Tag: dark-web
-
Abacus Dark Web Market Suspected of Exit Scam with Held Bitcoin Funds
The largest Bitcoin-enabled Western darknet marketplace, Abacus Market, has gone offline amid widespread suspicions of an exit scam that may have cost users millions of dollars in held cryptocurrency funds. TRM Labs, a blockchain analytics firm, assesses that the marketplace’s operators likely shut down operations and disappeared with users’ Bitcoin and Monero deposits in early…
-
Abacus dark web drug market goes offline in suspected exit scam
Abacus Market, the largest Western darknet marketplace supporting Bitcoin payments, has shut down its public infrastructure in a move suspected to be an exit scam. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/abacus-dark-web-drug-market-goes-offline-in-suspected-exit-scam/
-
Abacus Market Shutters After Exit Scam, Say Experts
Darknet giant Abacus Market has gone offline due to a likely exit scam, according to TRM Labs First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/abacus-market-shutters-exit-scam/
-
How defenders use the dark web
Tags: access, antivirus, attack, breach, corporate, credit-card, crypto, cyber, cybercrime, dark-web, data, data-breach, email, extortion, finance, fraud, government, group, hacker, healthcare, identity, incident, insurance, intelligence, Internet, interpol, law, leak, lockbit, mail, malware, monitoring, network, phishing, ransom, ransomware, service, software, theft, threat, tool, usa, vpnAttributing attacks to threat actors: When organizations suffer from data breaches and cyber incidents, the dark web becomes a crucial tool for defenders, including the impacted businesses, their legal teams, and negotiators.Threat actors such as ransomware groups often attack organizations to encrypt and steal their data so they can extort them for money, in exchange…
-
WinRAR 0″‘Day Exploit Listed for $80K on Dark Web Forum
A sophisticated zero-day exploit targeting WinRAR, one of the world’s most popular file compression utilities, has surfaced on a dark web marketplace with a hefty price tag of $80,000. The previously unknown remote code execution (RCE) vulnerability affects both the latest and earlier versions of the widely-used software, raising significant concerns for millions of users…
-
Customer, Employee Data Exposed in Nippon Steel Breach
Information from the company’s NS Solutions subsidiary has yet to show up on any Dark Web sites, but it doesn’t rule out the possibility that the data may have been stolen. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/customer-employee-data-nippon-steel-breach
-
Ransomware Activity Spikes Amid Qilin’s New Wave of Targeted Attacks
The Qilin group emerged as the leading player in the ransomware ecosystem, which saw a notable rise in activity during June 2025 in a startling escalation of cyber dangers. According to the latest Deep Web and Dark Web trend report, Qilin outpaced all other ransomware collectives, targeting a broad spectrum of high-value entities across government,…
-
VenusTech and Salt Typhoon Breach Sheds Light on China’s Covert Cyber Mercenary Networks
The dark web forum DarkForums, which has been a site for data breaches and leaks since BreachForums was shut down in mid-April, was the scene of two major leaks in late May involving Chinese cybersecurity organizations: VenusTech, a well-known IT security vendor, and Salt Typhoon, a state-sponsored advanced persistent threat (APT) organization affiliated with the…
-
Wie das Darknet funktioniert und warum es genutzt wird
Das Darknet gilt für viele als geheimnisvoller Ort im Internet. Es ist weder über gängige Suchmaschinen auffindbar noch ohne spezielle Software zugänglich. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/wie-das-darknet-funktioniert
-
Hunters International ransomware gang shuts down and offers free decryption keys to all victims
Hunters International ransomware gang announced its shutdown, citing unspecified >>recent developments>recent developments>We, […] First seen on securityaffairs.com Jump to article: securityaffairs.com/179667/cyber-crime/hunters-international-ransomware-gang-shuts-down-and-offers-free-decryption-keys-to-all-victims.html
-
Hunters International ransomware group shuts down but will it regroup under a new guise?
The notorious Hunters International ransomware-as-a-service operation has announced that it has shut down, in a message posted on its dark web leak site. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/hunters-international-ransomware-group-shuts-down-but-will-it-regroup-under-a-new-guise
-
New >>123 – Stealer<< Malware Rented on Dark Web for $120/Month
A new credential-stealing malware, dubbed >>123 – Stealer,123 | Stealer
-
Dark Web Vendors Shift to Third Parties, Supply Chains
As attacks on software supply chains and third parties increase, more data on critical software and infrastructure services is being advertised and sold on the Dark Web. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/dark-web-vendors-third-parties-supply-chains
-
Hunters International ransomware group claims to be shutting down
“After careful consideration and in light of recent developments, we have decided to close the Hunters International project,” the prolific cybercrime gang wrote on its darknet site. First seen on therecord.media Jump to article: therecord.media/hunters-international-ransomware-extortion-group-claims-shutdown
-
Europol shuts down Archetyp Market, longest-running dark web drug marketplace
Europol shuts down Archetyp Market, longest-running dark web drug site, the police arrested the admin in Spain, top vendors hit in Sweden. An international law enforcement operation led by German authorities has shut down Archetyp Market, the longest-running dark web drug marketplace, in a coordinated operation across six countries with support from Europol and Eurojust.…
-
Russian bulletproof hosting service Aeza Group sanctioned by US for ransomware work
Support for ransomware, darknet drug markets and other cybercrime activity landed the Russian company Aeza Group on the U.S. government’s sanctions list, the Treasury Department said. First seen on therecord.media Jump to article: therecord.media/russia-bulletproof-hosting-aeza-group-us-sanctions
-
Aeza Group sanctioned for hosting ransomware, infostealer servers
The U.S. Department of the Treasury has sanctioned Russian hosting company Aeza Group and four operators for allegedly acting as a bulletproof hosting company for ransomware gangs, infostealer operations, darknet drug markets, and Russian disinformation campaigns. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/aeza-group-sanctioned-for-hosting-ransomware-infostealer-servers/
-
Ransomware-Attacke auf Welthungerhilfe
Cyberkriminelle haben die Systeme der Welthungerhilfe gehackt.Die Welthungerhilfe zählt zu den größten gemeinnützigen Organisationen in Deutschland. Die Cyberbande Rhysida hat kürzlich einen Darknet-Post mit mehreren Datenkopien veröffentlicht, die angeblich von der Welthungerhilfe stammen.Eine Sprecherin der Hilfsorganisation bestätigte gegenüber CSO, dass es am 23. Mai 2025 zu einem Cyberangriff kam. Daraufhin seien die betroffenen Systeme sofort…
-
Swiss Government Confirms Radix Ransomware Attack Leaked Federal Data
Tags: attack, breach, cyber, cyberattack, dark-web, data, data-breach, government, group, ransomwareThe Swiss government has confirmed that sensitive federal data has been leaked onto the dark web following a ransomware attack on Radix, a non-profit health promotion foundation serving multiple federal offices. The breach, attributed to the Sarcoma ransomware group, has raised fresh concerns about the security of government contractors and the ripple effects of cyberattacks…
-
Mit KI auf Fahndung in Dark-Web-Foren
In einem gemeinsamen, internationalen Forschungsprojekt identifizierten Sophos, die Université de Montréal und das Unternehmen Flare mit Hilfe künstlicher Intelligenz (KI) Schlüsselpersonen in der digitalen Unterwelt. Sophos wird die Ergebnisse für die Bedrohungsanalyse in der Sophos Counter Threat Unit (CTU) nutzen. Schlüsselakteure systematisch erkennen Kriminelle Internetforen bieten umfangreiche Einblicke in Bedrohungen und Schwachstellen. Das Team der…
-
Fahndung mit künstlicher Intelligenz im Dark-Web
In einem gemeinsamen, internationalen Forschungsprojekt identifizierten Sophos, die Université de Montréal und das Unternehmen Flare mit Hilfe künstlicher Intelligenz (KI) Schlüsselpersonen in der digitalen Unterwelt. Sophos wird die Ergebnisse für die Bedrohungsanalyse in der Sophos-Counter-Threat-Unit (CTU) nutzen. Schlüsselakteure systematisch erkennen Kriminelle Internetforen bieten umfangreiche Einblicke in Bedrohungen und Schwachstellen. Das Team der Sophos-Counter-Threat-Unit (CTU) […]…
-
Mit KI auf Spurensuche im Darknet: Sophos identifiziert Schlüsselakteure der Cyberkriminalität
Mittels sozialwissenschaftlicher Methoden unter anderem einem Klassifikationsmodell aus der Kriminologie und KI-gestützter Netzwerkanalyse konnte das Forschungsteam die Nutzer:innen in Gruppen einteilen: Wer ist besonders aktiv, wer ist spezialisiert, wer besitzt tiefes technisches Know-how? First seen on infopoint-security.de Jump to article: www.infopoint-security.de/mit-ki-auf-spurensuche-im-darknet-sophos-identifiziert-schluesselakteure-der-cyberkriminalitaet/a41274/
-
Um 94 Milliarden Cookies im Darknet – Weltweiter Cookie-Diebstahl explodiert
Tags: dark-webFirst seen on security-insider.de Jump to article: www.security-insider.de/cyberkriminalitaet-anstieg-cookie-diebstahl-nordvpn-a-4fa1f5b1a45640895406dd373c2ed6df/
-
How an Email, Crypto Wallet and YouTube Activity Led the FBI to IntelBroker
FBI tracked IntelBroker as UK’s Kai West using an email address, crypto trails, YouTube activity and forum posts after dozens of high-profile data breaches and darknet activity. First seen on hackread.com Jump to article: hackread.com/email-crypto-wallet-youtube-activity-fbi-intelbroker/
-
Cyberangriff auf Arztpraxen in Australien
Cyberattacks at two Melbourne hospitals expose patient details on dark web First seen on theage.com.au Jump to article: www.theage.com.au/national/victoria/cyberattack-at-two-melbourne-hospitals-expose-patient-details-on-dark-web-20250625-p5ma49.html
-
Leak of data belonging to 7.4 million Paraguayans traced back to infostealers
The leaks to the dark web contain information “about the entire population” of Paraguay, researchers said, and likely originated with malware that infected a government employee device. First seen on therecord.media Jump to article: therecord.media/data-leak-paraguayan-millions-infostealer
-
Leak of data belonging to 7.4 million Paraguays traced back to infostealers
The leaks to the dark web contain information “about the entire population” of Paraguay, researchers said, and likely originated with malware that infected a government employee device. First seen on therecord.media Jump to article: therecord.media/data-leak-paraguayan-millions-infostealer
-
EagleSpy v5 RAT Promoted by Hacker for Stealthy Android Access
A notorious threat actor known as >>xperttechy
-
Iranian cyber threats overhyped, but CISOs can’t afford to let down their guard
DDoS attacks are the biggest threat: Perhaps Iran’s most prominent cyber tool is distributed denial of service (DDoS), usually in conjunction with so-called hacktivist groups.Hours after the US strikes against Iran’s nuclear sites, the Center for Internet Security (CIS) and other watchdogs confirmed that an Iranian-aligned hacktivist group called “313 Team” claimed responsibility for a…