APT31, also known as ZIRCONIUM or Judgment Panda, is a Chinese state-sponsored threat group engaged in cyber espionage and targeted intrusions. A US DOJ indictment outlines two-decade operations, front companies, malware usage, and mass spearphishing campaigns…
Tag: DARK WEB
In a hacker forum monitored by SOCRadar, a new alleged pasiens data leak is detected for Indonesian citizens. Leak Date: 06/05/2024Lines: 100k+EXAMPLE INSERT INTO `pasiens` (`id`, `merchant_id`, `name`, `no_surat`, `nomor_identitas`, `no_passport`, `alamat`, `jenis_kelamin`, `jenis_pemeriksaan`, `no…
Identified by analysts in 2022, the hackers use social engineering to lure users into giving up their login credentials or one-time password codes to bypass multifactor authentication….
In a hacker forum monitored by SOCRadar, a new alleged database leak is detected for BPK RI. BPK.go.idIn April 2024, more than 700K+ rows of data from the store company BPK.go.id was posted to a popular hacking forum, Size 200 MB, we get unbiased dataformat: csvdata: 04/2024rows: 735574″”,”pengadaan…
Le Cégep de Lanaudière a été victime d’une cyberattaque vendredi, ce qui a entraîné la fermeture des trois établissements scolaires aujourd’hui et demain. L’enquête est en cours avec une firme de cybersécurité et des experts surveillent le “Dark Web” pour détecter d’éventuelles fuites de données. Un plan d’action a été mis en place pour remettre en fonction les serveurs et une communication sera envoyée mardi pour dévoiler la marche à suivre.
Resecurity found a massive leak involving the exposure of personally identifiable information (PII) of over five million citizens of El Salvador on the Dark Web. Resecurity identified a massive leak of the personally identifiable information (PII) of over five million citizens from El Salvador on the Dark Web, impacting more than…
Law enforcement authorities seized the Lockbit group’s Tor website again and they plan to reveal the identities of the LockBitSupps and other gang members on May 7, 2024….
Crypto recovery scams involve fraudsters who offer to help victims recover stolen cryptocurrency in exchange for an upfront fee, but instead, they disappear after payment….
Alarming news surfaces as a threat actor, identified as Valerie, claims to have breached the Tamil Nadu Police Facial Recognition Portal, compromising both user data and police information. The portal, designed to facilitate searches for criminals, missing persons, and other individuals using facial recognition technology, reportedly contains over 6 million records….
A new report from Netwrix has laid bare the significant financial and reputational costs stemming from serious cyber-attacks, including what are often unplanned expenses….
Voice phishing groups in South Korea distribute phishing sites and malicious Android apps to trick victims into installing them and transferring money. The SecretCalls Loader, linked to the SecretCrow threat group, uses anti-analysis techniques such as emulato…
In a concerning development on the dark web, a threat actor known as “b1ack” has made an announcement, claiming the release of a staggering 1 million credit cards on their platform, B1ack’s Stash Market. The announcement, made by b1ack, invites users to claim their share of free credit card information by…
The Top 10 Malware in Q1 2024 changed slightly from the previous quarter. Here’s what the CIS Cyber Threat Intelligence team observed….
Verizon’s 2024 DBIR analyzes data from more than 30,458 incidents and 10,626 breaches reported between November 2022 and October 2023, revealing evolving threat trends. Key takeaways span social engineering, ransomware dominance, credential theft, insider thre…
The BI.ZONE Threat Intelligence team uncovered a Scaly Werewolf campaign delivering a loader that targets Russian and Belarusian organizations, using password-protected archives and phishing to deliver a malicious payload. The operation relies on in-memory exe…