Topic: dark web
-
Google's Dark Web Report Tool Shuts Down After a Year
Google is discontinuing its free Dark Web Report tool, with a full shutdown on February 16, 2026, as part of a strategic shift toward more actionable security guidance. The tool, which scanned for users' email addresses on illicit dark web sites, was criticized for not providing clear, practical ...
Read More » -
Uncover Dark Web Threats on Your Network with NDR
Cybersecurity teams combat dark web threats like ransomware and data theft by using Network Detection and Response (NDR) systems to identify hidden clues in network traffic. NDR platforms provide real-time monitoring with AI and machine learning to detect malicious activities, reduce response tim...
Read More » -
Proton: 300 Million Records Breached This Year
A staggering 300 million individual records have been exposed in data breaches this year, according to the Data Breach Observatory, a collaboration between Proton and Constella Intelligence. Small and medium-sized businesses were the primary targets, with nearly half of all breaches affecting com...
Read More » -
Hacker Steals 2.3TB of Data from Italian Rail Giant Almaviva
A threat actor stole 2.3 terabytes of sensitive corporate data from Almaviva, a service provider for Italy's state-owned railway operator, and published it on a dark web forum. The leaked data includes confidential documents, internal files, HR archives, and contracts, with analysis confirming it...
Read More » -
1 Billion Records Stolen in Salesforce Data Breach
A hacking collective known as ShinyHunters has stolen approximately one billion customer records from Salesforce-hosted cloud databases and is threatening to publish the data unless ransom demands are met. High-profile companies including Allianz Life, Google, Kering, Qantas, Stellantis, TransUni...
Read More » -
Toys "R" Us Canada Data Breach Exposes Customer Information
Toys "R" Us Canada experienced a data breach where unauthorized individuals accessed and distributed customer information, discovered on July 30, 2025, via a dark web posting. The compromised data includes personal details like names, addresses, emails, and phone numbers, but sensitive financial ...
Read More » -
The Economics Fueling Global Ransomware
Ransomware has evolved into a sophisticated criminal business model, projected to cause $10.5 trillion in global economic losses by 2025, driven by professional networks and Ransomware-as-a-Service (RaaS) that lower entry barriers for attackers. Attackers employ double and triple extortion tactic...
Read More » -
FBI Shuts Down BreachForums in Salesforce Extortion Case
Federal authorities, in a joint U.S.-French operation, seized the BreachForums domain used by the ShinyHunters collective to extort businesses affected by Salesforce data theft, redirecting it to FBI-controlled infrastructure. The ShinyHunters group confirmed that law enforcement gained control o...
Read More » -
Salesforce Blames Social Engineering for Ransomware Breaches
The hacker group Shiny Hunters claims to have stolen nearly one billion records from Salesforce and is demanding ransom from 39 companies, threatening to release the data by October 10, 2025, if not paid. Salesforce denies its platform was breached, attributing the data loss to social engineering...
Read More » -
MFA Bypass Leads to Major Infostealer Attack on 50 Firms
A major data breach affecting around 50 global companies was enabled by the lack of multi-factor authentication (MFA), allowing an attacker to use stolen credentials for cloud file-sharing platforms. The attacker, using credentials harvested by infostealer malware, accessed accounts where passwor...
Read More » -
OnSolve CodeRED System Hit by Cyber-Attack, Disrupting Emergency Alerts
A cybersecurity breach compromised the OnSolve CodeRED platform, disrupting emergency alerts and leading to the theft of user data, including names, addresses, and passwords. The INC Ransom group claimed responsibility for the attack, which targeted the legacy system and resulted in encrypted fil...
Read More » -
London Police Arrest Suspects in Nursery Data Breach, Child Doxing Case
London's Metropolitan Police arrested two 17-year-olds in connection with a ransomware attack on Kido nurseries, which exposed sensitive data of children and families. The cybercrime group Radiant Group claimed responsibility, stealing and publishing private information to extort money, but remov...
Read More » -
Panama Economy Ministry Confirms INC Ransomware Attack
The Ministry of Economy and Finance in Panama experienced a cybersecurity incident on a single workstation, but core systems and operations remain unaffected. The INC Ransom group has claimed responsibility, alleging they stole over 1.5 terabytes of sensitive data including financial records and ...
Read More » -
DraftKings Users Hit by Widespread Account Hacks
DraftKings experienced unauthorized account access through a credential stuffing attack, where attackers used stolen login details from external sources to compromise user accounts. The breach exposed personal details like names and contact information, but sensitive data such as full payment car...
Read More » -
Korean Air Data Breach: Thousands of Employee Records Exposed
The data breach originated at Korean Air's former subsidiary and current supplier, KC&D, compromising employee names and bank account numbers from its ERP system, with reports indicating around 30,000 records were affected. Korean Air has reported the incident, warned employees to be vigilant aga...
Read More » -
Barts Health Takes Legal Action After Oracle Data Breach
Barts Health NHS Trust is seeking a High Court injunction to prevent the use of data stolen by the Cl0p ransomware gang, which includes names and addresses from billing records. The breach exploited unpatched vulnerabilities in Oracle E-Business Suite software, part of a wider global campaign aff...
Read More » -
Dartmouth College Hit by Clop Ransomware Data Breach
Dartmouth College experienced a data breach by the Clop ransomware group, which exploited a zero-day vulnerability in Oracle E-Business Suite to steal personal data, including names and Social Security numbers. The breach affected at least 1,494 individuals, with financial account details also co...
Read More » -
Hackers Extort 39 Victims With New Data Leak Site
A new cybercriminal group, Scattered Lapsus$ Hunters, is extorting nearly 40 major corporations by threatening to leak stolen data from Salesforce databases obtained through social engineering. The stolen data includes personal and contact details, sensitive information like Social Security numbe...
Read More » -
Data Breach Hits 766K Car Dealership Customers
A ransomware attack on Motility Software Solutions compromised the personal data of approximately 766,000 customers, affecting dealerships that use their management systems and highlighting risks from third-party software dependencies. The breach occurred on August 19, 2025, when hackers encrypte...
Read More » -
X's Grok Paywall Fails to Block Free Image Editing
The Grok chatbot's prompts led users to believe a paywall for its AI image-editing tools was in effect, but unsubscribed users can still easily access these features through simple workarounds on the desktop site. Despite public statements, the platform's restrictions are superficial, as harmful ...
Read More » -
University of Pennsylvania Discloses New Data Breach Following Oracle Hack
The University of Pennsylvania suffered a data breach after attackers exploited a zero-day flaw in Oracle's financial software, compromising personal information and linking the incident to the Clop ransomware gang's extortion campaign. While the university officially notified 1,488 affected indi...
Read More » -
French Agency Pajemploi Data Breach Exposes 1.2 Million Users
A data breach at France's Pajemploi platform has compromised the personal information of 1.2 million users, primarily affecting professional caregivers and their employers using the URSSAF-managed service. Exposed data includes names, social security numbers, and banking institution details, but ...
Read More » -
Pennsylvania AG Confirms Data Breach in INC Ransom Attack
The Pennsylvania Attorney General's office experienced a ransomware attack in August 2025, leading to a data breach where cybercriminals stole sensitive personal and medical information, but officials refused to pay the ransom. The attack exploited vulnerabilities in public-facing Citrix NetScale...
Read More » -
Cox Enterprises Hit by Oracle EBS Data Breach
Cox Enterprises suffered a data breach after hackers exploited a zero-day vulnerability in Oracle's E-Business Suite, compromising personal information of thousands and delaying detection until weeks after the attack. The Cl0p ransomware group claimed responsibility, known for weaponizing undisco...
Read More »