🚨🇵🇪 DIRANDRO (Peruvian National Police) allegedly targeted by L4TAMFUCK3RS

A threat actor group on an underground forum, identifying as L4TAMFUCK3RS, is claiming to sell a full database allegedly originating from DIRANDRO, the specialized anti-drug-trafficking division of the Peruvian National Police (Policía Nacional del Perú). The actors claim all police/military personnel records are included.

The actors claim the database contains roughly 300K folders (people) totaling about 7.8 GB.

𝗪𝗵𝗮𝘁'𝘀 𝗮𝗹𝗹𝗲𝗴𝗲𝗱𝗹𝘆 𝗲𝘅𝗽𝗼𝘀𝗲𝗱:

• Full names, surnames, national ID numbers (DNI), and police ID codes (CIP)
• Dates of birth, gender, marital status, education level
• Parents' full names
• Full residential addresses
• Civil registry data and identification codes (NIF)
• Police intervention/operation details and incident narratives
• Exact event coordinates and penitentiary facility references
• Seized substance details and evidence labels
• Detained individuals' names, ages, and DNI numbers
• Document metadata and institutional info (PNP, INPE, Public Prosecutor)
• Internal personnel records (CIP, DNI, names, registration dates)
• Scanned national ID document images and photographs
• Military-related records

𝗗𝗲𝘁𝗮𝗶𝗹𝘀:

𝗧𝗮𝗿𝗴𝗲𝘁: DIRANDRO (Policía Nacional del Perú)
𝗖𝗼𝘂𝗻𝘁𝗿𝘆: Peru 🇵🇪
𝗦𝗲𝗰𝘁𝗼𝗿: Government / Law Enforcement
𝗔𝗰𝘁𝗼𝗿: cantpwn (L4TAMFUCK3RS)
𝗖𝗹𝗮𝗶𝗺: Full police database for sale
𝗘𝘅𝗽𝗼𝘀𝘂𝗿𝗲: ~300K folders/people (~7.8 GB)
𝗣𝗿𝗶𝗰𝗲: $700
𝗢𝗯𝘀𝗲𝗿𝘃𝗲𝗱: May 31, 2026

💥 Stop guessing what's redacted. Paid subscribers see everything: darkwebinformer.com/pricing
________________________________________

Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations

🚨🇹🇷 Goknur Gida allegedly targeted in 10.7 TB breach with a ransom of 25 BTC

A threat actor on an underground forum is claiming to sell data allegedly originating from Goknur Gida A.Ş., a Turkish food and beverage manufacturer. The actor claims to have compromised the company's infrastructure including Active Directory, SCADA/PLC systems, and virtualization environment.

The actor claims the breach totals roughly 10.7 TB, including 5.2 TB of backups, 3.3 TB of file servers, and 2.2 TB of user data and documents.

𝗪𝗵𝗮𝘁'𝘀 𝗮𝗹𝗹𝗲𝗴𝗲𝗱𝗹𝘆 𝗲𝘅𝗽𝗼𝘀𝗲𝗱:

• Active Directory architecture and NTDS.dit dumps
• SCADA, PLC, and RTU configurations
• Network device, ESXi, and virtualization infrastructure data
• Customer information, contracts, and commercial data
• Bank account information, financial records, and cash flow
• Employee salary sheets, Turkish ID numbers, and authentication data
• Employee passport information
• Employee and executive phone numbers and contact directory
• Production recipes, formulas, and industrial know-how
• Product designs, CAD drawings, R&D data, and patents
• Supply chain, procurement, and logistics data
• Raw material, inventory, and stock management databases
• ERP and CRM systems
• IT infrastructure, backups, cybersecurity protocols, and firewall rules
• Subcontractor, distributor, dealer, and service provider contracts

𝗗𝗲𝘁𝗮𝗶𝗹𝘀:

𝗧𝗮𝗿𝗴𝗲𝘁: Goknur Gida A.Ş.
𝗖𝗼𝘂𝗻𝘁𝗿𝘆: Turkey 🇹🇷
𝗦𝗲𝗰𝘁𝗼𝗿: Food and Beverage / Manufacturing
𝗔𝗰𝘁𝗼𝗿: DreamFyre
𝗖𝗹𝗮𝗶𝗺: Full infrastructure breach for sale
𝗘𝘅𝗽𝗼𝘀𝘂𝗿𝗲: ~10.7 TB
𝗣𝗿𝗶𝗰𝗲: 25 BTC
𝗢𝗯𝘀𝗲𝗿𝘃𝗲𝗱: June 1, 2026

💥 Stop guessing what's redacted. Paid subscribers see everything: darkwebinformer.com/pricing
________________________________________

Main Channel: https://t.me/SliceForLifeee
Backup Channel: https://t.me/SliceForLifeeee
Website: darkwebinformer.com
Pricing (Includes Crypto): darkwebinformer.com/pricing
API Access: darkwebinformer.com/api-details
Socials: darkwebinformer.com/socials
Donations: darkwebinformer.com/donations