Category: ➽Data Breach

In late October 2025, the internet was buzzing with alarming headlines about a supposed Gmail data breach that allegedly exposed millions of users’ passwords online 😱. Reports across social media and several blogs claimed that vast troves of Gmail credentials were circulating on hacker forums and the dark web. But Google quickly moved to shut…

The GCash data breach has sent shockwaves across the Philippine fintech community, raising concerns among millions of mobile wallet users. Reports surfaced on October 25, 2025, claiming that sensitive GCash KYC data—including eKYC records, linked bank accounts, and personal information—has been put up for sale on a dark web forum. The alleged leak, reportedly spanning…

In a critical breach that underscores how vulnerable modern data stores have become, a publicly reachable instance of Elasticsearch (hosted at IP 188.214.129.11, assigned to UAB Cherry Servers) has reportedly exposed approximately 1,710,059,583 documents across a dataset of about 774.43 GB. This exposure includes Compromised fields: username, url, email, plain-text password, CPF, CEP, full name,…

The Working-Dog.com data leak has sent shockwaves through both the dog-breeding community and the cybersecurity world 🐾. In a startling discovery, the Kaduu cybersecurity team uncovered an unsecured server exposure tied to Working-Dog.com, a popular global platform for breeders, trainers, and animal enthusiasts. The exposed database—indexed on Shodan—contained over 4.18 billion documents and more than…

The Artists&Clients data breach has raised new concerns across the creative freelance community after a massive database containing sensitive user information surfaced on dark web forums in late August 2025. The breach, reportedly discovered by the Kaduu Cyber Threat Intelligence Team during routine monitoring, was shared on the underground forum Breachsta.rs around September 1, 2025.…

The Vietnam Airlines data breach has quickly become one of the most talked-about cybersecurity incidents of 2025. During a routine sweep of underground forums, the Kaduu team discovered a large database posted on the dark web that allegedly contains sensitive passenger information. The post appeared on htdark.com, authored by the user “dEEpEst”, dated October 14…

The CISA vulnerabilities update released on October 20, 2025, has sent ripples through the cybersecurity community 🌐. The Cybersecurity and Infrastructure Security Agency (CISA) officially added five new entries to its Known Exploited Vulnerabilities (KEV) Catalog, marking them as actively exploited threats that demand immediate patching. For researchers and defenders, this update reveals how rapidly…

The Verisure data breach has shaken Sweden’s home-security industry after the Kaduu team’s dark-web monitoring uncovered leaked personal data from Verisure’s subsidiary Alert Alarm. 😱 The breach, which exposed names, addresses, e-mails, and social-security numbers of around 35,000 customers, highlights the growing risks of third-party vulnerabilities and weak partner systems. The Verisure data breach stands…

In a startling revelation, the Kaduu team discovered during routine dark web monitoring evidence pointing to a recent breach allegedly involving F5, the maker of the prominent BIG-IP product line. This breach—widely reported by major cybersecurity outlets—has exposed parts of F5’s internal source code and vulnerability intelligence to a presumed nation-state threat actor. This is…