Skip to content

Enterprise Digital Footprint

SonicWall cloud backup hack leading to Marquis ransomware attack

Date of Incident: August 2025 Overview: In August 2025, a breach involving SonicWall’s cloud backup led to a ransomware attack on Marquis Software Systems, significantly impacting numerous US banks and credit unions. The attack exploited vulnerabilities in SonicWall’s firewall management system. Threat actors gained unauthorized access, stole firewall configuration files, and used them for lateral… Read More »SonicWall cloud backup hack leading to Marquis ransomware attack

Match Group Data Breach

Date of Incident: 2023 Overview: In 2023, Match Group experienced a data breach attributed to the ShinyHunters threat group, which leaked approximately 1.7 GB of files containing data on 10 million users from brands like Hinge, Match, and OkCupid. The breach involved unauthorized access through valid credentials, exploiting technique T1078 (Valid Accounts), but there was… Read More »Match Group Data Breach

France Travail Data Breach 2024

Date of Incident: Early 2024 Overview: The France Travail Data Breach of 2024 involved a large-scale social engineering attack that compromised the personal information of approximately 43 million individuals. Key data such as names, dates of birth, national insurance numbers, emails, home addresses, and phone numbers were stolen, though bank details and passwords remained secure.… Read More »France Travail Data Breach 2024

Weekly Report: New Hacking Techniques and Critical CVEs 20 Jan – 26 Jan 2026

Three actively exploited zero-days, two CVSS 10.0 flaws, and critical supply chain compromises. Threat activity spans infrastructure (Cisco, Microsoft, Fortinet), AI/DevOps platforms (n8n, Chainlit, Zoom), and legacy systems. Dominant pattern: improper input validation enabling unauthenticated infrastructure takeover. Key Metrics: 3 zero-days exploited | 2 CVSS 10.0 flaws | 509 GB (ASRock Rack) + 861 GB… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 20 Jan – 26 Jan 2026

Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 20 Jan – 26 Jan 2026

This week witnessed a confluence of critical cyber incidents spanning ransomware extortion, zero-day vulnerabilities, and state-sponsored APT campaigns targeting critical infrastructure and Fortune 500 companies. Notable incidents include Nike’s 1.4TB WorldLeaks data leak exposing R&D and manufacturing data, McDonald’s India’s 861GB Everest ransomware exfiltration affecting millions of customer records, Fortinet’s CVE-2026-24858 critical zero-day enabling unauthorized… Read More »Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 20 Jan – 26 Jan 2026

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.