The Alleged Data Sale of Alles-fuer-Selbermacher has surfaced, with reports suggesting that sensitive user information is being traded or sold on dark web platforms. This incident raises concerns about data breaches and privacy violations affecting the platform’s user base. #AllesfuerSelbermacher #DataSale…
Tag: DARK WEB
Hudson Rock has uncovered Logins(.)zip, a new and highly effective infostealer that exploits Chromium vulnerabilities to rapidly extract up to 99% of saved credentials and cookies. This sophisticated tool outperforms legacy stealers with its evasion, reliability, and broad target support. #Logins.zip #ChromiumVulnerabilities
Recent reports claiming a Gmail data breach affecting millions were based on a misunderstanding of infostealer data, not an actual attack. Google reassures users that their defenses remain strong, emphasizing the importance of 2FA and strong passwords. #Infostealer #HaveIBeenPwned…
Digital risk management (DRM) expands protection beyond traditional network defenses to cover brand reputation, supply chains, cloud/SaaS assets, and third-party integrations using intelligence, automation, and continuous monitoring. Recorded Future combines threat, digital risk, and third-party intelligence to give enterprises unified visibility and automated response capabilities for faster detection and remediation. #RecordedFuture #BrandImpersonation
The Qilin ransomware gang has rapidly increased its operations in 2025, focusing on critical sectors like manufacturing, healthcare, and government. Their shift to a ransomware-as-a-service model has enabled them to scale attacks globally, with significant ransom demands and widespread impact. #Qilin #RaaS #Cyberattacks #DarkWeb #Victims…
APT-C-60 intensified operations against Japanese organizations in Q3 2025, deploying SpyGlace backdoor versions 3.1.12–3.1.14 with refined delivery (direct VHDX attachments), enhanced evasion, and sophisticated abuse of GitHub, StatCounter, and Git for stealthy payload distribution. #APT-C-60 #SpyGlace #GitHub #StatCounter
The Everest ransomware group has exposed sensitive data from Dublin Airport and Air Arabia, with the data being password-protected and not publicly available. The group continues to target the aviation sector, including previous attacks on airline and airport systems. #EverestRansomware #DublinAirport #AirArabia #AviationCyberattack…
The Qilin ransomware group, active since 2022, continues to target multiple industries and countries, executing sophisticated attacks involving credential theft, lateral movement, and multi-platform ransomware deployment. Their operations highlight the evolving tactics of ransomware-as-a-service groups and the increasing complexity of cyber threats. #Qilin #RansomwareASaService…
Ransomware has grown in scale and sophistication, with exploited vulnerabilities and AI-assisted campaigns driving more frequent and impactful incidents, making traditional reactive defenses insufficient. Proactive, entity-centric threat intelligence—powered by AI/ML, dark-web monitoring, and automated remediation—enables organizations to anticipate, prioritize, and prevent ransomware attacks. #LockBit #RecordedFuture
Qilin (formerly Agenda) continues high-volume leak-site activity in 2025, posting more than 40 victim cases per month and heavily targeting the manufacturing sector followed by professional and scientific services and wholesale trade. Artifacts show credential theft and exfiltration using tools like Mimikatz, SharpDecryptPwd, and the open-source Cyberduck, and dual encryptor deployments…
A new cybersecurity threat called Shadow Escape exploits the Model Context Protocol (MCP) to secretly exfiltrate sensitive data from organizations using AI assistants. This zero-click attack can steal vast amounts of private information without detection, posing a significant privacy risk. #ShadowEscape #ModelContextProtocol…
Ransomware attacks increased by 50% in 2025, with new groups like The Gentlemen emerging as significant threats. The U.S. remains the primary target, while Qilin leads in the number of attacks, especially in South Korea through its KoreanLeak campaign. #Qilin #TheGentlemen…
A threat actor claims to have breached French web hosting company Hosteur, stealing and offering a database for sale. The compromised data includes sensitive customer information such as names, email addresses, and physical addresses. #Hosteur #DataBreach…
The Medusa ransomware group has leaked over 186 GB of compressed data stolen from Comcast, claiming they accessed 834 GB in total. This incident highlights the ongoing threat ransomware groups pose to major corporations like Comcast and other high-profile targets. #MedusaRansomware #ComcastDataLeak…
Toys “R” Us Canada experienced a data breach where threat actors leaked customer records they had previously stolen. The company has taken steps to enhance security and notify authorities, warning customers to watch out for phishing scams. #DarkWebLeak #CustomerData #Cybersecurity#DataBreach #ThreatActor