‼️ New Dark Web Informer Blog Post!
Title: Saudi Portal Nitaqat Listed in Alleged 437K-Record Contacts & CRM Data Sale
Link: https://darkwebinformer.com/saudi-portal-nitaqat-listed-in-alleged-437k-record-contacts-crm-data-sale/
Title: Saudi Portal Nitaqat Listed in Alleged 437K-Record Contacts & CRM Data Sale
Link: https://darkwebinformer.com/saudi-portal-nitaqat-listed-in-alleged-437k-record-contacts-crm-data-sale/
Dark Web Informer
Saudi Portal Nitaqat Listed in Alleged 437K-Record Contacts & CRM Data Sale
A threat actor using the alias Databasehooligan claims to be selling a dataset allegedly originating from Nitaqat (nitaqat.com.sa), a Saudi Arabian portal. The listing describes around 437,000 records organized into contacts, support tickets, and booking…
🚨 Dutch Police Arrest Suspect in AFC Ajax Football Club Hacking Case
On Tuesday 26 May, detectives arrested a 35-year-old man from the municipality of Buren for computer trespass (hacking) at the Amsterdam football club Ajax. The man is suspected of repeatedly and deliberately gaining unlawful access to Ajax's computer systems.
In early 2026, Ajax was confronted with the breach after the suspect granted himself access to the football club's computer systems. After the police were notified, detectives launched an investigation in which the suspect from the municipality of Buren came into view.
Following the arrest, police searched the 35-year-old man's home. Various data carriers (storage devices) were seized for further investigation.
Source: https://www.politie.nl/nieuws/2026/mei/26/05-verdachte-35-aangehouden-voor-computervredebreuk-bij-ajax.html
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
On Tuesday 26 May, detectives arrested a 35-year-old man from the municipality of Buren for computer trespass (hacking) at the Amsterdam football club Ajax. The man is suspected of repeatedly and deliberately gaining unlawful access to Ajax's computer systems.
In early 2026, Ajax was confronted with the breach after the suspect granted himself access to the football club's computer systems. After the police were notified, detectives launched an investigation in which the suspect from the municipality of Buren came into view.
Following the arrest, police searched the 35-year-old man's home. Various data carriers (storage devices) were seized for further investigation.
Source: https://www.politie.nl/nieuws/2026/mei/26/05-verdachte-35-aangehouden-voor-computervredebreuk-bij-ajax.html
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
❤1
🔪 Slice For Life - Part 2 🔪
Yeah, I don't know what the issue is. :(
It's working again, must of been a X issue.
‼️ New Dark Web Informer Blog Post!
Title: Mexican Instituto Tecnológico de Zacatepec Named in Alleged Student Database Leak
Link: https://darkwebinformer.com/mexican-instituto-tecnologico-de-zacatepec-named-in-alleged-student-database-leak/
Title: Mexican Instituto Tecnológico de Zacatepec Named in Alleged Student Database Leak
Link: https://darkwebinformer.com/mexican-instituto-tecnologico-de-zacatepec-named-in-alleged-student-database-leak/
Dark Web Informer
Mexican Instituto Tecnológico de Zacatepec Named in Alleged Student Database Leak
A threat actor using the alias MagoSpeak claims to have leaked a database allegedly belonging to Instituto Tecnológico de Zacatepec, a public technological institute in Morelos, Mexico.
🚨 🇫🇷 A threat actor going by BriCronMaGneux is sharing an alleged database of Inoplage, a French restaurant, for free on a popular cybercrime forum.
‣ Threat Actor: BriCronMaGneux
‣ Category: Alleged Data Leak
‣ Target: Inoplage (restaurant), Cagnes-sur-Mer, France
The actor claims to have extracted the database from an unsecured Windows server and posted it across two file-sharing links, noting it was shared for free due to low resale value. Authenticity is unverified.
Stop guessing what's redacted. Subscribers see everything: http://darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
‣ Threat Actor: BriCronMaGneux
‣ Category: Alleged Data Leak
‣ Target: Inoplage (restaurant), Cagnes-sur-Mer, France
The actor claims to have extracted the database from an unsecured Windows server and posted it across two file-sharing links, noting it was shared for free due to low resale value. Authenticity is unverified.
Stop guessing what's redacted. Subscribers see everything: http://darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
🚨 🇲🇽 A threat actor going by Black0ut_Exi is sharing an alleged data leak of CEA Querétaro (Comisión Estatal de Aguas de Querétaro), the state water utility in Mexico, on a popular cybercrime forum, claiming over 1 million records.
‣ Threat Actor: Black0ut_Exi
‣ Category: Alleged Data Leak
‣ Target: CEA Querétaro (state water utility), Mexico
The actor claims the dataset includes customer and service records such as contact names, addresses, districts, phone numbers, postal codes, service orders, meter/reading data, GPS coordinates, consumption history, and outstanding-debt details. Authenticity is unverified.
Stop guessing what's redacted. Subscribers see everything: http://darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
‣ Threat Actor: Black0ut_Exi
‣ Category: Alleged Data Leak
‣ Target: CEA Querétaro (state water utility), Mexico
The actor claims the dataset includes customer and service records such as contact names, addresses, districts, phone numbers, postal codes, service orders, meter/reading data, GPS coordinates, consumption history, and outstanding-debt details. Authenticity is unverified.
Stop guessing what's redacted. Subscribers see everything: http://darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
🚨 🇪🇸 A threat actor going by HiddenHq is selling an alleged dataset of Spanish individuals and companies with IBAN banking details on a popular cybercrime forum, claiming around 50,000 lines.
‣ Threat Actor: HiddenHq
‣ Category: Alleged Data Leak
‣ Target: Individuals & companies in Spain
‣ Format: TXT
‣ Price: $500
The actor claims the dataset includes first and last names, city, phone numbers, IBAN numbers, and company names, with a sample posted in the listing. Authenticity is unverified.
Stop guessing what's redacted. Subscribers see everything: http://darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
‣ Threat Actor: HiddenHq
‣ Category: Alleged Data Leak
‣ Target: Individuals & companies in Spain
‣ Format: TXT
‣ Price: $500
The actor claims the dataset includes first and last names, city, phone numbers, IBAN numbers, and company names, with a sample posted in the listing. Authenticity is unverified.
Stop guessing what's redacted. Subscribers see everything: http://darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
🚨 🇲🇽 A threat actor going by Alz_157s is selling an alleged data leak of Mexico's Secretaría de Marina (SEMAR), the country's navy, on a popular cybercrime forum, claiming records on 29,788 officers.
‣ Threat Actor: Alz_157s
‣ Category: Alleged Data Leak - Military / Government
‣ Target: Secretaría de Marina (SEMAR), Mexico
The actor claims the dataset includes personal records such as names, CURP, RFC, dates of birth, contact details, and state of birth, alongside PDF medical examination acknowledgments and results.
Noted for awareness - leaks targeting military personnel carry elevated physical-safety and doxxing risk for the individuals named.
Stop guessing what's redacted. Subscribers see everything: http://darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
‣ Threat Actor: Alz_157s
‣ Category: Alleged Data Leak - Military / Government
‣ Target: Secretaría de Marina (SEMAR), Mexico
The actor claims the dataset includes personal records such as names, CURP, RFC, dates of birth, contact details, and state of birth, alongside PDF medical examination acknowledgments and results.
Noted for awareness - leaks targeting military personnel carry elevated physical-safety and doxxing risk for the individuals named.
Stop guessing what's redacted. Subscribers see everything: http://darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
‼️ New Dark Web Informer Blog Post!
Title: French Campsite Federation FNHPA Hit by Alleged 9K Member & Invoice Leak
Link: https://darkwebinformer.com/french-campsite-federation-fnhpa-hit-by-alleged-9k-member-invoice-leak/
Title: French Campsite Federation FNHPA Hit by Alleged 9K Member & Invoice Leak
Link: https://darkwebinformer.com/french-campsite-federation-fnhpa-hit-by-alleged-9k-member-invoice-leak/
Dark Web Informer
French Campsite Federation FNHPA Hit by Alleged 9K Member & Invoice Leak
A threat actor using the alias ChimeraZ claims to have leaked a database allegedly belonging to FNHPA (Fédération Nationale de l'Hôtellerie de Plein Air), the main professional organization representing campsite and outdoor-hospitality operators in France.
‼️ New Dark Web Informer Blog Post!
Title: Mexican Civil Protection Training Portal Hit by Alleged Admin Compromise & Credential Leak
Link: https://darkwebinformer.com/mexican-civil-protection-training-portal-hit-by-alleged-admin-compromise-credential-leak/
Title: Mexican Civil Protection Training Portal Hit by Alleged Admin Compromise & Credential Leak
Link: https://darkwebinformer.com/mexican-civil-protection-training-portal-hit-by-alleged-admin-compromise-credential-leak/
Dark Web Informer
Mexican Civil Protection Training Portal Hit by Alleged Admin Compromise & Credential Leak
A threat actor using the alias azazeljakel claims to have gained administrator access to preparados.gob.mx, a training portal of Mexico's Coordinación Nacional de Protección Civil (Civil Protection authority), and to have exfiltrated the user list.
🚨 🇫🇷 A threat actor going by xMetah, alongside an associate named Lagui, is sharing an alleged data leak of Jet Systems Hélicoptères Services (jshs.fr), a French helicopter services company, on a popular cybercrime forum, claiming 4,190 client records.
‣ Threat Actor: xMetah (with Lagui)
‣ Category: Alleged Data Leak
‣ Target: Jet Systems Hélicoptères Services (jshs.fr), France
‣ Format: JSONL (clients_export.jsonl)
The actor claims the dataset includes client records such as names, titles, emails, mobile numbers, company names, addresses, cities, country, SIRET numbers, billing details, and helicopter pricing information. Authenticity is unverified.
Stop guessing what's redacted. Subscribers see everything: http://darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
‣ Threat Actor: xMetah (with Lagui)
‣ Category: Alleged Data Leak
‣ Target: Jet Systems Hélicoptères Services (jshs.fr), France
‣ Format: JSONL (clients_export.jsonl)
The actor claims the dataset includes client records such as names, titles, emails, mobile numbers, company names, addresses, cities, country, SIRET numbers, billing details, and helicopter pricing information. Authenticity is unverified.
Stop guessing what's redacted. Subscribers see everything: http://darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
‼️ New Dark Web Informer Blog Post!
Title: Bermudian Financial Service EasyPay Hit by Alleged Full Database Leak With 2M Transactions & 10K Cards
Link: https://darkwebinformer.com/bermudian-financial-service-easypay-hit-by-alleged-full-database-leak-with-2m-transactions-10k-cards/
Title: Bermudian Financial Service EasyPay Hit by Alleged Full Database Leak With 2M Transactions & 10K Cards
Link: https://darkwebinformer.com/bermudian-financial-service-easypay-hit-by-alleged-full-database-leak-with-2m-transactions-10k-cards/
Dark Web Informer
Bermudian Financial Service EasyPay Hit by Alleged Full Database Leak With 2M Transactions & 10K Cards
A threat actor using the alias henrymartin has posted what is described as the full leak of EasyPay, a now-defunct Bermudian financial service that processed transactions between individuals and businesses.
🚨🇪🇸 Spanish public payroll panel allegedly offered for sale
A threat actor claims to have access to 371 payroll accounts tied to a Spanish public management portal, allegedly allowing modification of bank deposit details used for SEPA payroll payments.
What’s allegedly exposed:
• 371 payroll accounts
• April payroll total of €962,246.73 net after taxes
• Employee bank/payment fields including IBAN-related details
• Claimed PDF proof and access screenshots
Details:
𝗧𝗮𝗿𝗴𝗲𝘁: Spanish public management payroll portal
𝗖𝗼𝘂𝗻𝘁𝗿𝘆: Spain
𝗦𝗲𝗰𝘁𝗼𝗿: Public sector / Payroll
𝗔𝗰𝘁𝗼𝗿: pw0x2
𝗖𝗹𝗮𝗶𝗺: Administrative payroll access sale
𝗢𝗯𝘀𝗲𝗿𝘃𝗲𝗱: May 26, 2026
Stop guessing what's redacted. Subscribers see everything: darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
A threat actor claims to have access to 371 payroll accounts tied to a Spanish public management portal, allegedly allowing modification of bank deposit details used for SEPA payroll payments.
What’s allegedly exposed:
• 371 payroll accounts
• April payroll total of €962,246.73 net after taxes
• Employee bank/payment fields including IBAN-related details
• Claimed PDF proof and access screenshots
Details:
𝗧𝗮𝗿𝗴𝗲𝘁: Spanish public management payroll portal
𝗖𝗼𝘂𝗻𝘁𝗿𝘆: Spain
𝗦𝗲𝗰𝘁𝗼𝗿: Public sector / Payroll
𝗔𝗰𝘁𝗼𝗿: pw0x2
𝗖𝗹𝗮𝗶𝗺: Administrative payroll access sale
𝗢𝗯𝘀𝗲𝗿𝘃𝗲𝗱: May 26, 2026
Stop guessing what's redacted. Subscribers see everything: darkwebinformer.com/pricing
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
1/2🚨 DragonForce Ransomware Claims 22 Victims
🇨🇦 K Smart Associates - Canadian civil engineering and land-use planning consulting firm - 284.28 GB allegedly stolen
🇬🇧 WSM - UK tax advisory and professional services firm - 119.23 GB allegedly stolen
🇺🇸 Northbridge - US venture capital firm focused on technology and innovation investments - 22.09 GB allegedly stolen
🇳🇱 Dunas Groen - Netherlands-based landscape design and garden supplies company - 21.9 GB allegedly stolen
🇬🇧 Refreshment Systems - UK vending machine and refreshment services company - 178.24 GB allegedly stolen
🇬🇧 Practicus - UK consulting firm specializing in interim management, executive search, and project management - 576.62 GB allegedly stolen
🇺🇸 NEMD Architects - US architecture firm providing functional and sustainable design services - 397.44 GB allegedly stolen
🇮🇹 Pieralisi - Italian industrial equipment manufacturer specializing in centrifugal separation systems - 1.31 TB allegedly stolen
🇺🇸 J.C. Ripberger Construction - US general contractor specializing in structural concrete, carpentry, and construction services - 44.07 GB allegedly stolen
🇳🇱 Profundo - Netherlands-based research organization focused on sustainability and social justice - 149.31 GB allegedly stolen
🇺🇸 Waypoint Business Solutions - US IT solutions provider offering hardware, software, and professional services - 9.68 GB allegedly stolen
🇬🇧 ERH - UK traffic management solutions provider offering installation, maintenance, and commissioning services - 145.31 GB allegedly stolen
🇺🇸 Fabbrica - US design, development, and manufacturing company focused on high-quality fabrication work - 235.6 GB allegedly stolen
🇺🇸 Ramos Rheumatology - US rheumatology care center specializing in autoimmune disease treatment - 51.87 GB allegedly stolen
🇮🇱 FWMK Law Offices - Israeli full-service law firm with expertise in high tech, mergers, acquisitions, and real estate - 585.52 GB allegedly stolen
🇺🇸 Henry Broch Foods - US food ingredient manufacturer and processor founded in 1941 - 77.21 GB allegedly stolen
🇺🇸 Denton Law Firm - US law firm focused on rapid response and legal solutions - 27.1 GB allegedly stolen
🇦🇺 QLS Logistics - Australian e-waste and polystyrene recycling company serving retail and consumer markets - 554.65 GB allegedly stolen
🇨🇦 Dubois Agrinovation - Canadian agricultural equipment and solutions company - 445.17 GB allegedly stolen
🇩🇪 WG Neukölln - German housing cooperative offering apartments and residential services in Berlin - 33.64 GB allegedly stolen
🇨🇦 Delbrook Capital Advisors - Canadian investment manager focused on the global materials sector - 252.45 GB allegedly stolen
🇺🇸 Greenway Technologies - US fire protection company based in Phoenix, Arizona - 23.5 GB allegedly stolen
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
🇨🇦 K Smart Associates - Canadian civil engineering and land-use planning consulting firm - 284.28 GB allegedly stolen
🇬🇧 WSM - UK tax advisory and professional services firm - 119.23 GB allegedly stolen
🇺🇸 Northbridge - US venture capital firm focused on technology and innovation investments - 22.09 GB allegedly stolen
🇳🇱 Dunas Groen - Netherlands-based landscape design and garden supplies company - 21.9 GB allegedly stolen
🇬🇧 Refreshment Systems - UK vending machine and refreshment services company - 178.24 GB allegedly stolen
🇬🇧 Practicus - UK consulting firm specializing in interim management, executive search, and project management - 576.62 GB allegedly stolen
🇺🇸 NEMD Architects - US architecture firm providing functional and sustainable design services - 397.44 GB allegedly stolen
🇮🇹 Pieralisi - Italian industrial equipment manufacturer specializing in centrifugal separation systems - 1.31 TB allegedly stolen
🇺🇸 J.C. Ripberger Construction - US general contractor specializing in structural concrete, carpentry, and construction services - 44.07 GB allegedly stolen
🇳🇱 Profundo - Netherlands-based research organization focused on sustainability and social justice - 149.31 GB allegedly stolen
🇺🇸 Waypoint Business Solutions - US IT solutions provider offering hardware, software, and professional services - 9.68 GB allegedly stolen
🇬🇧 ERH - UK traffic management solutions provider offering installation, maintenance, and commissioning services - 145.31 GB allegedly stolen
🇺🇸 Fabbrica - US design, development, and manufacturing company focused on high-quality fabrication work - 235.6 GB allegedly stolen
🇺🇸 Ramos Rheumatology - US rheumatology care center specializing in autoimmune disease treatment - 51.87 GB allegedly stolen
🇮🇱 FWMK Law Offices - Israeli full-service law firm with expertise in high tech, mergers, acquisitions, and real estate - 585.52 GB allegedly stolen
🇺🇸 Henry Broch Foods - US food ingredient manufacturer and processor founded in 1941 - 77.21 GB allegedly stolen
🇺🇸 Denton Law Firm - US law firm focused on rapid response and legal solutions - 27.1 GB allegedly stolen
🇦🇺 QLS Logistics - Australian e-waste and polystyrene recycling company serving retail and consumer markets - 554.65 GB allegedly stolen
🇨🇦 Dubois Agrinovation - Canadian agricultural equipment and solutions company - 445.17 GB allegedly stolen
🇩🇪 WG Neukölln - German housing cooperative offering apartments and residential services in Berlin - 33.64 GB allegedly stolen
🇨🇦 Delbrook Capital Advisors - Canadian investment manager focused on the global materials sector - 252.45 GB allegedly stolen
🇺🇸 Greenway Technologies - US fire protection company based in Phoenix, Arizona - 23.5 GB allegedly stolen
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
🚨 The FBI has released a new FLASH Warning on Silent Ransome Group
The Silent Ransom Group (SRG), also tracked as Luna Moth, Chatty Spider, and UNC3753, is targeting law firms through social engineering campaigns.
SRG actors commonly impersonate IT support through phone calls and phishing emails to gain access to victim systems. Once access is established, they exfiltrate data using legitimate remote access tools or, in some cases, by sending someone to the victim organization’s physical location to access computers directly.
Although SRG has impacted organizations across sectors such as insurance, finance, and healthcare, the group has maintained a consistent focus on U.S.-based law firms since spring 2023.
PDF: https://www.ic3.gov/CSA/2026/260526.pdf
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
The Silent Ransom Group (SRG), also tracked as Luna Moth, Chatty Spider, and UNC3753, is targeting law firms through social engineering campaigns.
SRG actors commonly impersonate IT support through phone calls and phishing emails to gain access to victim systems. Once access is established, they exfiltrate data using legitimate remote access tools or, in some cases, by sending someone to the victim organization’s physical location to access computers directly.
Although SRG has impacted organizations across sectors such as insurance, finance, and healthcare, the group has maintained a consistent focus on U.S.-based law firms since spring 2023.
PDF: https://www.ic3.gov/CSA/2026/260526.pdf
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
‼️ Qilin Ransomware Claims 4 Victims
🇬🇧 William Davis Homes
🇺🇸 Roofing Solutions
🇺🇸 Shocco Springs
🇺🇸 Mainstreet Organization of Realtors
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations
🇬🇧 William Davis Homes
🇺🇸 Roofing Solutions
🇺🇸 Shocco Springs
🇺🇸 Mainstreet Organization of Realtors
________________________________________
Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations