The Qilin ransomware group recently claimed responsibility for breaching three organizations using double-extortion tactics involving data encryption and exfiltration. The group has threatened to leak sensitive data, including proprietary information and PII, unless ransoms are paid. #QilinRansomware #DoubleExtortion #CyberThreat…
Tag: DARK WEB
An alleged data breach at ExeVision Inc has resulted in the exposure of sensitive source code. This incident raises concerns about the company’s cybersecurity defenses and potential vulnerabilities. #ExeVisionInc #DataBreach #SourceCodeExposure…
An engineering firm in Germany, IBL, was targeted by the Brotherhood ransomware group, which exfiltrated sensitive data including legal, financial, and technical documents. The attack highlights the risks faced by companies handling critical infrastructure and confidential client information. #Brotherhood #IBL #EnergySecurity #FCSchalke04…
ByteToBreach is a financially motivated data‑leak trader and access broker active since mid‑2025 who sells corporate datasets and access from banks, telecoms, IT providers, and other large enterprises across multiple countries. On November 14, 2025 the actor claimed a breach of Eurofiber’s GLPI service‑management platform, exfiltrating roughly 10,000 password hashes and configuration/ticket data using rented VPS infrastructure to run time‑based SQL extraction. #ByteToBreach #Eurofiber
A Bangladeshi ISP, Fr Express, has suffered a cybersecurity breach resulting in the leak of sensitive internal data. The leaked information includes source code, billing systems, API configurations, and network management modules, highlighting significant vulnerabilities. #FrExpress #DarkWebLeak #ABillS #Mikrotik #APIConfigurations…
The 2025 Global OT & IoT Threat Landscape Report reveals a sharp rise in industrial cyber risks driven by AI-enhanced cybercrime and targeted attacks on critical infrastructure worldwide. It highlights persistent vulnerabilities in IT-OT convergence, the emergence of AI-powered malware, and sustained threat actor activities including state-sponsored APT operations. #LockBitNG #APT41 #RansomHub #IndustrialCybercrime
This week highlighted the resurgence of Mirai-based IoT malware and the increasing sophistication of cybercriminal techniques such as AI-powered scams and stealthy malware targeting email servers. Governments and security companies are actively fighting back through regulation, upgrades, and takedowns. #ShadowV2 #Mirai #OpenFind…
Bodhi Media Corp, a US-based digital marketing company, has suffered a data breach with 248,000 user records being sold on the dark web. The leaked information includes personal details and campaign data affecting users in the US, Australia, and New Zealand. #BodhiMedia #DarkWebLeak…
The Play ransomware group has claimed to have breached ADC Aerospace, threatening to publish stolen data if their demands are not met by November 29, 2025. This attack impacts a key player in the aerospace and defense manufacturing sectors. #PlayRansomware #ADC aerospace #DataLeakage…
Asahi Group Holdings experienced a significant cyberattack involving ransomware, leading to potential exposure of personal data for around 2 million individuals in Japan. The company is implementing enhanced security measures and working towards full system recovery to restore normal operations. #Qilin #AsahiCyberattack…
The report highlights an alleged sale of access to a U.S. online shop via a Stripe iFrame breach. This incident underscores ongoing dark web trading of compromised e-commerce credentials and access points, which pose significant cybersecurity risks for affected organizations. #Stripe #U.S.onlineShop…
A cyber threat report discusses the alleged sale of 30,000 Turkish credit cards with an estimated 80-90% validity rate. This incident highlights ongoing risks related to compromised payment data and potential financial fraud. #TurkishCreditCards #DataLeak…
An alleged sale of data related to BestAdsOnTV has surfaced on the dark web. The report highlights concerns over compromised advertising records and customer information being traded publicly. #BestAdsOnTV #DarkWebDataSale…
The article advocates integrating threat intelligence with vulnerability management to prioritize remediation based on real-world attacker activity and asset criticality rather than raw severity scores. It highlights Recorded Future’s Vulnerability Intelligence and its integrations (e.g., Tenable, Qualys, ServiceNow, Splunk) as a way to enable real-time risk scoring, automated prioritization, and dashboards to reduce MTTR and move from reactive to proactive VM. #RecordedFuture #Tenable #Qualys #ServiceNow #Splunk #MSRC #CISA #KEV #EPSS
The OnSolve CodeRED emergency alert system was targeted in a cyberattack by the INC Ransom group, exposing personal data of users. U.S. local governments are transitioning to new systems and implementing contingency plans to maintain alert capabilities. #INC Ransom #CodeRED #cyberattack # emergencyalert #USgovernments…