Recent reports suggest that administrative access to three Thai university websites may have been leaked, raising concerns over potential security breaches. The leak could enable unauthorized control and exploitation of these educational institutions’ online resources. #ThaiUniversities #WebsiteLeak #CyberThreat…
Tag: DARK WEB
Unauthorized access appears to have been leaked for 11 Indonesian university websites, raising concerns about compromised administrative privileges. This incident highlights ongoing breaches targeting higher education institutions and the importance of threat intelligence. #IndonesianUniversities #AdministrativeAccess #CyberLeaks…
Google is discontinuing its dark web report tool by February 2026, citing a need for more actionable security features. The move aims to improve user privacy and security management, ending Google’s initiative to monitor personal data on the dark web. #DarkWebReport #GoogleSecurityTools…
An alleged data breach in the Australian real estate sector has exposed approximately 1.2 million records, raising concerns about data security and privacy. The breach highlights vulnerabilities within the industry, prompting increased scrutiny and demand for security improvements. #AustralianRealEstate #DataLeakage #CyberThreats…
An underground marketplace in Spain is allegedly offering unauthorized PrestaShop admin and PHP shell access for sale. This activity poses significant risks to e-commerce sites using PrestaShop by enabling malicious control. #PrestaShop #PHPshell #Spain #Cyberthreat…
The Inc Ransomware group has claimed responsibility for breaching multiple organizations, including a Californian city and a Canadian steel company. They threaten to publish sensitive internal data on their dark web leak site to extort the victims. #IncRansomware #DarkWebLeaks #CityofSignalHill #SteelWorksInc…
The World Leaks ransomware group has announced breaches of multiple organizations, leaking large volumes of data on their dark web site. Victims include a UK law firm and a telecommunications company, with over 11 TB of data allegedly stolen from the law firm alone. #WorldLeaks #ThringsSolicitors #Wavenet…
Gentlemen is a Go-based ransomware group identified in August 2025 that uses double extortion, rapid internal propagation, GPO manipulation, BYOVD, and targeted evasion techniques to attack medium-to-large organizations across multiple industries and regions. The ransomware encrypts files using X25519 and XChaCha20 with per-file ephemeral keys, requires a correct execution password, and…
This article reveals how a Yemen-based disinformation campaign was linked to North Korea’s Lazarus Group through a single infected computer in 2020. The compromise enabled the threat actors to hijack trusted news domains for cyber-espionage and malicious campaigns. #LazarusGroup #RedLineStealer
A logistics company in Egypt, ECS, has suffered a data breach exposing sensitive personal and operational information. The compromised data includes personal details, GPS coordinates, and order information from the company’s management system. #ECS #DataBreach…
The Sinobi ransomware group has publicly listed new alleged victims on their dark web leak site, including Seward County, KS, and Erie Molded Plastics. The group claims to have encrypted sensitive data, including financial information and contracts, from these organizations. #SinobiRansomware #DarkWebLeak #SewardCountyKS #ErieMoldedPlastics…
Check Point Research dissects the modular ValleyRAT (aka Winos/Winos4.0) backdoor, reverse engineering leaked builder artifacts and mapping all main plugins including an embedded kernel‑mode rootkit. The analysis highlights APC-based user‑mode injection, kernel-level forced deletion of AV/EDR drivers, valid-signed drivers loadable on Windows 11, and a rapid surge in in‑the‑wild samples since the builder leak. #ValleyRAT #SilverFox
Researchers identified a new Rust-based ransomware family named 01flip that targets Windows and Linux systems in the Asia-Pacific region and is tracked as part of cluster CL-CRI-1036. The campaign involved manual activity, use of Sliver implants, exploitation attempts against CVE-2019-11580, and an alleged data leak posted to a dark web forum….
A data breach involving Sticker Japan has resulted in the sale of personal information belonging to approximately 110,000 users on a cybercrime forum. The compromised data includes personal details, hashed passwords, and order information. #StickerJapan #DataBreach #CybercrimeForum…
A criminal group called the Social Engineering Enterprise engaged in social engineering, hacking, and physical theft to steal over $263 million in cryptocurrency. Several members, including Evan Tangeman, laundered stolen funds and used lavish lifestyles to hide their activities. #SocialEngineeringEnterprise #CryptoTheft…