In a recent development, a threat actor, MajorNelson, has purportedly exposed an AT&T database, asserting that it was compromised by the notorious cyber group ShinyHunters back in 2021. The leaked database reportedly encompasses a staggering 73,481,539 lines of records, encompassing a plethora o…
Tag: DARK WEB
The leaked data includes customers’ sensitive personal information such as names, addresses, mobile phone numbers, encrypted dates of birth, and encrypted Social Security numbers.
R00TK1T, a notorious hacking group, has purportedly breached the servers of two Malaysian government agencies. In the case of the Malaysian Information Department, the group claims to have accessed a server containing a staggering 270GB of cloud storage, which represents only a fraction of the total…
ShinyHunters (aka ShinyCorp) is a global cybercrime group known for major data breaches and owning BreachForums. The article details their methods, notable victims like Tokopedia, Wattpad, and AT&T, and their evolution on dark web platforms, including a member…
In response to the cyberattack, Neil Gray, the Scottish health secretary, confirmed that established procedures are being followed to address the situation, and support is being provided to NHS Dumfries and Galloway.
Amidst rising concerns over cybersecurity breaches, a threat actor has surfaced claiming to offer domain admin access to 3000 Fortinet FortiGate SSL-VPN gateways. The affected gateways are reported to be utilized by companies worldwide, with revenue ranging from $5 million to $420 billion. Such acce…
A recent study conducted by the Chartered Institute of Information Security (CIISec) has uncovered a concerning trend in the cybersecurity field. The study reveals that many cybersecurity professionals, facing low pay and high stress, are resorting to engaging in cybercrime activities on the dark we…
A threat actor has unveiled “Hell Paradise,” an online platform offering access to vulnerable government websites and associated data, organized by country. The actor has categorized vulnerabilities and data by country, with an initial listing of 49 nations. Currently, there are over 1000 vulnerable…
A threat actor has purportedly disclosed the database of the Faculty of Exact, Physical, and Natural Sciences of the National University of Cordoba, Argentina (UNC). According to the claims made by the threat actor, over 8,840 assorted personal records belonging to both teachers and students have be…
Fortinet’s FortiGuard Labs analyzed the RA World ransomware family, noting it exfiltrates data before encrypting files, stops backup/security services, deletes Volume Shadow Copies, and publishes stolen data via TOR and non‑TOR leak sites. Fortinet detections …
R00TK1T, a hacking group, has released a statement challenging the Malaysian government’s assertion that the PADU system remains uncompromised. The group has substantiated its claim with a series of screenshots and access credentials obtained from the system’s users. In a bold move to underscore the…
We analyze recent samples of BunnyLoader 3.0 to illuminate this malware’s evolved and upscaled capabilities, including its new downloadable module system.
The post Inside the Rabbit Hole: BunnyLoader 3.0 Unveiled appeared first on Unit 42….
A threat actor has purportedly put up for sale access to the backoffice/admin panel of a leading Spanish cryptocurrency exchange. According to the actor, this access grants entry to the largest crypto exchange platform in Spain. Allegedly, this access enables users to look up sensitive information s…
GhostSec, a prominent actor within The Five Families, has evolved from hacktivism toward ransomware activity, including a twin attack with Stormous. The group promotes its own tools and a GhostLocker RaaS ecosystem, with operations spanning dark-web tutorials,…
In a recent cyber incident, the Handala team has purportedly infiltrated the servers of Viber Messenger, a popular messaging platform. According to their claims, the group successfully extracted a comprehensive array of sensitive data and the source code of Viber Messenger. The volume of data compro…