Skip to content

Enterprise Digital Footprint

UNC3886 breach of Singapore’s four largest telcos

Date of Incident: 2024 Overview: In 2024, the APT group UNC3886 breached Singapore’s four major telecom companies—Singtel, StarHub, M1 Limited, and TPG Telecom. The attackers accessed some critical systems but failed to cause service disruptions or access sensitive customer data. Techniques used included exploiting public-facing applications and leveraging valid accounts, with attempts at lateral movement… Read More »UNC3886 breach of Singapore’s four largest telcos

European Commission Mobile Device Management Breach

Date of Incident: 2026-01-30 Overview: The European Commission experienced a security breach in their Mobile Device Management (MDM) system on January 30, 2026, which was reported on February 9, 2026. The breach affected staff members’ personal information, including names and phone numbers, but did not compromise the mobile devices themselves. Attackers leveraged MITRE ATT&CK techniques… Read More »European Commission Mobile Device Management Breach

Flickr Data Breach

Date of Incident: 2026-02-05 Overview: The Flickr Data Breach, reported on February 6, 2026, involved the exposure of user data including real names, email addresses, IP addresses, usernames, account types, general location, and platform activity. However, passwords and payment card details remained secure. The breach likely resulted from an exploitation of a vulnerability or compromised… Read More »Flickr Data Breach

Spain’s Ministry of Science Cyberattack

Date of Incident: 2023 Overview: In 2023, Spain’s Ministry of Science suffered a significant cyberattack, leading to the partial shutdown of its IT systems and suspension of key administrative services impacting researchers, universities, and students. The breach involved the use of custom PowerShell scripts for lateral movement and ransomware deployment, exploiting valid accounts for initial… Read More »Spain’s Ministry of Science Cyberattack

Substack Data Breach

Date of Incident: October 2025 Overview: In October 2025, Substack experienced a data breach where unauthorized access led to the theft of 697,313 user records, involving email addresses, phone numbers, and internal metadata. Credentials and financial information remained secure, but the exposed personal data heightened the risk of phishing attacks. The breach exploited exposed APIs… Read More »Substack Data Breach

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.