A threat actor known as USDoD claims to be selling unauthorized access to the web portal of a company based in China/Taiwan, which reportedly has a revenue of $7 billion. According to the threat actor, the access is at the employee level and appears to belong to a former employee. The…
Category: Cyber Attack
A threat actor on a dark web forum shared data allegedly belonging to Scrubser Shop, a medical clothing store from Saudi Arabia. According to the threat actor, the compromised data includes customer information such as email addresses, passwords, names, billing and shipping addresses, phone numbers and a previous backup. The post…
According to the threat actor the leaked database from Indonesian Directorate General of Civil Aviation is more than 3GB and it includes data for all employees, passwords for all applications, website user data, ID card photo for all employees, drone pilot certificate participants, flight data, personal data of pilots and all…
According to the posts published on a dark web forum, the threat actor shared data claimed to be from TruistBank and Neiman Marcus. The post indicates that the alleged leak from Neiman Marcus consists of account balances, browser user agent details, credit cards, dates of birth, email addresses, gift cards, IP…
In a recent announcement, the hacking group GlorySec declared their ongoing campaign against China, dubbed #OPChina, as a response to the actions of Chinese hackers. GlorySec claims to have successfully seized control of NetMarvel, a prominent global intelligent marketing and commercialization platform. NetMarvel handles an extensive volume of data, including 5…
A threat actor is allegedly selling user data from Lake Medical Group on a dark web forum. According to the post, the compromised data includes medical insurance cards, ID cards, driver licenses, passports and other user data. The formats of these allegedly leaked documents are PDFs and image files. According to…
A threat actor is allegedly selling a Vanguard bypass on a dark web forum. According to the threat actor this bypass can emulate Vanguard and disable any kind of cheat detection, external software detection and so on. According to the threat actor, the tool can also prevent HWID bans which will…
The threat actor Black Suit Ransomware claimed to have attacked Kadokawa Corporation and encrypted their files. In the message, it is stated that as a result of the alleged attack 1,5 TB of data was downloaded from Kadokawa Corporation’s networks. In the message they published on their website, the ransomware group…
The hacking group Darkmeta has allegedly carried out DDoS attacks on multiple Emirati websites, including the Zayed International Airport and UAE PASS, the national digital identity system of the United Arab Emirates. The attack on Zayed International Airport lasted for two hours, causing significant disruption. UAE PASS, which serves over 8…
Our team discovered a data repository associated with several threat actors that Philippine files had been uploaded. Upon inspection, we found that around 100GB of compromised data included sensitive information in GCash such as mobile numbers, IDs used for Know Your Customer (KYC) processes, GSave account numbers linked to phone numbers, signatures, and selfie IDs.
According to a post from a dark web forum, a threat actor under the moniker DragonForce is looking for new partners to cooperate with. They are looking for specialists from various fields such as access specialists, pentesters or teams of pentesters to join their RaaS operation. According to the post they…
A threat actor shared a message from their Telegram channel, claiming to be selling 13.6 million rows of user data from Indian banks. According to their message, the data belongs to several banks from India. The allegedly breached data consists of rows such as account number, account name, Indian Financial System…
A threat actor has announced the sale of a database allegedly belonging to Hey You (heyyou.com.au), a popular Australian application that allows users to order food and drinks from various cafes and fast food outlets across the country. The claimed database contains 202,488 records, including full names, emails, phone numbers, addresses,…
A threat actor under the alias 888 claimed to be selling data belonging to Credit Suisse. The organization is one of the leading institutions in private banking and asset management. Credit Suisse’s revenue is indicated as around $15.21 billion in the post. According to the post, the breach occurred in 2024…
A threat actor has surfaced, claiming to be selling a 0day Sandbox Escape Remote Code Execution (RCE) vulnerability in the Chrome browser. The exploit is said to work on versions 126.0.6478.126 and 126.0.6478.127 of the Chrome browser. According to the threat actor, the vulnerability has been tested and confirmed to function…