Threat actor: Not Specified
Sector: Cryptocurrency exchange and related
Data exposure (claimed): Not Specified
Data type: Cryptocurrency assets: 50.903 BTC (~$3.665M)
Observed: Apr 08, 2026
Status: Confirmed
ESIX©: 7.19

Full details and impact assessment on HackRisk.io

🚨Cyber Alert ‼️

🇺🇸US - 𝗕𝗶𝘁𝗰𝗼𝗶𝗻 𝗗𝗲𝗽𝗼𝘁 𝗜𝗻𝗰

Bitcoin Depot Inc. disclosed a March 23, 2026 cyberattack in which a threat actor compromised credentials to access internal systems and steal 50.903 BTC (~$3.665M) from company wallets.

Explore the documentation and start testing the API:
hackrisk.io/api-document...

3/3

From ESIX©-based severity data to threat actor, technique, and sector-level context, the HackRisk API helps turn attack intelligence into something directly usable across reporting, monitoring, and decision-making.

Included in the 𝐄𝐧𝐭𝐞𝐫𝐩𝐫𝐢𝐬𝐞 𝐩𝐥𝐚𝐧.

2/3

📢 𝐇𝐚𝐜𝐤𝐑𝐢𝐬𝐤 𝐀𝐏𝐈 𝐢𝐬 𝐧𝐨𝐰 𝐚𝐯𝐚𝐢𝐥𝐚𝐛𝐥𝐞 𝐟𝐨𝐫 𝐄𝐧𝐭𝐞𝐫𝐩𝐫𝐢𝐬𝐞 𝐮𝐬𝐞𝐫𝐬

Integrate our data where you need it most.

The HackRisk API gives direct access to 𝐬𝐭𝐫𝐮𝐜𝐭𝐮𝐫𝐞𝐝 𝐜𝐲𝐛𝐞𝐫 𝐚𝐭𝐭𝐚𝐜𝐤 𝐚𝐧𝐝 𝐢𝐦𝐩𝐚𝐜𝐭 𝐢𝐧𝐭𝐞𝐥𝐥𝐢𝐠𝐞𝐧𝐜𝐞 for 𝐞𝐱𝐞𝐜𝐮𝐭𝐢𝐯𝐞 𝐝𝐚𝐬𝐡𝐛𝐨𝐚𝐫𝐝𝐬, 𝐭𝐡𝐫𝐞𝐚𝐭 𝐢𝐧𝐭𝐞𝐥𝐥𝐢𝐠𝐞𝐧𝐜𝐞 𝐩𝐥𝐚𝐭𝐟𝐨𝐫𝐦𝐬, 𝐜𝐨𝐦𝐩𝐥𝐢𝐚𝐧𝐜𝐞 𝐰𝐨𝐫𝐤𝐟𝐥𝐨𝐰𝐬, 𝐚𝐧𝐝 𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐨𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧𝐬.

1/3

Hackrisk Cyber Threat Monitoring & Impact Analysis Hackrisk.io is a cyber-attack data visualization, information dissemination and impact analysis service provided by Hackmanac

Threat actor: Not specified
Sector: ICT
Data exposure (claimed): Not specified
Data type: Patient data, medical records
Observed: Apr 7, 2026
Status: Confirmed
ESIX©: 7.45

Full details and impact assessment on

🚨Cyber Alert ‼️

🇳🇱Netherlands - 𝗖𝗵𝗶𝗽𝗦𝗼𝗳𝘁

Ransomware attack on ChipSoft, a Dutch healthcare software provider used by ~70% of hospitals, involving possible unauthorized access; patient data may have been accessed or exfiltrated, potentially impacting multiple hospitals.

Hackrisk Cyber Threat Monitoring & Impact Analysis Hackrisk.io is a cyber-attack data visualization, information dissemination and impact analysis service provided by Hackmanac

Threat actor: TiMc
Sector: ICT
Data exposure (claimed): 200 GB
Data type: Financial documents, invoices, contracts, corporate records
Observed: Apr 7, 2026
Status: Pending verification
ESIX©: 5.21

Full details and impact assessment on

🚨Cyber Alert ‼️

🇪🇸Spain - 𝗦𝗲𝗶𝗱𝗼𝗿

TiMc claims to have breached Seidor, potentially affecting its Brazilian branch.

Hackrisk Cyber Threat Monitoring & Impact Analysis Hackrisk.io is a cyber-attack data visualization, information dissemination and impact analysis service provided by Hackmanac

Threat actor: Qilin
Sector: Financial / Insurance
Data exposure (claimed): Not specified
Data type: Personal data, financial documents, client records
Observed: Apr 7, 2026
Status: Pending verification
ESIX©: 5.76

Full details and impact assessment on

🚨Cyber Alert ‼️

🇻🇪Venezuela - 𝗕𝗮𝗻𝗰𝗼 𝗡𝗮𝗰𝗶𝗼𝗻𝗮𝗹 𝗱𝗲 𝗖𝗿𝗲́𝗱𝗶𝘁𝗼

Qilin hacking group claims to have breached Banco Nacional de Crédito.

Hackrisk Cyber Threat Monitoring & Impact Analysis Hackrisk.io is a cyber-attack data visualization, information dissemination and impact analysis service provided by Hackmanac

Threat actor: Payload
Sector: Energy / Utilities
Data exposure (claimed): 50 GB
Data type: Not specified
Observed: Apr 7, 2026
Status: Pending verification
ESIX©: 5.73

Full details and impact assessment on

🚨Cyber Alert ‼️

🇪🇬Egypt - 𝗘𝗹 𝗪𝗮𝘀𝘁𝗮𝗻𝗶 𝗣𝗲𝘁𝗿𝗼𝗹𝗲𝘂𝗺 𝗖𝗼𝗺𝗽𝗮𝗻𝘆 (𝗪𝗔𝗦𝗖𝗢)

Payload hacking group claims to have breached El Wastani Petroleum Company (WASCO).

Hackmanac HACK TUESDAY WEEK 01 - 07 APRIL 2026 HACK TUESDAY WEEK 01 - 07 APRIL 2026: 423 CYBERATTACKS ACROSS 72 COUNTRIES

🟧 #HackTuesday 🟧

Hack Tuesday: Week 01 - 07 April 2026

⚠️432 cyber attacks across 72 countries ⚠️

More details:
hackmanac.com/news/hack-tu...

Hackrisk Cyber Threat Monitoring & Impact Analysis Hackrisk.io is a cyber-attack data visualization, information dissemination and impact analysis service provided by Hackmanac

Threat actor: INC Ransom
Sector: News / Multimedia
Data exposure (claimed): Not specified
Data type: Financial records
Observed: Apr 3, 2026
Status: Pending verification
ESIX©: 5.76

Full details and impact assessment on

🚨Cyber Alert ‼️

🇸🇮Slovenia - 𝗜𝗻𝗳𝗼𝗻𝗲𝘁 𝗠𝗲𝗱𝗶𝗮 D.O.O.

INC Ransom group claims to have breached Infonet Media D.O.O., alleging exfiltration of financial records.

Hackrisk Cyber Threat Monitoring & Impact Analysis Hackrisk.io is a cyber-attack data visualization, information dissemination and impact analysis service provided by Hackmanac

Threat actor: Brain Cipher
Sector: ICT
Data exposure (claimed): 300 GB
Data type: Not specified
Observed: Apr 6, 2026
Status: Pending verification
ESIX©: 5.23

Full details and impact assessment on

🚨Cyber Alert ‼️

🇦🇪UAE - 𝗘𝗮𝘀𝘆 𝗪𝗼𝗿𝗹𝗱 𝗔𝘂𝘁𝗼𝗺𝗮𝘁𝗶𝗼𝗻 (𝗲𝗪𝗼𝗿𝗹𝗱)

Brain Cipher group claims to have breached Easy World Automation (eWorld), alleging data exfiltration.

Explore hackrisk.io for continuous access to validated and structured cyber attack intelligence

5/5

Monthly Report - March 2026 - Hackmanac This Monthly Report March 2026 edition covers 2,898 successful attacks identifying emerging impact signals and evolving threat dynamics.

🧠 Designed for CISOs, risk managers, cyber insurance teams and decision-makers who need to understand not just where attacks happen, but where they matter most.

📥 Download the full report for free here:
hackmanac.com/monthly-repo...

4/5

• Low-activity actors continue to generate 𝐝𝐢𝐬𝐩𝐫𝐨𝐩𝐨𝐫𝐭𝐢𝐨𝐧𝐚𝐭𝐞 𝐝𝐚𝐦𝐚𝐠𝐞
• 𝐒𝐩𝐚𝐢𝐧, 𝐔𝐤𝐫𝐚𝐢𝐧𝐞, and 𝐈𝐭𝐚𝐥𝐲 show the strongest acceleration in impact

📊 This edition introduces the 𝐈𝐧𝐝𝐮𝐬𝐭𝐫𝐲 𝐈𝐦𝐩𝐚𝐜𝐭 𝐄𝐱𝐩𝐨𝐬𝐮𝐫𝐞 𝐌𝐚𝐭𝐫𝐢𝐱, a new visual model showing where cyber risk is truly concentrated

3/5

🔎 𝐊𝐞𝐲 𝐢𝐧𝐬𝐢𝐠𝐡𝐭𝐬:
• 𝐇𝐞𝐚𝐥𝐭𝐡𝐜𝐚𝐫𝐞 remains the most impacted industry despite lower exposure
• 𝐌𝐚𝐧𝐮𝐟𝐚𝐜𝐭𝐮𝐫𝐢𝐧𝐠 stands out as the only sector combining scale and high impact
• 𝐆𝐨𝐯/𝐌𝐢𝐥/𝐋𝐄 dominates activity, but not impact
• 𝐒𝐞𝐯𝐞𝐫𝐢𝐭𝐲 is not where attacks are most frequent

2/5

📢 𝐎𝐮𝐫 𝐌𝐚𝐫𝐜𝐡 𝟐𝟎𝟐𝟔 𝐌𝐨𝐧𝐭𝐡𝐥𝐲 𝐑𝐞𝐩𝐨𝐫𝐭 𝐢𝐬 𝐧𝐨𝐰 𝐚𝐯𝐚𝐢𝐥𝐚𝐛𝐥𝐞!

March confirms a clear trend: impact is stabilizing at a global level, but risk is becoming 𝐦𝐨𝐫𝐞 𝐜𝐨𝐧𝐜𝐞𝐧𝐭𝐫𝐚𝐭𝐞𝐝, 𝐥𝐞𝐬𝐬 𝐯𝐢𝐬𝐢𝐛𝐥𝐞, 𝐚𝐧𝐝 𝐦𝐨𝐫𝐞 𝐚𝐬𝐲𝐦𝐦𝐞𝐭𝐫𝐢𝐜.

1/5

We will continue publishing updates every 7 days.

💡 Explore the full details on hackrisk.io

7/7

As always, this monitor is based exclusively on successful publicly disclosed cyber attacks linked to the current conflict. In this context, many operations — especially those involving espionage, sabotage or information warfare — may remain undisclosed.

6/7

In the overall trend since the beginning of the conflict (28 Feb – 3 Apr) we observed:
• 𝟏𝟎𝟗𝟖 𝐭𝐨𝐭𝐚𝐥 𝐜𝐲𝐛𝐞𝐫 𝐚𝐭𝐭𝐚𝐜𝐤𝐬 across the region
• 𝟏𝟒 𝐜𝐨𝐮𝐧𝐭𝐫𝐢𝐞𝐬 𝐢𝐦𝐩𝐚𝐜𝐭𝐞𝐝
• 𝟖𝟒 𝐭𝐡𝐫𝐞𝐚𝐭 𝐚𝐜𝐭𝐨𝐫𝐬 𝐢𝐧𝐯𝐨𝐥𝐯𝐞𝐝
• 𝐀𝐯𝐠. 𝐄𝐒𝐈𝐗©: 𝟑.𝟓𝟕

5/7

• 𝐍𝐞𝐰𝐬/𝐌𝐮𝐥𝐭𝐢𝐦𝐞𝐝𝐢𝐚, 𝐄𝐧𝐞𝐫𝐠𝐲/𝐔𝐭𝐢𝐥𝐢𝐭𝐢𝐞𝐬 and 𝐓𝐫𝐚𝐧𝐬𝐩𝐨𝐫𝐭𝐚𝐭𝐢𝐨𝐧/𝐒𝐭𝐨𝐫𝐚𝐠𝐞 emerge as the most impacted industries
• 𝐃𝐃𝐨𝐒 campaigns dominate, while undisclosed techniques and 𝐌𝐚𝐥𝐰𝐚𝐫𝐞 show the highest impact levels

4/7

• 𝐈𝐬𝐫𝐚𝐞𝐥 remains the most targeted country (by volume), accounting for the majority of observed activity
• 𝐈𝐫𝐚𝐧, 𝐋𝐞𝐛𝐚𝐧𝐨𝐧 and 𝐉𝐨𝐫𝐝𝐚𝐧 show the highest impact levels (severity)

3/7

In the last 7 days (28 March – 3 April) we observed:
• 𝟒𝟕 𝐩𝐮𝐛𝐥𝐢𝐜𝐥𝐲 𝐝𝐢𝐬𝐜𝐥𝐨𝐬𝐞𝐝 𝐜𝐲𝐛𝐞𝐫 𝐢𝐧𝐜𝐢𝐝𝐞𝐧𝐭𝐬 (-71.5% vs previous week)
• 𝟖 𝐜𝐨𝐮𝐧𝐭𝐫𝐢𝐞𝐬 𝐢𝐦𝐩𝐚𝐜𝐭𝐞𝐝
• 𝟏𝟕 𝐭𝐡𝐫𝐞𝐚𝐭 𝐚𝐜𝐭𝐨𝐫𝐬 𝐢𝐧𝐯𝐨𝐥𝐯𝐞𝐝
• 𝐀𝐯𝐞𝐫𝐚𝐠𝐞 𝐄𝐒𝐈𝐗©: 𝟑.𝟔𝟑 (+9.3%)

2/7

⚠️ 𝐌𝐢𝐝𝐝𝐥𝐞 𝐄𝐚𝐬𝐭 𝐂𝐲𝐛𝐞𝐫 𝐂𝐨𝐧𝐟𝐥𝐢𝐜𝐭 𝐖𝐞𝐞𝐤𝐥𝐲 𝐌𝐨𝐧𝐢𝐭𝐨𝐫 ⚠️

Cyber activity continues to accompany the ongoing tensions in the Middle East, with a sharp drop in volume but a noticeable increase in impact severity.

1/6