A threat actor known as @IntelBroker has claimed responsibility for a significant data breach involving Mykukun, a company that collaborates with major banks and financial institutions such as NYK, SOFI, and USBank. The breach, reportedly executed in August 2024, predominantly affects USBank members. Details of the Alleged Breach: Compromised User Data…
Category: Cyber Attack
A threat actor under the moniker SGK202024 has recently posted on a dark web forum offering stolen data from two major breaches. The first involves a significant leak of WeChat user information, including 300 million IDs paired with mobile numbers, available for $300 in various cryptocurrencies. A sample of 1 million…
A threat actor under the alias NoName057(16) shared a message about an alleged cyber attack towards Ukrainian targets. In the message published by the threat actor there is a description of recent movements of the Ukrainian and Russian armed forces. After describing the latest clashes, the threat actor lists the alleged…
A recent dark web announcement has revealed the sale of a sophisticated Command and Control (C2) framework named “DIANA,” designed explicitly for advanced threat actors. The seller is offering the complete package, which includes full source code and continuous updates, for $3,700. The seller claims that DIANA is a powerful tool…
A threat actor under the moniker Moroccan Cyber Forces in cooperation with another threat actor under the alias Moroccan Soldiers has claimed responsibility for an alleged cyber attack on the website of the National Curry Awards, a prominent event promoting the businesses of the Asian catering industry as well as highlighting…
A new threat in the darkweb as a threat actor claims to be selling access to an AI company’s systems. According to the forum post, the company has an estimated revenue of over $4 million. The threat actor alleges that the access being sold includes several critical components such as Shopify,…
A threat actor is reportedly selling unauthorized access to one of the world’s largest casino software and game providers. The company in question has an annual revenue of $3 billion, making it a significant player in the gaming industry. The access being offered includes multiple entry points: SSH, API, SafePay, SSO,…
A threat actor on a dark web forum has claimed to have compromised data from one of Latin America’s largest technology companies specializing in ticket sales. The breach, according to the threat actor, dates back to August 2024 and affects 15 million individuals. The stolen data includes sensitive personal details such…
According to a post on a dark web forum, a threat actor under the moniker Sorb is allegedly selling a database of Brazil’s Long Service Guarantee Fund (FGTS). This fund, established to safeguard workers who are terminated without cause, requires employers to deposit a percentage of employees’ salaries into accounts managed…
A threat actor has claimed responsibility for a significant data breach involving the Tribunal Superior de Justicia of Mexico City. The compromised data reportedly includes access to more than 300,000 accounts with MD5 hashed passwords, which are easy to crack. The leaked data, spanning from 2017 to 2024, includes sensitive information…
Xiaomi is poised to launch Xiaomi HyperOS version 2.0, which is rumored to include a new feature to help users protect their privacy by detecting unknown, hidden cameras within a local network. In recent...
The post Xiaomi Prioritizes Privacy: HyperOS 2.0 to Detect Hidden Cameras appeared first on Cybersecurity News….
In a startling claim, a threat actor has posted on a forum, asserting that they are selling access rights to the SS7 signaling system of a national telecommunications company. The SS7 (Signaling System No. 7) network is crucial for handling telecommunications signaling, including SMS and call routing. The post details that…
L’Ihecs a été victime d’une attaque informatique de type “ransomware” le 2 août, entraînant la perte de données, notamment celles relatives aux inscriptions d’étudiants à partir du 20 juillet. Une cellule de crise a été mise en place et une société spécialisée en cybercriminalité a été appelée pour limiter les dégâts. Une réunion est prévue mercredi pour discuter des conséquences de l’attaque sur les inscriptions.
In a post published on the dark web forum, a threat actor claimed a data breach involving the NPD database. The message, directed at the forum’s members, detailed that the entire NPD database is now compromised and available for download. The database, which is offered in CSV format, is 277 GB…
NVIDIA has used videos from YouTube and other sources to train its AI products, as revealed by internal communications and documents obtained by 404 Media. When discussing the legal and ethical aspects of using...
The post Leaked Documents Reveal NVIDIA’s Secret AI Training Practices appeared first on Cybersecurity News….