DARK WEB Archives - Cybersecurity News Everyday

This article discusses the malicious use of a subscription service called Crypters And Tools, enabling cybercriminals to generate malware loaders. Various hacker groups, including PhaseShifters, TA558, and Blind Eagle, utilize this service to conduct cyber attacks on organizations worldwide, primarily through phishing emails and malicious scripts.…

Cyber Security News

BreachForums is Offline: A New Twist or Just Another Cyber Shenanigan? – SOCRadar® Cyber Intelligence Inc.

April 19, 2025 Cyware

Summary: On April 18, 2025, BreachForums faced another outage where claims of a DDoS attack by the Dark Storm Team emerged alongside rumors of FBI involvement. The platform’s history of seizures and the mysterious disappearance of its administrators have left the hacker community in uncertainty. Experts urge caution regarding the veracity of these claims, emphasizing the distrust prevalent in these clandestine online spaces.…

Cyber Attack

Interlock ransomware gang pushes fake IT tools in ClickFix attacks

April 19, 2025 BleepingComputer

Summary: The Interlock ransomware gang has adopted ClickFix attacks to infiltrate corporate networks by tricking victims into executing harmful PowerShell commands disguised as IT tools. This tactic has been shown to exacerbate the malware threat landscape, allowing Interlock to deploy file-encrypting malware after gaining initial access.…

Cyber Attack

7 Steps to Take After a Credential-Based cyberattack

April 18, 2025 BleepingComputer

Summary: Credential-based attacks are becoming the preferred method for cybercriminals as they use valid credentials to bypass security systems. This article discusses the prevalence of such attacks, the reasons behind their effectiveness, and essential strategies organizations can implement to protect against and respond to these breaches.…

Cyber Security News

In Other News: 4chan Hacked, Android Auto-Reboot, Nemesis Admin Charged

April 18, 2025 CybersecurityNews

Summary: SecurityWeek’s roundup highlights significant cybersecurity developments, including vulnerabilities in an enterprise printer solution, the impact of cyber breaches on stock prices, and NATO’s cyber exercise. The report also mentions the record number of Microsoft product vulnerabilities, a hack on 4chan, and a new auto-reboot feature for Android.…

Cyber Attack

Ahold Delhaize confirms data theft after INC ransomware claims attack

April 17, 2025 BleepingComputer

Summary: Ahold Delhaize has confirmed that data was stolen from its U.S. business systems during a cyberattack in November 2024. The investigation is ongoing, with potential impacts on customer data being assessed. The ransomware group INC Ransom has publicly leaked documents allegedly obtained from the company.…

Youtube

2025 Threat Intelligence Index: Dark Web, AI, & Ransomware Trends

April 17, 2025 Youtube

Summary: The video discusses the insights from the annual IBM X-Force Threat Intelligence Index Report, highlighting the trends in cybersecurity, including the decline of ransomware and phishing attacks, an increase in credential theft, and evolving tactics among cybercriminals. The video concludes with recommendations on how to strengthen defenses against these threats and protect sensitive information.…

Cyber Attack

Conduent Says Names, Social Security Numbers Stolen in Cyberattack

April 15, 2025 LeakNews

Summary: Conduent, a business services provider, reported a cyberattack in January that led to the theft of personal information of clients’ end-users. Despite the incident causing disruptions, the company was able to restore normal operations quickly and claimed that the data has not been publicly released.…

Cyber Attack

Hertz Data Breach – Customer Personal Information Stolen by Hackers

April 15, 2025 admin

Summary: Hertz Corporation has confirmed a significant data breach that exposed sensitive customer information for its brands Hertz, Dollar, and Thrifty. Hackers exploited zero-day vulnerabilities in a vendor’s file transfer platform, leading to unauthorized access of personal data. The incident has prompted Hertz to take remedial actions, including providing identity protection services to affected customers.…

Interesting Stuff

Fast Flux: The DNS Botnet Technique Alarming National Security Agencies

April 15, 2025April 15, 2025 Infosecwriteups

Fast flux is a malicious evasion technique that dynamically rotates DNS IP addresses to assist botnets in evading detection, posing a significant threat to national security. The NSA and CISA issued warnings regarding its alarming resurgence and effective use by cybercriminals and nation-state actors alike. Affected: national security, cybersecurity infrastructure, malware, phishing campaigns.…

Cyber Attack

Govtech giant Conduent confirms client data stolen in January cyberattack

April 15, 2025 BleepingComputer

Summary: Conduent, a major American business services firm, has confirmed that client data was stolen during a cyberattack in January 2025. The company is currently investigating the impact of the breach, which involved personal information of clients’ end-users. While there are no signs of the stolen data being publicly available, Conduent has incurred expenses related to the incident.…

Cyber Security News

Cybersecurity firm buying hacker forum accounts to spy on cybercriminals

April 15, 2025 BleepingComputer

Summary: Swiss cybersecurity firm Prodaft has initiated a program called ‘Sell your Source,’ aimed at acquiring verified accounts from hacking forums to enhance intelligence on cybercriminal activities. The initiative seeks to penetrate cybercrime networks while ensuring rigorous verification of account history and legality. Prodaft’s efforts are touted as a method to improve visibility and combat adversarial cyber threats effectively.…

Cyber Security News

Threat Actor Allegedly Selling Fortinet Firewall Zero-Day Exploit

April 14, 2025 CybersecurityNews

Summary: Fortinet warns that threat actors are maintaining persistent access to FortiOS and FortiProxy devices due to known vulnerabilities, while a zero-day exploit for FortiGate firewalls is reportedly being sold on a dark web forum. This exploit could enable remote execution of arbitrary code without authentication, compromising sensitive configurations and data.…

Threat Research

Dark Web Profile: Babuk/Babuk2

April 14, 2025 SocRadar

Babuk, originally infamous for its ransomware attacks, has evolved into Babuk2 and introduced a hybrid model focusing on data theft and extortion. Despite claims of significant data breaches, doubts about its capabilities exist as many leaks appear recycled from previous incidents. Overall, Babuk2 exploits its reputation for profit while maintaining a focus on high-value targets.…

Interesting Stuff

What They Didn’t Secure: SaaS Security Lessons from the World’s Biggest Breaches

April 14, 2025April 14, 2025 iocOne

This guide outlines a strategic security approach for Software-as-a-Service (SaaS) applications, focusing on five key pillars: Identity and Access Management (IAM), Data Protection, Secure Development, Network Security Controls, and Incident Response & Monitoring. It emphasizes the need for adopting Zero Trust principles and aligns each security pillar with established industry standards.…

0Trash

Chinese Cyber Operations Targeting Critical Infrastructure

April 13, 2025April 14, 2025 iocOne

This strategic estimate and countermeasure plan addresses the escalating threat posed by Chinese cyber operations targeting critical infrastructure, particularly in the U.S., Europe, and Asia-Pacific regions. It emphasizes the need for coordinated resilience across government and private sectors and highlights specific recommendations for fortifying defenses against cyber intrusions, including the development of offensive strategies and enhanced international collaboration.…

Interesting Stuff

Awesome Hacker Search Engines

April 12, 2025April 12, 2025 admin

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

General • Servers • Vulnerabilities • Exploits • Attack surface • Code • Email addresses • Domains • URLs • DNS • Certificates • WiFi networks • Device Info • Credentials • Leaks • Hidden Services • Social Networks • Phone numbers • Images • Threat Intelligence • Web History • Files • Surveillance cameras • Crypto • People

General Search EnginesGoogleBingYahoo!YandexAskBaiduSearXNGEXALeadDuckDuckGoSwisscowsNaverAOLBraveYepGibiruKagiStractServersShodan – Search Engine for the Internet of EverythingCensys Search – Search Engine for every server on the Internet to reduce exposure and improve securityOnyphe.io …

Cyber Attack

Morocco investigates major data breach allegedly by Algerian hackers

April 12, 2025 LeakNews

Summary: Morocco’s national social security agency is investigating a cyberattack that led to the leak of sensitive personal data of nearly 2 million citizens, believed to be executed by Algerian hackers as a politically motivated act. The attack, claimed by a hacker group named JabaROOT, appears to be in retaliation for prior incidents involving Moroccan threat actors.…

Cyber Attack

Western Sydney University discloses security breaches, data leak

April 12, 2025 BleepingComputer

Summary: Western Sydney University (WSU) has reported two significant security incidents that compromised personal information of its community members, affecting both current and former students. The breaches include a hack of its single sign-on (SSO) system and a leak of data on the dark web. Following repeated incidents, WSU’s leadership has apologized and committed to improving their cybersecurity measures.…

Tag: DARK WEB