βΌοΈπ¨π΄ NyxarGroup and collaborators are allegedly selling personal information from Colombian government websites saul.cali.gov.co and sider.cali.gov.co.
The data includes full names, document numbers, addresses, birth dates, phone numbers, and email addresses of citizens.
The data includes full names, document numbers, addresses, birth dates, phone numbers, and email addresses of citizens.
βΌοΈ The FBI has released a joint Cybersecurity Advisory on Iranian-Affiliated cyber actors exploiting programmable logic controllers across US critical infrastructure
PDF: https://www.ic3.gov/CSA/2026/260407.pdf
PDF: https://www.ic3.gov/CSA/2026/260407.pdf
Tor Browser 15.0.9 has been released, update if you haven't already done so.
https://blog.torproject.org/new-release-tor-browser-1509/
https://blog.torproject.org/new-release-tor-browser-1509/
βΌοΈ New Dark Web Informer Blog Post!
Title: Threat Actor Selling 1.2 Million French FICOBA Banking Leads With IBANs, SSNs, and Tax IDs From 15+ Banks
Link: https://darkwebinformer.com/threat-actor-selling-1-2-million-french-ficoba-banking-leads-with-ibans-ssns-and-tax-ids-from-15-banks/
Title: Threat Actor Selling 1.2 Million French FICOBA Banking Leads With IBANs, SSNs, and Tax IDs From 15+ Banks
Link: https://darkwebinformer.com/threat-actor-selling-1-2-million-french-ficoba-banking-leads-with-ibans-ssns-and-tax-ids-from-15-banks/
Dark Web Informer
Threat Actor Selling 1.2 Million French FICOBA Banking Leads With IBANs, SSNs, and Tax IDs From 15+ Banks
βΌοΈ CVE-2026-23398: Linux Kernel ICMP DoS Vulnerability
PoC: https://github.com/JohannesLks/CVE-2026-23398
PoC: https://github.com/JohannesLks/CVE-2026-23398
GitHub
GitHub - JohannesLks/CVE-2026-23398: icmp_tag_validation() NULL deref
icmp_tag_validation() NULL deref. Contribute to JohannesLks/CVE-2026-23398 development by creating an account on GitHub.
βΌοΈ CVE-2026-28286: ZimaOS Privilege Escalation Vulnerability
PoC: https://github.com/Rushi9/zimaos-cve-2026-28286-arbitrary-file-write?tab=readme-ov-file
A privilege escalation vulnerability discovered in Zimaspace's ZimaOS. It enables attackers to circumvent API-level restrictions and gain unauthorized write access to sensitive system directories.
PoC: https://github.com/Rushi9/zimaos-cve-2026-28286-arbitrary-file-write?tab=readme-ov-file
A privilege escalation vulnerability discovered in Zimaspace's ZimaOS. It enables attackers to circumvent API-level restrictions and gain unauthorized write access to sensitive system directories.
βΌοΈ DOJ Press Release
βββββββββββββββββββββ
Justice Department Conducts Court-Authorized Disruption of DNS Hijacking Network Controlled by a Russian Military Intelligence Unit
Full Press Release β justice.gov
βββββββββββββββββββββ
π΅οΈ Dark Web Informer β’ DOJ Monitor
βββββββββββββββββββββ
Justice Department Conducts Court-Authorized Disruption of DNS Hijacking Network Controlled by a Russian Military Intelligence Unit
Full Press Release β justice.gov
βββββββββββββββββββββ
π΅οΈ Dark Web Informer β’ DOJ Monitor
www.justice.gov
Justice Department Conducts Court-Authorized Disruption of DNS
Today, the Department of Justice and the FBI announced a court-authorized technical operation to neutralize the U.S. portion of a network of small office/home office (SOHO) routers compromised by a unit within Russiaβs Main Intelligence Directorate of theβ¦
βΌοΈ New Dark Web Informer Blog Post!
Title: Daily Dose of Dark Web Informer - April 7th, 2026
Link: https://darkwebinformer.com/daily-dose-of-dark-web-informer-april-7th-2026/
Title: Daily Dose of Dark Web Informer - April 7th, 2026
Link: https://darkwebinformer.com/daily-dose-of-dark-web-informer-april-7th-2026/
Dark Web Informer
Daily Dose of Dark Web Informer - April 7th, 2026
This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts.
βΌοΈ ChipSoft, a Dutch company that develops electronic patient record (EPR) software, is dealing with a ransomware attack.
https://tweakers.net/nieuws/246534/nederlandse-maker-van-software-patientendossiers-chipsoft-kampt-met-ransomware.html
https://tweakers.net/nieuws/246534/nederlandse-maker-van-software-patientendossiers-chipsoft-kampt-met-ransomware.html
βΌοΈπ«π· Threat actor NormalLeVrai is selling alleged Service Telecom database containing 2,835,372 user records, 16GB source code, and email backups for $2,200.
The database reportedly includes customer profiles, change logs, feedback, and administrator data from the French telecommunications company.
The database reportedly includes customer profiles, change logs, feedback, and administrator data from the French telecommunications company.
βΌοΈA database allegedly containing transaction data, payment information, and customer details from A1TechDeals[.]com technology commerce website has been leaked.
The data reportedly includes checkout sessions, transactions, orders, shipments, and payment processor information from Shopify, Stripe, and PayPal.
The data reportedly includes checkout sessions, transactions, orders, shipments, and payment processor information from Shopify, Stripe, and PayPal.
βΌοΈ A threat actor shared a database dump from MHI[.]org containing personal and professional information of over 33,000 users from a supply chain event website.
The leaked data includes names, emails, company information, job titles, and download activity records from 2014.
The leaked data includes names, emails, company information, job titles, and download activity records from 2014.