A threat actor named Lud published a leaked list of approximately 104,000 PayPal credentials, consisting of email and password combinations, on a forum. The data is claimed to be from December 2025 and was shared for free, raising concerns about credential security. #PayPalLeak #CredentialBreach…
Tag: DARK WEB
A threat actor known as “placenta” claims to have exposed nearly 103,000 customer records from the French retail chain BLACKSTORE, including personal and purchase details. This data breach occurred in March 2025 and affects customer contact info, order history, and support interactions. #placenta #BLACKSTORE #DataBreach #CustomerRecords #FrenchRetail…
An individual claiming to sell access to WEX’s SOAP API keys for the corporate payment system has emerged, posing a significant security threat. The attacker, “bigbandz,” offers merchant account credentials with capabilities to view payments and issue transactions, raising concerns about potential fraud. #WEX #SOAPAPIKeys…
MediaMarkt Switzerland experienced a data breach where over 3.7 million customer records were allegedly sold by the threat actor “daghetiaw.” The compromised data includes personal details, purchase history, and transaction information. #MediaMarktSwitzerland #DataBreach #ThreatActor…
A threat actor known as “telaviv” claims to be selling a French B2B dataset containing 100,000 to 200,000 records. The dataset includes detailed business and contact information and is marketed through Telegram and other messaging platforms. #telaviv #FrenchB2BDataset…
A threat actor named AssasinCode claimed to have breached Infocenters Ltd, an Israeli IT services company, exposing around 200,000 user and employee records. The breach involved the leak of sensitive personal data, including full names, contact information, and historical details, highlighting the vulnerability of Israeli-based hosting services. #InfocentersLtd #AssasinCode…
A French home healthcare provider, SOS Oxygène, experienced a data breach allegedly exposed by threat actor HexDex2, releasing over 149,000 patient records. The breach involved sensitive patient information including names, addresses, and GPS coordinates, with data available for download on multiple file hosting platforms. #HexDex2 #SOSOxygène #DataBreach…
A threat actor named “rennn” claimed to sell a data set containing 1.39 million customer records from Douglas Cosmetics, a German retailer, on BreachForums. The breach involves sensitive customer information and was posted for sale at $350 USD. #rennn #DouglasCosmetics #DataBreach…
A threat actor named “buadamcokfena” claimed to leak data of around 109 million Turkish citizens, including sensitive personal details. This breach involves government-held information and has been posted for sale on BreachForums. #buadamcokfena #TurkeyGovernmentData…
A threat actor known as “Satanic” claimed to have leaked sensitive customer and order data from Mobelaris, a UK furniture retailer, on BreachForums. The breach exposed 57,000 order records and 64,000 customer records, including personal and transaction details. #Satanic #Mobelaris…
A threat actor named “888” claimed to have leaked source code and confidential technical data from Tymphany, a major audio systems manufacturer. The breach exposed proprietary software, cryptographic keys, and internal documents, highlighting significant data security concerns. #Tymphany #DataBreach…
On 30 December 2025 hackers breached the Manage My Health portal, accessing personal medical records for about 120,000 people and demanding a US$60,000 ransom. The attackers cut the original January 15 payment deadline to 48 hours and have begun publishing highly sensitive files on the dark web; users are urged to reset passwords or enable two-factor authentication. #ManageMyHealth #DarkWeb
A threat actor is auctioning access to a Romanian WordPress and Shop admin panel along with a shell, highlighting a significant data breach. The sale includes detailed information on the store’s orders and a starting bid of $200. #Romania #WordPressSecurity…
A threat actor is selling detailed German fixed-deposit (Festgeld) financial datasets, promoting their reliability and structured format for various analytical purposes. The datasets are claimed to be current, accurate, and ready for immediate use, with optional IPO data offered upon request. #GermanFixedDeposit #FinancialDataLeakage…
A threat actor known as Moon_WALK claims to be selling a database containing approximately 34,349 records from CelesteTechnologies.com for $100. The data reportedly includes personal details such as names, contact information, and appointment records. #CelesteTechnologies #Moon_WALK…