A cyberattack on Murray County, Georgia’s government network closed several county offices Wednesday, while officials said 911, public safety and primary voting remain available.
The disruption affects public-facing county services, including tax, assessment and court offices, but officials said first responders and emergency functions are still working.
The Artesian and The Exchange in Regina experienced a cyber attack reported around May 1, 2026. The local company Squareflo, responsible for hosting their websites, indicated that both venues faced disruptions. However, no sensitive data was compromised during the incident. Investigations into the attack are ongoing.
Hokuyo Corporation experienced a ransomware attack on March 26, 2026. The incident involved a significant IT system failure, leading to concerns about possible personal data breaches. While the company has completed system restoration and claims that operations have not been disrupted, they are currently investigating the incident with external experts to identify the breach's entry point and any misuse of credentials.
Boyne City, Michigan reported a limited cybersecurity incident affecting portions of its computer network earlier this week; emergency and critical infrastructure were not impacted. Specialists are assessing affected systems and the extent of any data compromise remains under investigation.
Ahmed Al-Kadi Private Hospital in Durban was the victim of a ransomware attack on April 18, 2026, due to unauthorized access to its IT systems. While the attack did not impact patient care, the hospital has notified the public and authorities about the intrusion. An investigation is ongoing to determine the extent of data compromise, and patients are being advised to remain vigilant against potential fraud attempts.
West Pharmaceutical Services reported a May 4 cyberattack that disrupted operations worldwide. Data was exfiltrated and systems encrypted; Unit 42 is assisting as core systems recover at some sites, while the extent of data affected and the timeline for full restoration remain under investigation.
Notin.es, an IT service provider in Spain, was targeted by a ransomware attack on May 10, 2026, carried out by the Crypto24 group using Lockbit 5.0. The attack impacted at least fifteen notary offices, leading to service interruptions and disruption of their email systems. Currently, there are no indications of unaffected networks, and investigations are ongoing to assess the full impact of the incident.
Heberger, a construction company based in Schifferstadt, experienced a cyber attack on May 7, 2026. The company confirmed that the intrusion occurred early in the morning despite high standards of cybersecurity. Details regarding breached systems and whether any data was stolen or encrypted have not been disclosed. An investigation is ongoing to understand the full extent of the attack.
The Directorate General of Public Accounting and Treasury (DGCPT) in Senegal experienced a disruption to its information systems on May 10, 2026, due to an unspecified incident. This follows a recent cyber extortion attack that targeted the Directorate General of Taxes and Domains (DGID). The nature of the current incident and its impact on systems remain unclear, but it occurs amidst a rising trend of cyber threats against public institutions in Africa. Investigations into the incident are ongoing.
Froch Enterprise Co., Ltd. experienced attempts of connection and cyberattacks on its internal networks around May 11, 2026. The defense mechanisms were activated promptly to mitigate any impact on information system security. Current assessments indicate that there was no breach of personal or confidential data, and no significant operational consequences are anticipated. Investigations are ongoing to monitor the situation.
On May 1, 2026, JR Tokai Takashimaya reported a suspected unauthorized access to its part-time job application server and an infection by ransomware. The incident potentially exposed personal information, including names, contact details, and bank information, of 1,338 part-time employees recruited since March 2021. The company is currently investigating the breach with external specialized agencies and has suspended new applications for part-time positions.
Fitjar municipality experienced an interruption in its drinking water production around April 24, 2026, following an incident at the water treatment facility, which is being investigated as a potential cyberattack. Authorities have been alerted, but it remains unconfirmed whether the incident affected water quality or involved data breaches. Investigations are ongoing to determine causation and full impact.
ALS Ltd experienced a cybersecurity incident around May 4, 2026, involving unauthorized access to its computer systems, which temporarily disrupted some global operations. While most services have been restored, the incident raised concerns regarding operational resilience and potential financial impacts. The company has engaged external experts to contain the breach and strengthen defenses, while assessing the full extent of the consequences.
Seidensha Electronics Co., Ltd. reported a cyber incident on April 22, 2026, which occurred outside of business hours. The company is investigating a potential cyberattack that may have caused a computer failure, prompting immediate action to cut off its network to prevent further damage. Currently, the investigation is focusing on whether any data, including personal information, has been compromised. The incident highlights the risks associated with supply chain attacks in the manufacturing sector.
Marutake Co., Ltd., a pharmaceutical wholesaler in Japan, experienced a ransomware attack due to unauthorized access around April 28, 2026. While some business operations remain disrupted, the supply of medications in the Niigata, Tohoku, and Kanto regions is continuing through alternative means. The company anticipates that full system recovery will take several days and has not detected any leaks of personal data externally at this time.
Several Australian mining companies, including Northern Star Resources and Evolution Mining, faced a significant cyber attack around May 6, 2026, targeting a software supplier in the industry. The attackers demanded a ransom, leading to disruptions as these companies worked to restore access to essential technological systems. The impact specifically includes compromised access to their systems, but details on stolen or encrypted data have not been disclosed. Efforts are ongoing to investigate the incident and ascertain the full extent of the attack.
The jewelry company Unoaerre was targeted in a cyber attack on May 9, 2026, resulting in the disruption of its operating system. Cybercriminals demanded a ransom of 3.8 million euros in bitcoins. Initial investigations suggest potential links to countries in the Middle East and Eastern Europe. Despite the interruption, early assessments indicate that the damage may not be irreversible and that production could resume.
West Pharmaceutical confirmed that it experienced a cyber attack at its Nouvion-en-Thiérache facility, which has been inactive since May 4, 2026. An investigation is currently underway to determine the nature and extent of the incident. No information has been provided regarding the affected systems or stolen/encrypted data, and the company has not communicated a timeline for resuming operations.
On April 17, 2026, Medica Publishing reported a ransomware attack linked to a third-party intrusion that occurred in early March. Personal information held by the company and its subsidiaries may have been exposed. While specific learning platforms remained secure and isolated from the attacked system, the company is enhancing its security measures to prevent future incidents.
F1 Corporation, a subcontractor of Sato, was affected by a ransomware attack that occurred between 2016 and 2025, with the disclosure reported on April 16, 2026. The attack has potentially compromised personal data of 240 customers who ordered costumes, with information from 109 individuals specifically identified as at risk. Investigations are ongoing to assess the full impact of the breach, and no additional networks have been reported as compromised.