Morning Review in IT Security — May 2, 2026

May 2, 2026 brings several significant security incidents across multiple sectors and geographies, ranging from Brazilian real estate infrastructure to critical government systems in Central America and attacks on open-source software infrastructure.

Brazilian Real Estate CRM Breach Exposes Millions of Records

Kenlo Imob, formerly known as inGaia Imob, a prominent Brazilian real estate customer relationship management platform used by brokers and agencies to manage listings, leads, and scheduling, has suffered a substantial data breach. The incident has exposed approximately 6 million personally identifiable information records along with over 10,000 documents. The breach is currently subject to an active extortion threat, indicating the attacker is demanding payment in exchange for non-disclosure of the stolen data. Source: ‼️🇧🇷 Kenlo Imob (formerly inGaia Imob), a leading Brazilian real estate CRM used by brokers and...

Teenager Detained in French Government Data Breach Investigation

French authorities have apprehended a 15-year-old suspect in connection with a cyberattack targeting France Titres (ANTS), the national agency responsible for issuing and managing administrative documents. The minor is suspected of selling data stolen during the breach, raising concerns about the involvement of juvenile actors in cybercriminal operations. Source: 15-year-old detained over French govt agency data breach

Canonical and Ubuntu Infrastructure Under DDoS Attack

Canonical and its Ubuntu platform are currently experiencing a distributed denial-of-service attack. The 313 Team has claimed responsibility for the offensive operation, which targets critical open-source software infrastructure used by millions of systems worldwide. This attack on supply-chain infrastructure presents significant risks to the broader software ecosystem. Source: ‼️ Canonical has confirmed they and Ubuntu are under a DDoS attack. 313 Team has taken responsibi...

Guatemala's Electoral Authority Compromised, Electronic Signatures Stolen

The Tribunal Supremo Electoral (TSE), Guatemala's Supreme Electoral Tribunal, has been breached with 2,136 electronic signatures belonging to TSE employees exposed. These digital signatures are critical infrastructure used to validate official government documents, and their compromise creates substantial risk for document forgery and fraudulent government communications. Source: ‼️🇬🇹 The Tribunal Supremo Electoral (TSE), Guatemala's Supreme Electoral Tribunal, has allegedl...

These incidents underscore the persistent vulnerability of both commercial and governmental systems to sophisticated cyber threats, with implications spanning financial services, democratic processes, and critical software supply chains.