us with a small list.
89 Total affected orgs!
Bringing the total to 68 alleged victims:
πΊπΈ MedWork (medwork[.]io)
π§π· Tuna Pagamentos (tunapagamentos[.]com[.]br) β [data sold]
π¨π Sportradar (sportradar[.]com) β [data open for sale, NASDAQ ~$4.98B]
π§π· Nuvidio (nuvidio[.]com[.]br)
π¨π¦ IDMelon / SecurityKey (idmelon[.]com)
89 Total affected orgs!
Bringing the total to 68 alleged victims:
πΊπΈ MedWork (medwork[.]io)
π§π· Tuna Pagamentos (tunapagamentos[.]com[.]br) β [data sold]
π¨π Sportradar (sportradar[.]com) β [data open for sale, NASDAQ ~$4.98B]
π§π· Nuvidio (nuvidio[.]com[.]br)
π¨π¦ IDMelon / SecurityKey (idmelon[.]com)
International Cyber Digest
TeamPCP β Breach Tracker | International Cyber Digest
Active tracking of the TeamPCP supply chain campaign β 57 alleged victims, 19 countries, 4 confirmed attack vectors. Updated in real time.
π₯6
This media is not supported in your browser
VIEW IN TELEGRAM
When you lied on your resume.
π7π’5π€£4
βΌοΈπ«π· France just mandated digital ID for every citizen by banning social media for minors.
Under 15s will be blocked from IG, TikTok, FB, Snapchat and any platform allowing interactions, public broadcasts or user communities.
The banlist is determined by French regulator Arcom.
Under 15s will be blocked from IG, TikTok, FB, Snapchat and any platform allowing interactions, public broadcasts or user communities.
The banlist is determined by French regulator Arcom.
π13π8π€ͺ6π€¬3π2π’1π©1
π¨π°π΅ North Korean state-backed hackers had a great year, they have been 'paid' $2.02 billion in 'bug bounties' in 2025.
According to ChainAnalysis North Korean hackers stole $2.02 billion in crypto in 2025, a 51% year-over-year increase, bringing their all-time total to $6.75 billion.
They're doing fewer attacks, but bigger hauls. The DPRK is embedding IT workers inside crypto firms and using sophisticated impersonation tactics targeting executives.
After major thefts, laundering follows within 45 days β predominantly through Chinese-language services, bridges and mixing protocols.
According to ChainAnalysis North Korean hackers stole $2.02 billion in crypto in 2025, a 51% year-over-year increase, bringing their all-time total to $6.75 billion.
They're doing fewer attacks, but bigger hauls. The DPRK is embedding IT workers inside crypto firms and using sophisticated impersonation tactics targeting executives.
After major thefts, laundering follows within 45 days β predominantly through Chinese-language services, bridges and mixing protocols.
π₯12π11
βΌοΈ A BIZARRE copyright claim system abuse happened on YouTube. Italian TV channel La7 used Nvidia's DLSS 5 trailer footage in a broadcast, then filed copyright claims against Nvidia and other YouTubers using the same material. Their videos are now taken down.
π€£33β€2π1