A threat actor has announced the sale of a database allegedly obtained from a recent breach of MyRepublic Indonesia, a prominent telecommunications company known for its high-speed fiber broadband services. MyRepublic operates across several countries, offering broadband internet, mobile services, and enterprise solutions. Details of the Breach: Date of Breach: June…
Tag: DARK WEB
A threat actor has recently surfaced, claiming to be selling unauthorized access to the network of a major Irish retailer with an annual revenue exceeding $500 million. The access being sold is of the AnyConnect (AD) type, which potentially grants significant control over the retailer’s network infrastructure. In their announcement, the…
SpaceBears is a newer participant in the data broker trend, focusing on extortion through leaked data rather than malware. The analysis notes the group uses a public Data Leak Site (DLS) and external file-sharing services to pressure organizations across multi…
A threat actor has claimed to have leaked data for 1 million users of TicketMaster out of a total of 680 million customer records they possess and are attempting to sell. Ticketmaster Entertainment, LLC, is an American ticket sales and distribution company headquartered in Beverly Hills, California. The company operates in…
According to a post on a dark web forum, a threat actor is selling access for a company from the USA and the price for the alleged access is 45k USD. It is also stated that the revenue of the company is 1+ billion USD. The threat actor’s alleged sale of…
A threat actor shared a post on a dark web forum, claiming to have data belonging to accenture, a global consulting firm operating in various domains. According to the post published on a dark web forum, the consulting giant suffered a data breach because of a third party. As a result,…
The threat actor IntelBroker shared an alleged data leak from telecommunications giant T-Mobile. According to the post, compromised data includes source code, SQL files, images, terraform data, t-mobile.com certifications, siloprograms and more. IntelBroker also included several images from the alleged leak. The threat actor didn’t mention any price for those who…
A threat actor has claimed to possess a database from TEG (teg.com.au), an Australian ticket vendor, containing 30 million user records. The alleged data includes sensitive information such as names, genders, dates of birth, usernames, hashed passwords, and more. TEG is a prominent ticketing company in Australia, facilitating a wide range…
Summary: The content discusses a cyberattack on Australian health insurance provider Medibank, where a hacker breached the company’s systems and stole data from over 9 million people. Threat Actor: BlogXX | BlogXX Victim: Medibank | Medibank Key Point : A hacker breached Medibank’s systems and stole…
Two men have been charged in the US for running “Empire Market,” a Dark Web marketplace that facilitated the anonymous buying and selling of over $430 million in illegal goods and services worldwide.
Summary: This content discusses a malicious campaign targeting cryptocurrency users that involves a fake virtual meeting software called Vortax. Threat Actor: Vortax | Vortax Victim: Cryptocurrency users | cryptocurrency users Key Point: Vortax is a fake virtual meeting software that is marketed as…
EclecticIQ researchers reveal that ONNX Store is a Phishing-as-a-Service platform that rebrands the Caffeine kit to orchestrate targeted phishing campaigns against financial institutions, controlled via Telegram bots and QR-coded PDFs. The operation features 2…
Discover how Vortax, a fake meeting software, spreads infostealers targeting cryptocurrency users, compromising macOS security. Learn more.
Summary: The Security Service of Ukraine (SSU) has dismantled the infrastructure used by pro-Russia Ukraine residents to break into soldiers’ devices and deploy spyware. The infrastructure included bot farms and thousands of mobile numbers and Telegram accounts. Threat Actor: Russian intelligence se…
Summary: Permiso has developed YetiHunter, a tool that allows companies to detect and investigate threats in their Snowflake environments. Threat Actor: N/A Victim: Snowflake customers Key Point : Permiso’s YetiHunter is a threat detection and hunting tool designed specifically for Snowflake environ…