The Hunters International ransomware group claims to possess 386GB of data from the U.S. Marshals Service (USMS), including secret documents, and is threatening to leak it if a ransom isn’t paid by 30 August. USMS says the data does not originate from a new attack, and it’s unclear if the ransomed data is authentic. In 2023, USMS experienced a major ransomware attack, but the perpetrator was not identified. The alleged data includes information from an ongoing drug enforcement operation.
Unauthenticated RCE in Splunk Enterprise under active attack (CVE-2026-20253)
CISA has added CVE-2026-20253, a critical, remotely exploitable vulnerability in Splunk Enterprise, to its Known Exploited Vulnerabilities catalog, and ordered US federal civilian agencies to
