Threat Actor: IntelBroker, Sanggiero, EnergyWeaponUser Victim: Five Eyes Intelligence Group, Acuity Inc
Information:
IntelBroker, Sanggiero, and EnergyWeaponUser leaked sensitive documents linked to the Five Eyes Intelligence Group.
The leaked data includes full names, emails, office and personal cell numbers, and email addresses associated with government, military, and Pentagon entities.…
Author: Yoav Arad Pinkas
Key FindingsAI is already extensively utilized in election campaigns worldwide. Deepfakes and voice cloning have been employed in elections in three main venues:By candidates for self-promotion. By candidates to attack and defame political opponents. By foreign nation-state actors to defame specific candidates.…Threat Actor: Unknown
Victim: US Department of Education
Information:
The threat actor allegedly breached the database of the US Department of Education.
The compromised data includes UserIDs and Phone Numbers.
The leaked data is reported to be 288 megabytes in size.
Approximately 8.9 million entries were exposed.…
Threat Actor: Unknown Victim: American 3D Model Downloading Website
Information: – The threat actor is offering unauthorized access to the Shell admin of an American 3D models downloader website. – The website has completed a total of 1,421,173 downloads for the year and 166,343 downloads specifically for the month of February.…
Threat Actor: Unknown Victim: French outsourcing service company
Information:
The threat actor is offering unauthorized access to the RDP (Remote Desktop Protocol) of a prominent French outsourcing service company.
The victim company has a revenue of $830 million.
This unauthorized access allows entry into Windows systems through a RDP, providing authorization of the domain system.…
Threat Actor: Unknown Victim: Numerous companies across various countries
Information:
The threat actor is offering unauthorized access to numerous companies.
The list includes companies from diverse sectors and countries.
The sectors range from hospitality, food & beverage, finance, agriculture, IT, membership organizations, federal, engineering, parking, environmental services, consumer electronics, business services, hospitals/healthcare, colleges & universities, and freight & logistics services.…
Threat Actor: Cybercriminals Victim: Individuals and businesses
Information: – There are 31 new variants of ransomware identified in March. – Ransomware encrypts valuable data on infected systems. – Cybercriminals demand exorbitant ransoms for decryption keys. – Ransomware poses a significant threat to individuals and businesses. – Detection and mitigation of ransomware are increasingly challenging.…
____________________ StealthMole raises $7M Series A for its AI-powered dark web intelligence platform | TechCrunch
Key Point :
StealthMole raised $7 million in Series A funding for its dark web intelligence platform.
The startup serves over 50 clients across 17 countries in Asia, Europe, and the Middle East.…
Threat Actor: CyberNiggers Group Victim: HSBC and Barclays Banks
Information:
The CyberNiggers group, allegedly orchestrated by members Sanggiero and IntelBroker, breached the security systems of HSBC and Barclays banks.
Extensive databases were compromised, including notary_request_2024.csv, ledger_summary_2024.csv, _transaction__2024.csv, and notification_2024.csv.
These databases contain crucial information about banking operations, such as transaction records, account details, and user notifications.…
Last Activity View: A forensic tool by NirSoft that provides a detailed logbook of system activities. It’s useful for spotting malicious activities executed by malware in the background. Simple language makes it accessible for users of all levels.
Kappa: An advanced, open-source tool by Mandiant for analyzing malware executables across Windows, Mac, and Linux.…
2. DarknetLive — Is on the Clearnet and Dark Web. This site is owned by the Incognito Darknet Market admin and provides news on vendor arrests and other illegal Dark web news.…
Threat Actor: Digital Revolt and the Cyber Dragon Victim: North Macedonia
Information:
The Digital Revolt and the Cyber Dragon groups are allegedly responsible for the cyber attacks.
The attacks involved Distributed Denial of Service (DDoS) tactics.
The attackers breached the defenses of key state websites, including those responsible for public procurement and the Sistema48 platform.…
Threat Actor: Unknown hacker group Victim: Pandabuy
Information:
A significant data breach allegedly occurred involving Pandabuy, a store company.
The breach was a result of exploiting multiple critical vulnerabilities within the platform’s API.
Other identified bugs granted access to the website’s internal services.…
Threat Actor: Unknown Victim: US Military (specifically the US Army, US Air Force, and US Navy)
Information:
A threat actor has claimed responsibility for leaking a source code allegedly sourced from the US Army, US Air Force, and US Navy.
The attack is said to have occurred in March 2024.…
____________________ Summary: A PhaaS campaign called “Darcula” has been targeting organizations in over 100 countries using more than 20,000 fake domains. The campaign utilizes unique tools and platforms to carry out phishing attacks, including sending messages through iMessage and RCS protocols. The attackers primarily target postal services and other institutions that rely on consumer trust.…
Threat Actor: Unknown Victim: Shivaji College – University of Delhi
Information:
The threat actor allegedly breached the database of Shivaji College.
The compromised data includes student and teacher records, student cards with pictures, surveys, feedback, and additional documents containing Personally Identifiable Information (PII).
The attack occurred in March 2024.…
Threat Actor: USDoD Victim: FICO
Information:
USDoD is the threat actor responsible for the alleged leak of FICO’s database.
FICO is a prominent analytics software company operating in over 90 countries.
The leaked database contains 170,000 rows in CSV format.
Personal and professional details of individuals linked to FICO are included in the leak.…
Threat Actor: Unknown Victim: Mashvisor
Information:
The threat actor claims responsibility for selling a database sourced from Mashvisor.
The attack occurred in March 2024.
The compromised data includes sensitive CRM data.
The compromised data consists of 1,359 million records.
The price tag for the alleged database is $10000.…
Threat Actor: Unknown threat actor Victim: 16 companies (names not provided)
Information:
The threat actor is offering unauthorized access to 16 companies.
The compromised entities include small-scale enterprises and medium-scale corporations.
The sectors of the compromised companies include Hospitality, Food & Beverage, Finance, IT, Federal, Business Services, and Logistics Services.…
Threat Actor: Unknown Victim: Mexican Government
Information:
Unauthorized domain administrator access to a prominent entity within the Mexican government.
Access extends to more than 1000 employee accounts, including domain administrator and enterprise-level credentials.
The compromised system contains approximately 10 terabytes of data.
The threat actor is willing to sell this illicit access for $3500.…