Home > Security > Security News

Threat Actor Claims Possession of 16TB NATO Cosmic Top Secret Documents

Published on March 7, 2025
Written by:
Lore Apostol
Lore Apostol
Cybersecurity & Streaming Writer

A threat actor stated they had acquired 16 terabytes (TB) of highly classified North Atlantic Treaty Organization (NATO) Cosmic Top Secret (CTS) documents. A cyber threat actor known as "NATODATAX" has made these alarming claims on a dark web forum they only joined this month.

COSMIC is an acronym for "Control of Secret Material in an International Command. This level of sensitive information, if authentic, could pose a significant risk to NATO security and operations since CTS is the highest classification level within NATO’s security structure. 

Information within this category is strictly protected due to its potential to cause extreme damage to NATO and its member nations if disclosed. Access is heavily restricted, requiring specific security clearance and an explicit need-to-know basis.

The Dark Web Message Seeking a Seller for the NATO Cosmic Top Secret Data.
The Dark Web Message Seeking a Seller for NATO's Cosmic Top Secret Data | Source: Hackmanac on X

The individual or group behind the name "NATODATAX" claims to possess these CTS documents, though the authenticity of the breach has not been independently verified at this time. 

While their methods of obtaining the data or their intentions remain undisclosed, such claims highlight ongoing vulnerabilities in cybersecurity systems and the increasing sophistication of threat actors targeting high-value intelligence.

Should the claims prove true, the ramifications could be severe for NATO and its allies. A breach of this magnitude could compromise sensitive operations, expose sources and methods, and potentially lead to geopolitical instability, as international organizations and governments are continuously targeted by cyber espionage and data theft.

Currently, NATO has not issued an official statement confirming or denying the validity of the claims.

Late last year, the U.S. Treasury Department acknowledged a breach by unidentified Chinese state-sponsored threat actors who employed a compromised privileged access management vendor BeyondTrust’s Remote Support SaaS instances.

Add a Comment
Related
Hacker Locked the Network
Play Ransomware Threatens New York Sports Clubs With Stolen Tax, Client, and Personal Data
Atomic and Exodus Wallets Compromised by Trojanized npm Package Posing as PDF Converter
Ransomware Illustration
Sensata Faces Operational Disruption Following Acknowledged Ransomware Attack
Dating Apps Used by Child Predators to Target Vulnerable Young
Credit Card
Payment Card Data Stolen Using Fake Font Domain in WordPress Malware Attack
Hacker in Red and with glasses and artistic look
Qilin Member Gives Two Days to South Korean Company SK Group for Ransom Payment
Most Popular
Hacker Locked the Network
Play Ransomware Threatens New York Sports Clubs With Stolen Tax, Client, and Personal Data
Viola Davis and Anthony Starr in the G20 film
Viola Davis’s G20 Film Ending Explained: Rutledge’s Final fate, Sutton’s Hidden Betrayer, and more Revealed
Still from Hacks
Hacks Season 4 Episode 1 & 2 Ending Explained: Deborah & Ava’s Truce, Vegas Retreat & new Power Moves
The Pitt
The Pitt Season 2: Everything we know so far About the High-Stakes Medical Drama's Return
Tim Allen and Kat Dennings in Shifting Gears
Kat Dennings’s Shifting Gears: Season 1 Ending Explained, Season 2 Renewal, & What’s next for Riley & Matt
Atomic and Exodus Wallets Compromised by Trojanized npm Package Posing as PDF Converter
Play Ransomware Threatens New York Sports Clubs With Stolen Tax, Client, and Personal Data
Viola Davis’s G20 Film Ending Explained: Rutledge’s Final fate, Sutton’s Hidden Betrayer, and more Revealed
Hacks Season 4 Episode 1 & 2 Ending Explained: Deborah & Ava’s Truce, Vegas Retreat & new Power Moves
The Pitt Season 2: Everything we know so far About the High-Stakes Medical Drama's Return
Kat Dennings’s Shifting Gears: Season 1 Ending Explained, Season 2 Renewal, & What’s next for Riley & Matt
Atomic and Exodus Wallets Compromised by Trojanized npm Package Posing as PDF Converter

Most Popular
Hacker Locked the Network
Play Ransomware Threatens New York Sports Clubs With Stolen Tax, Client, and Personal Data
Viola Davis and Anthony Starr in the G20 film
Viola Davis’s G20 Film Ending Explained: Rutledge’s Final fate, Sutton’s Hidden Betrayer, and more Revealed
Still from Hacks
Hacks Season 4 Episode 1 & 2 Ending Explained: Deborah & Ava’s Truce, Vegas Retreat & new Power Moves
The Pitt
The Pitt Season 2: Everything we know so far About the High-Stakes Medical Drama's Return
Tim Allen and Kat Dennings in Shifting Gears
Kat Dennings’s Shifting Gears: Season 1 Ending Explained, Season 2 Renewal, & What’s next for Riley & Matt
Atomic and Exodus Wallets Compromised by Trojanized npm Package Posing as PDF Converter
Play Ransomware Threatens New York Sports Clubs With Stolen Tax, Client, and Personal Data
Viola Davis’s G20 Film Ending Explained: Rutledge’s Final fate, Sutton’s Hidden Betrayer, and more Revealed
Hacks Season 4 Episode 1 & 2 Ending Explained: Deborah & Ava’s Truce, Vegas Retreat & new Power Moves
The Pitt Season 2: Everything we know so far About the High-Stakes Medical Drama's Return
Kat Dennings’s Shifting Gears: Season 1 Ending Explained, Season 2 Renewal, & What’s next for Riley & Matt
Atomic and Exodus Wallets Compromised by Trojanized npm Package Posing as PDF Converter

TechNadu keeps you informed with the latest in cybersecurity, VPNs, streaming, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2025 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: