Tag: dark-web
-
Hackers Selling SS7 0-Day Exploit on Dark Web for $5,000
A newly discovered dark web listing claims to sell a critical SS7 protocol exploit for $5,000, raising alarms about global telecom security. The seller, operating under the alias >>GatewayPhantom,
-
The Double-Edged Sword of AI in Cybersecurity: Threats, Defenses the Dark Web Insights Report 2025
Check Point Research’s latest AI Security Report 2025 reveals a rapidly evolving cybersecurity landscape where artificial intelligence simultaneously presents unprecedented threats and defensive capabilities. The comprehensive investigation, which included dark web surveillance and insights from Check Point’s GenAI Protect platform, uncovers how AI technologies are being weaponized by threat actors while also enhancing security researchers’…
-
Police Seize Dark Web Shop Pygmalion, Access User Data from 7K Orders
German police seized the dark web shop Pygmalion, gaining access to customer data linked to over 7,000 drug… First seen on hackread.com Jump to article: hackread.com/police-seize-dark-web-shop-pygmalion-user-data-orders/
-
AI, Automation, and Dark Web Fuel Evolving Threat Landscape
Attackers are leveraging the benefits of new technology and the availability of commodity tools, credentials, and other resources to develop sophisticated attacks more quickly than ever, putting defenders on their heels. First seen on darkreading.com Jump to article: www.darkreading.com/remote-workforce/ai-automation-dark-web-fuel-evolving-threat-landscape
-
Cybercriminals Selling Sophisticated HiddenMiner Malware on Dark Web Forums
Cybercriminals have begun openly marketing a powerful new variant of the HiddenMiner malware on underground dark web forums, raising alarms within the cybersecurity community. The malware, a heavily modified Monero (XMR) cryptocurrency miner, attracts buyers due to its advanced stealth capabilities and ease of use, even for less technically skilled threat actors. A New Breed…
-
Ransomware-Gruppen locken mit neuen Affiliate-Programmen
Das Darknet erfindet sich neu: Während Strafverfolgungsbehörden weltweit Erfolge gegen bekannte Ransomware-Akteure feiern, passen sich die kriminellen Strukturen mit beunruhigender Geschwindigkeit an. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/ransomware-gruppen-locken-mit-neuen-affiliate-programmen
-
Cyberangriffe werden raffinierter: IBM veröffentlicht X-Force Threat Intelligence Index 2025
Besonders im Visier stehen kritische Infrastrukturen wie Wasserversorgung, Telekommunikation und Gesundheitswesen lukrative Ziele für Hacker, deren Angriffe durch den florierenden Handel mit Exploit-Codes im Dark Web zusätzlich befeuert werden. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/cyberangriffe-werden-raffinierter-ibm-veroeffentlicht-x-force-threat-intelligence-index-2025/a40526/
-
ICO Issues Merseyside-Based Law Firm £60,000 Fine After Cyber-Attack
A UK Law firm has been fined £60,000 after data stolen during a 2022 cyber-attack was published on the dark web First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ico-issues-law-firm-fine-after/
-
British law firm fined after ransomware group publishes confidential client data
A U.K. law firm specializing in crime, family fraud, sexual offenses and other sensitive matters has been fined after a hack that led to a data leak on the dark web, something the company only learned about after authorities contacted it. First seen on therecord.media Jump to article: therecord.media/uk-law-firm-fined-ico-ransomware-sensitive-data-breached
-
ICICI Bank Ransomware Breach: A Stark Reminder of Supply Chain Risk and the Need for Real-Time Cyber Vigilance
The recent ransomware breach tied to ICICI Bank”, claimed by the LockBit group”, has raised fresh concerns about the fragility of digital ecosystems and third-party risk. While official confirmations remain limited, leaked files and dark web chatter suggest that attackers accessed systems through a vendor relationship and exfiltrated over 3 TB of sensitive data, including…
-
Threat Intel Firm Offers Crypto in Exchange for Dark Web Accounts
Prodaft is currently buying accounts from five Dark Web forums and offers to pay extra for administrator or moderator accounts. The idea is to infiltrate forums to boost its threat intelligence. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/threat-intel-firm-crypto-dark-web-accounts
-
Prodaft Offers No Judgment Deal to Buy Dark Web Accounts from Cybercrime Forum Users
Through the SYS Initiative, Prodaft is offering a secure, anonymous channel for individuals to share information about ongoing cybercrime activities First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/prodaft-buy-dark-web-cybercrime/
-
FortiGate 0-Day Exploit Allegedly Up for Sale on Dark Web
A chilling new development in the cybersecurity landscape has emerged, as a threat actor has reportedly advertised an alleged zero-day exploit targeting Fortinet’s FortiGate firewalls on a prominent dark web forum. This exploit purportedly enables unauthenticated remote code execution (RCE) and full configuration access to FortiOS, unlocking the potential for attackers to seize control of…
-
Morocco Investigates Social Security Agency Data Leak
A threat actor has claimed responsibility for the alleged politically motivated attack and has uploaded the stolen data to a Dark Web forum. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/morocco-investigates-social-security-agency-data-leak
-
Kundendaten im Darknet – Check Point bestätigt Cyberangriff, aber…
First seen on security-insider.de Jump to article: www.security-insider.de/cyberangriff-check-point-kundendaten-darknet-a-856205dbc09b4912739b1d26ea3a6a54/
-
South African telecom provider serving 7.7 million confirms data leak following cyberattack
South Africa’s fourth-largest mobile network operator, Cell C, has confirmed that its data was leaked on the dark web following a cyberattack last year. First seen on therecord.media Jump to article: therecord.media/south-african-telecom-provider-discloses-data-breach-ransomware
-
Großteil im Klartext: Passwörter deutscher Politiker im Darknet entdeckt
Einige Abgeordnete verwenden doch tatsächlich ihre öffentliche E-Mail-Adresse für Onlinekonten. Im Darknet kursieren auch die Passwörter dazu. First seen on golem.de Jump to article: www.golem.de/news/grossteil-im-klartext-passwoerter-deutscher-politiker-im-darknet-entdeckt-2504-195217.html
-
Samsung-Datenleck: Was Betroffene jetzt tun können
Samsung Deutschland wurde Ziel eines groß angelegten Hackerangriffs. Unbekannte verschafften sich Zugriff auf interne Supportsysteme und entwendeten rund 270.000 sensible Kundendatensätze, die nun im Darknet angeboten werden. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/samsung-datenleck-was-betroffene-jetzt-tun-koennen
-
Xanthorox AI: A New Breed of Malicious AI Threat Hits the Darknet
Xanthorox AI, a darknet-exclusive tool, uses five custom models to launch advanced, autonomous cyberattacks, ushering in a new AI threat era. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/cybersecurity/xanthorox-ai/
-
Dark-Web-Monitoring in EASM-Plattform integriert
Outpost24, ein Anbieter von Lösungen zur Identifikation von Schwachstellen, erweitert seine Plattform für External-Attack-Surface-Management (EASM) um ein Dark-Web-Modul. Damit erhalten Unternehmen einen besseren Einblick in potenzielle Risiken, die außerhalb der klassischen IT-Perimeter entstehen insbesondere in schwer zugänglichen Bereichen des Internets wie Untergrundforen, Pastebins und Darknet-Marktplätzen. Das neue Modul scannt kontinuierlich öffentlich zugängliche sowie geschlossene […]…
-
Ransomware-Attacke auf Europcar
Tags: access, android, backup, cloud, computer, cyberattack, dark-web, gitlab, hacker, infrastructure, mail, ransomwareEuropcar hat einen Cyberangriff mit Datendiebstahl erlitten.Im Darknet sind kürzlich Hinweise auf einen Cyberangriff bei Europcar aufgetaucht, bei dem Kundendaten und andere vertrauliche Informationen entwendet wurden. Wie aus einem Bericht von Bleeping Computer hervorgeht, ist der Angreifer in die Gitlab-Repositories des Fahrzeugvermieters eingedrungen und hat Daten von 200.000 Kunden und den Quellcode für Android- und…
-
Over 26,000 Dark Web Discussions Focused on Hacking Financial Organizations
Tags: cyber, cyberattack, cybercrime, cybersecurity, dark-web, finance, hacker, hacking, service, strategy, threat, tool, vulnerabilityRadware’s comprehensive research into the cybersecurity landscape has uncovered significant trends shaping the financial services industry’s vulnerabilities in 2024. The analysis, conducted across 46 deep-web hacker forums, identified over 26,000 threat actors’ discussions that revealed increasingly sophisticated cyberattack methods. The study highlights the adoption of advanced tools and strategies by cybercriminals, underscoring the urgent need…
-
Everest ransomware group’s Tor leak site offline after a defacement
The Tor leak site of the Everest ransomware group went offline after being hacked and defaced over the weekend. The Everest ransomware gang’s darknet site went offline after being hacked and defaced, with victim listings replaced by the following message. “Don’t do crime CRIME IS BAD xoxo from Prague” read the message published on the…
-
Hacker hacken Hacker: Darknet-Website einer Cyberbande plötzlich entstellt
Ein Angreifer warnt eine Cyberbande auf ihrer eigenen Tor-Seite vor kriminellen Aktivitäten. Diese seien böse. Nach 230 Opfern kann man das mal anmerken. First seen on golem.de Jump to article: www.golem.de/news/hacker-hacken-hacker-darknet-website-einer-cyberbande-ploetzlich-entstellt-2504-195128.html
-
Elektronikhersteller von unbefugtem Zugriff betroffen
Datenklau: 270.000 Datensätze von Samsung Deutschland im Darknet First seen on heise.de Jump to article: www.heise.de/news/Datenleck-270-000-Kundentickets-von-Samsung-im-Darknet-10335172.html
-
Everest ransomware’s dark web leak site defaced, now offline
The dark web leak site of the Everest ransomware gang has apparently been hacked over the weekend by an unknown attacker and is now offline. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/everest-ransomwares-dark-web-leak-site-defaced-now-offline/
-
News alert: SpyCloud study shows gaps in EDR, antivirus, 66% of malware infections missed
Austin, TX, USA, April 7, 2025, CyberNewswire, SpyCloud, the leading identity threat protection company, today released new analysis of its recaptured darknet data repository that shows threat actors are increasingly bypassing endpoint protection solutions: 66% of malware infections… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/news-alert-spycloud-study-shows-gaps-in-edr-antivirus-66-of-malware-infections-missed/
-
Everest ransomware group’s darknet site offline following defacement
The darknet leak site used by the ransomware gang Everest went offline Monday after being apparently hacked and defaced over the weekend. First seen on therecord.media Jump to article: therecord.media/everest-ransomware-site-offline-following-defacement
-
Brothers Behind Rydox Dark Web Market Extradited to US
USA secures extradition of criminals from 9 countries, including two brothers behind Rydox, a dark web market for stolen data and hacking tools. First seen on hackread.com Jump to article: hackread.com/brothers-rydox-dark-web-market-extradited-to-us/
-
Xanthorox AI The Next Generation of Malicious AI Threats Emerges
The Next Evolution in Black-Hat AI A new player has entered the cybercrime AI landscape Xanthorox AI, a malicious tool that brands itself as the “Killer of WormGPT and all EvilGPT variants.” First spotted in late Q1 2025, Xanthorox began circulating in cybercrime communities across darknet forums and encrypted channels. The system is promoted… First…