Nostr notes by Dark Web Informer :verified_paw:

‼️🇰🇼 A data set allegedly from Zain Kuwait, a major ...

2026-02-11T16:41:24Z

‼️🇰🇼 A data set allegedly from Zain Kuwait, a major telecommunications provider, has been posted for sale containing 3,849,601 subscriber records totaling 11.3GB in JSON format.

The breach is dated 2026 and includes subscriber numbers, owner names, and associate names. Sample data shows Arabic-language subscriber records with phone numbers, verification status, and spam flags.

The seller offers tiered pricing in Monero: 15 XMR for takedown, 10 XMR for exclusive purchase with deletion, 5 XMR for non-exclusive access, or 2 XMR for the scraping exploit itself.

Story of my life. 😭 ...

2026-02-10T20:02:46Z

Story of my life. 😭

‼️ Dutch authorities just seized one Windscribe VPN server ...

2026-02-06T00:20:50Z

‼️ Dutch authorities just seized one Windscribe VPN server without a warrant, claiming they'll return it after they "fully analyze it."

They say their real concern "is the unredacted Epstein files we had on there..."

‼️ An international law enforcement operation called ...

2026-01-30T16:48:13Z

‼️ An international law enforcement operation called "Operation Switch off" has concluded, targeting what authorities describe as a large-scale illegal IPTV streaming network.

Led by Italy's Catania Public Prosecutor's Office and coordinated through Eurojust, Europol, and Interpol, the investigation identified 31 individuals allegedly connected to a transnational criminal organization. The suspects face accusations including unauthorized broadcasting of access-controlled content, computer fraud, and money laundering.

According to investigators, the network captured and redistributed live broadcasts and on-demand content from major platforms including Sky, DAZN, Amazon Prime, Netflix, Paramount, and Disney+, allegedly serving millions of users worldwide.

More than 100 Italian Postal Police officers executed searches across 11 Italian cities and 14 international locations, with cooperation from authorities in the United Kingdom, Spain, Romania, Kosovo, Canada, India, South Korea, and the United Arab Emirates.

The year-long investigation built on intelligence from a previous operation called "Taken Down." Authorities allege the suspects used cryptocurrency investments, shell companies, and fictitious asset registrations to obscure proceeds that reportedly generated millions of euros monthly.

The operation disrupted approximately 1,000 Italian resellers and cut service to over 100,000 end users in Italy, with millions more affected globally. Three illegal IPTV platforms were seized in Italy, while investigators in Romania identified a significant distribution operation running six servers.

The original video is in 360p. Source: https://www.poliziadistato.it/articolo/166979f86bd0846335000880

Clawdbot: A personal AI assistant you run on your own devices. ...

2026-01-25T01:58:07Z

Clawdbot: A personal AI assistant you run on your own devices.

GitHub: https://github.com/clawdbot/clawdbot

Clawdbot answers you on the channels you already use (WhatsApp, Telegram, Slack, Discord, Google Chat, Signal, iMessage, Microsoft Teams, WebChat), plus extension channels like BlueBubbles, Matrix, Zalo, and Zalo Personal. It can speak and listen on macOS/iOS/Android, and can render a live Canvas you control.

‼️Microsoft reportedly provided the FBI with a set of ...

2026-01-23T21:20:57Z

‼️Microsoft reportedly provided the FBI with a set of BitLocker encryption keys that allowed investigators to unlock laptops belonging to criminal suspects, according to reports.

https://techcrunch.com/2026/01/23/microsoft-gave-fbi-a-set-of-bitlocker-encryption-keys-to-unlock-suspects-laptops-reports

The case centered on multiple individuals suspected of committing fraud tied to the Pandemic Unemployment Assistance program in Guam, a U.S. territory in the Pacific.

A Hacker Shares His Biggest Fears A white hat hacker, a ...

2026-01-15T23:32:44Z

A Hacker Shares His Biggest Fears

A white hat hacker, a cybersecurity analyst with more than 30 years of experience at a major Silicon Valley firm, reflects on why he walked away from black hat hacking to use his skills for the greater good.

He explains the unsettling truth about how vulnerable modern systems really are, from the possibility of attackers crippling the American power grid or shutting down critical medical facilities to how effortlessly someone with nothing more than WiFi and spare time can access private information most people assume is secure.

Video Credit: youtube.com/@VICE
Video Date: August 11th, 2021

A hacker going by the name Martha Root... takes down a white ...

2026-01-03T00:05:42Z

A hacker going by the name Martha Root... takes down a white supremacist dating website and leaks all of the data. Good f*cking shit @BackTwoTheRoot!

okstupid[.]lol

https://x.com/DarkWebInformer/status/2007241716831793170

KeePassXC: A modern, secure, and open-source password manager ...

2025-12-26T19:12:21Z

KeePassXC: A modern, secure, and open-source password manager that stores and manages your most sensitive information.

GitHub: https://github.com/keepassxreboot/keepassxc

Highly recommended!

🚨 AWS is currently having an outage. Many services are being ...

2025-12-25T02:44:29Z

🚨 AWS is currently having an outage. Many services are being affected by it; Arc Raiders, Fortnite, Steam, Rocket League, Epic Games, Embark Studios, PlayStation Network, etc.

Happy Holidays!

Anubis: A Web AI Firewall Utility that weighs the soul of your ...

2025-12-23T17:49:11Z

Anubis: A Web AI Firewall Utility that weighs the soul of your connection using one or more challenges in order to protect upstream resources from scraper bots.

GitHub: https://github.com/TecharoHQ/anubis

Docs: https://anubis.techaro.lol/

🚨 Ledger, Binance, Coinbase, Gemini, and Kraken User Leads For ...

2025-12-13T20:12:45Z

🚨 Ledger, Binance, Coinbase, Gemini, and Kraken User Leads For Sale on a Hacker Forum

Silent.Link: Buy global mobile 4G/5G Internet access and burner ...

2025-12-08T19:48:47Z

Silent.Link: Buy global mobile 4G/5G Internet access and burner phone numbers instantly and privately on any modern eSIM-compatible smartphone.

KYC: Terms explicitly state KYC will never be requested.
X: @silentlink1
Payment: Monero (XMR), Bitcoin (BTC), Lightning

Clearnet: https://silent.link

Dark Web: http://silentlnit5ryavvfz5vw7s4qg62jujd666lnc4tg2chj64zuwuqtvqd[.]onion

Dread: "As a vendor, LE is trying to attack OPSEC via direct ...

2025-12-02T23:33:45Z

Dread: "As a vendor, LE is trying to attack OPSEC via direct deals with BTC. Just a warning for all vendors."

Thread: https://dreadytofatroptsdj6io7l3xptbet6onoyno2yv7jicoxknyazubrad[.]onion/post/6151bf0dbac72e4800a1

Never seems to get old. ...

2025-11-24T19:59:48Z

Never seems to get old.

🚨Claimed Bulk Auction of 800 Fullz With 70% Validity Rate ...

2025-11-16T20:33:01Z

🚨Claimed Bulk Auction of 800 Fullz With 70% Validity Rate

Ransomware Attack Update for the 12th of November 2025 ...

2025-11-12T23:16:03Z

Ransomware Attack Update for the 12th of November 2025

https://darkwebinformer.com/ransomware-attack-update-for-the-12th-of-november-2025/

It's 1995 & you startup a 486DX Video Credit: ...

2025-11-12T17:35:25Z

It's 1995 & you startup a 486DX

Video Credit: youtube.com/@PCUSER486

🚨RansomHouse Ransomware claims 3 victims 🇫🇮 Octomeca Oy ...

2025-11-11T17:32:04Z

🚨RansomHouse Ransomware claims 3 victims

🇫🇮 Octomeca Oy
🇵🇭 Public Safety Mutual Benefit Fund
🇲🇹 Polidano Group

Just a reminder that there is an informative secure messaging ...

2025-11-06T22:48:09Z

Just a reminder that there is an informative secure messaging comparison website. https://www.securemessagingapps.com/

Filter out the ones that are not privacy friendly... Google, Apple, Facebook, Twitter, etc.

⚠️NaviChat: "A tor-based messaging platform with ...

2025-11-06T22:34:14Z

⚠️NaviChat: "A tor-based messaging platform with end-to-end encryption and no logging."

Onion: http://navi5jbi3apijnyvp5ck6q4n656niqt4jrleiwb2eeaokonfxs22wiid[.]onion

🚨 Claimed Leak of Data of ISIS ...

2025-11-06T22:16:32Z

🚨 Claimed Leak of Data of ISIS

Why can't some of you just take the time to read the DNM ...

2025-11-06T22:08:45Z

Why can't some of you just take the time to read the DNM Bible? It's literally not that difficult. https://github.com/DarkWebInformer/dnmbible

Thread: https://dreadytofatroptsdj6io7l3xptbet6onoyno2yv7jicoxknyazubrad[.]onion/post/2d0e1855371d862d13cb

Check Point has a Halloween inspired Threat Map going on. Pretty ...

2025-11-01T00:04:18Z

Check Point has a Halloween inspired Threat Map going on. Pretty neat.

https://darkwebinformer.com/check-point-live-cyber-threat-map/

Lol, wtf... currently the Aisuru botnet C2 domain is ranked #1 in ...

2025-10-29T23:38:40Z

Lol, wtf... currently the Aisuru botnet C2 domain is ranked #1 in the world of top domains.

🚨 Microsoft is currently investigating a world wide outage ...

2025-10-29T17:01:06Z

🚨 Microsoft is currently investigating a world wide outage related to DNS.

https://x.com/MSFT365Status/status/1983571232122671591

CypherGoat: Swap your crypto at the beeest rate on the market. ...

2025-10-22T19:11:02Z

CypherGoat: Swap your crypto at the beeest rate on the market. Fast, private, and open source.

Clearnet: https://cyphergoat.com

Onion: https://cyphergmw4huw7jzhat3misfm5jj2m4nvafockqbj7i5rrlec6mobdid[.]onion

I2P: http://cjorx2hmv3jxs5sshxhw73nmkiayupim6gfye3sfts2pzmjgk5rq.b32.i2p

🚨🇺🇸 Alleged Sale of RDP Access to US Business Services ...

2025-10-19T21:39:37Z

🚨🇺🇸 Alleged Sale of RDP Access to US Business Services Company

🚨Alleged Sale of Admin Access to Magento 2 website ...

2025-10-19T20:34:31Z

🚨Alleged Sale of Admin Access to Magento 2 website

🚨CVE-2025-38001: Linux HFSC Eltree Use-After-Free - Debian 12 ...

2025-10-19T19:02:18Z

🚨CVE-2025-38001: Linux HFSC Eltree Use-After-Free - Debian 12 PoC

GitHub: https://github.com/0xdevil/CVE-2025-38001

Bounty: $82,000

Write-up: https://syst3mfailure.io/rbtree-family-drama/

🚨🇺🇸 Alleged sale of 1,700,000,000 Facebook scrapped data ...

2025-10-19T18:36:57Z

🚨🇺🇸 Alleged sale of 1,700,000,000 Facebook scrapped data including ID, gender, DOB, place, relationship, and friends count

🚨🇺🇸 Alleged sale of 1,700,000,000 Facebook scrapped data ...

2025-10-19T18:33:18Z

🚨🇺🇸 Alleged sale of 1,700,000,000 Facebook scrapped data including ID, gender, DOB, place, relationship, and friends count

🚨 Alleged Data Breach of CyberCoders.com Exposing 35 Million ...

2025-10-19T17:03:10Z

🚨 Alleged Data Breach of CyberCoders.com Exposing 35 Million Records

📌 United States

• Industry: Recruitment / Technology
• Threat Actor: wikkid
• Network: Clearnet

Details: Threat actor wikkid is claiming responsibility for a massive data breach affecting CyberCoders.com, a U.S.-based recruiting and staffing platform connecting employers with professionals in tech, finance, engineering, and healthcare sectors.
The leak reportedly includes 35 million records across multiple datasets containing full names, email addresses, phone numbers, employment and education histories, salary details, and security clearance data.

Files listed include:

candidates.jsonl – 32.8M records
emails.jsonl – 27.7M records
resumes.jsonl – 10.3M records

Total size: 274 GB uncompressed (38 GB compressed).

🚨Qilin Ransomware has claimed 26 Victims 🇬🇧 JA Jennings ...

2025-10-19T16:46:16Z

🚨Qilin Ransomware has claimed 26 Victims

🇬🇧 JA Jennings
🇲🇽 BIOPHARMEX, SA de CV
🇨🇦 Stephenson's Rental Services
🇬🇧 London Women's Clinic
🇺🇸 Scales Sales & Service
🌐 Laloma
🇺🇸 Khatami Law
🌐 SANgel
🇺🇸 Kudela & Weinheimer
🇪🇸 Distribuciones Camba
🇵🇱 Klima-Therm
🇺🇸 The Blood and Marrow Transplant Group of Georgia
🇺🇸 Platinum Wines & Spirits
🌐 Sports Medicine and Orthopaedics
🇺🇸 Winholt Equipment Group
🇺🇸 All Weather Architectural Aluminum
🇨🇿 Wassa, SRO
🇺🇸 SIGN Fracture Care International
🇺🇸 Indian Spring Country Club
🇨🇦 Grande Prairie Public Library
🇺🇸 BARCO Rent-A-Truck
🇫🇮 Octomeca OY
🇬🇧 Gas Generator Solutions
🇺🇸 Cellini Design Center
🌐 Stowaway Storage
🇺🇸 Long Island Weight Loss Institute

Hackers are exploiting a 0-day vulnerability in Windows Remote ...

2025-10-19T03:12:36Z

Hackers are exploiting a 0-day vulnerability in Windows Remote Access Connection Manager in ongoing attacks.

CVE: CVE-2025-59230

https://gbhackers.com/hackers-exploit-windows-remote-access-connection-manager-0-day/

It’s more peaceful when everything is private. #privacy ...

2025-10-18T23:22:13Z

It’s more peaceful when everything is private. #privacy

Stay Connected with Dark Web Informer Get full access to ...

2025-10-18T21:26:34Z

In reply to nevent1q…lamc
_________________________

Stay Connected with Dark Web Informer

Get full access to exclusive intelligence, unredacted screenshots, claim URLs, early alerts and more at darkwebinformer.com

Join Telegram: t.me/SliceForLife🔪

Follow the X Bot for More Intel: x.com/DarkWebIntelBot

🚨🇵🇪 MC INVERSIONES INMOBILIARIAS Construction Company ...

2025-10-18T21:26:25Z

🚨🇵🇪 MC INVERSIONES INMOBILIARIAS Construction Company has Fallen Victim to RADAR Ransomware

🚨TK HOLDINGS GROUP has been Claimed a Victim to RADAR ...

2025-10-18T20:36:23Z

🚨TK HOLDINGS GROUP has been Claimed a Victim to RADAR Ransomware

Stay Connected with Dark Web Informer Get full access to ...

2025-10-18T20:23:39Z

In reply to nevent1q…ty72
_________________________

Stay Connected with Dark Web Informer

Get full access to exclusive intelligence, unredacted screenshots, claim URLs, early alerts and more at darkwebinformer.com

Join Telegram: t.me/SliceForLife🔪

Follow the X Bot for More Intel: x.com/DarkWebIntelBot

Also updated the Threat Intelligence Analytics currently for ...

2025-10-18T20:23:17Z

Also updated the Threat Intelligence Analytics currently for Elite subscribers. It should be easier to view the onions on the below graph. I also expanded all of the other graphs for better viewing. Still working on a better view and more features.

https://darkwebinformer.com/threat-intelligence-analytics/

Stay Connected with Dark Web Informer Get full access to ...

2025-10-18T19:42:40Z

In reply to nevent1q…vgxh
_________________________

Stay Connected with Dark Web Informer

Get full access to exclusive intelligence, unredacted screenshots, claim URLs, early alerts and more at darkwebinformer.com

Join Telegram: t.me/SliceForLife🔪

Follow the X Bot for More Intel: x.com/DarkWebIntelBot

If you are an Elite subscriber, I made a lot of bug fixes to the ...

2025-10-18T19:42:28Z

If you are an Elite subscriber, I made a lot of bug fixes to the Darknet Markets Timeline. There is still some inconsistencies and bugs but the flow is a lot better. 2024 and 2025 are the remaining years to be added.

https://darkwebinformer.com/darknet-markets-timeline/

Stay Connected with Dark Web Informer Get full access to ...

2025-10-18T19:09:06Z

In reply to nevent1q…sata
_________________________

Stay Connected with Dark Web Informer

Get full access to exclusive intelligence, unredacted screenshots, claim URLs, early alerts and more at darkwebinformer.com

Join Telegram: t.me/SliceForLife🔪

Follow the X Bot for More Intel: x.com/DarkWebIntelBot

🚨CVE-2025-21420: Proof of Concept for Windows Disk Cleanup ...

2025-10-18T19:09:04Z

🚨CVE-2025-21420: Proof of Concept for Windows Disk Cleanup Tool EoP

GitHub: https://github.com/moiz-2x/CVE-2025-21420_POC

🚨CVE-2025-49144: A high-severity local privilege escalation ...

2025-10-18T17:09:11Z

🚨CVE-2025-49144: A high-severity local privilege escalation flaw in the Notepad++ installer affecting version 8.8.1 and earlier.

GitHub: https://github.com/TheTorjanCaptain/CVE-2025-49144_PoC

🚨Alleged Data Breach Exposing 1.5 Million Israeli Settlers ...

2025-10-18T16:54:06Z

🚨Alleged Data Breach Exposing 1.5 Million Israeli Settlers

🚨Claimed Sale of Advanced Phishlets ...

2025-10-18T16:44:22Z

🚨Claimed Sale of Advanced Phishlets

🚨AirBorne: Full PoC Framework for CVE-2025-24252 & ...

2025-10-18T01:33:12Z

🚨AirBorne: Full PoC Framework for CVE-2025-24252 & CVE-2025-24132

AirBorne is a combined proof-of-concept (PoC) framework targeting two serious vulnerabilities in Apple's AirPlay service.

GitHub: https://github.com/ekomsSavior/AirBorne-PoC

New Ransomware Note: Kyber ...

2025-10-17T23:54:18Z

New Ransomware Note: Kyber

https://darkwebinformer.com/ransom-notes/

🚨Colins Aerospace / RTX.com have been claimed by Everest ...

2025-10-17T21:32:23Z

🚨Colins Aerospace / RTX.com have been claimed by Everest Ransomware

Some of you are paranoid af. At least the comments are funny. ...

2025-10-17T21:00:56Z

Some of you are paranoid af. At least the comments are funny.

https://www.reddit.com/r/darknet/comments/1o5hdd9/tracking/

Getting closer on the layout being done, and fixing some minor ...

2025-10-17T20:33:43Z

Getting closer on the layout being done, and fixing some minor CSS issues, then just need to add the content. Still looking good for next week. Will definitely be adding features on to this.

🚨PoC & Exploit for CVE-2025-32023 / PlaidCTF 2025 ...

2025-10-17T18:01:12Z

🚨PoC & Exploit for CVE-2025-32023 / PlaidCTF 2025 "Zerodeo"

GitHub: https://github.com/leesh3288/CVE-2025-32023

Advisory: https://github.com/redis/redis/security/advisories/GHSA-rp2m-q4j6-gr43

🚨🇺🇸 Alleged Data Breach of TripWorks ...

2025-10-17T17:23:54Z

🚨🇺🇸 Alleged Data Breach of TripWorks

https://darkwebinformer.com/alleged-data-breach-of-tripworks/

🚨Alleged sale of ATM cash‑out platform called “Cutlet ...

2025-10-17T16:43:05Z

🚨Alleged sale of ATM cash‑out platform called “Cutlet Maker"

🚨🇬🇧 Alleged Data Breach of University of Oxford ...

2025-10-17T16:17:31Z

🚨🇬🇧 Alleged Data Breach of University of Oxford

Looks like X is going to start to allow you to acquire handles. ...

2025-10-16T23:51:34Z

Looks like X is going to start to allow you to acquire handles. This is currently a Premium Business feature.

The domain: https://handles.x.com

My main Telegram account and the Telegram channel (Phasyr) were ...

2025-10-16T22:40:43Z

My main Telegram account and the Telegram channel (Phasyr) were both just banned... again.

🚨🇬🇧 BMP Europe Ltd has Fallen Victim to PLAY Ransomware ...

2025-10-16T20:20:59Z

🚨🇬🇧 BMP Europe Ltd has Fallen Victim to PLAY Ransomware

🚨🇺🇸 CL0P Ransomware has Published Data of American ...

2025-10-16T20:06:45Z

🚨🇺🇸 CL0P Ransomware has Published Data of American Airlines

Working on a seizure archive page of verified and unverified ...

2025-10-16T18:37:39Z

Working on a seizure archive page of verified and unverified seizures. It's almost done. There is some things that need to be adjusted CSS wise, as well as adding articles, images, etc. Hoping for this to be ready next week!

🚨CVE-2025-24071 // CVE-2025-24054: PoC for NTLM Hash Leak via ...

2025-10-16T17:00:10Z

🚨CVE-2025-24071 // CVE-2025-24054: PoC for NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File

Write-up: https://cti.monster/blog/2025/03/18/CVE-2025-24071.html

GitHub: https://github.com/0x6rss/CVE-2025-24071_PoC

⚠️Dread: Rate my OpSec 2.5/10 Thread: ...

2025-10-16T16:08:44Z

⚠️Dread: Rate my OpSec

2.5/10

Thread: https://dreadytofatroptsdj6io7l3xptbet6onoyno2yv7jicoxknyazubrad[.]onion/post/247a8b022fed66e9b89d

🚨🇪🇸 Alleged Data Sale of University of Cádiz ...

2025-10-16T15:07:28Z

🚨🇪🇸 Alleged Data Sale of University of Cádiz

Massachusetts Man Sentenced to Four Years for PowerSchool Hacking ...

2025-10-15T22:51:03Z

Massachusetts Man Sentenced to Four Years for PowerSchool Hacking Incident

https://www.reuters.com/legal/government/massachusetts-man-behind-powerschool-hacking-gets-4-years-prison-2025-10-14/

Matthew Lane, 20, was sentenced by U.S. District Judge Margaret Guzman in Worcester, Massachusetts, after pleading guilty in June to charges stemming from the hacking of two companies, one of which was PowerSchool, based in Folsom, California.

Judgement (PDF): https://s3.documentcloud.org/documents/26187692/matthew-lane-judgement-095113233744.pdf

🚨🇪🇸 Alleged Ransomware Claim of Agencia Tributaria ...

2025-10-15T22:38:02Z

🚨🇪🇸 Alleged Ransomware Claim of Agencia Tributaria (Spanish Tax Administration Agency)

📌 Spain

• Industry: Government / Taxation
• Threat Actor: Qilin
• Network: Dark Web

Details: The ransomware group Qilin has allegedly claimed responsibility for breaching Spain’s Agencia Tributaria, the national tax agency responsible for managing tax and customs systems. The listing indicates 238,799 files totaling 60 GB, alongside 16 leaked screenshots. The agency, which operates with over 26,000 employees and an annual budget of $1.5 billion, is responsible for tax enforcement and collection for both national and EU resources.

Daily Dose of Dark Web Informer - 15th of October 2025 ...

2025-10-15T22:24:12Z

Daily Dose of Dark Web Informer - 15th of October 2025

https://darkwebinformer.com/daily-dose-of-dark-web-informer-15th-of-october-2025/

Ransomware Attack Update for the 15th of October 2025 ...

2025-10-15T21:45:07Z

Ransomware Attack Update for the 15th of October 2025

https://darkwebinformer.com/ransomware-attack-update-for-the-15th-of-october-2025/

SLSH updated their Onion site with the following message and new ...

2025-10-15T20:37:37Z

SLSH updated their Onion site with the following message and new Telegram.

🚨PLAY Ransomware Claims 5 Victims 🇺🇸 Royal Thai 🇺🇸 ...

2025-10-15T20:00:41Z

🚨PLAY Ransomware Claims 5 Victims

🇺🇸 Royal Thai
🇺🇸 Koch & White Heating & Cooling
🇺🇸 Legacy Manufacturing
🇺🇸 Global Shop Solutions
🇺🇸 Cellucap Manufacturing

🚨ShinyHunters clearnet now directs to the following message ...

2025-10-15T18:20:51Z

🚨ShinyHunters clearnet now directs to the following message under the Cloudflare DNS.

⚠️Dread: Rate my OpSec 1/10 Thread: ...

2025-10-15T17:48:15Z

⚠️Dread: Rate my OpSec

1/10

Thread: https://dreadytofatroptsdj6io7l3xptbet6onoyno2yv7jicoxknyazubrad[.]onion/post/cc4621f5ee45577d134b

🚨CVE-2025-33073: PoC Exploit for the NTLM reflection SMB flaw ...

2025-10-15T17:27:20Z

🚨CVE-2025-33073: PoC Exploit for the NTLM reflection SMB flaw

GitHub: https://github.com/mverschu/CVE-2025-33073

▪️GUI (Screenshot 1)
▪️CLI (2)
▪️Custom command (3)
▪️SOCKS (4)

🚨🇺🇸 East Jefferson General Hospital has Fallen Victim to ...

2025-10-15T17:03:56Z

🚨🇺🇸 East Jefferson General Hospital has Fallen Victim to Sinobi Ransomware

🚨 Alleged Sale of Tron and EVM Crypto Drainer Tool ...

2025-10-15T16:51:17Z

🚨 Alleged Sale of Tron and EVM Crypto Drainer Tool

🚨🇺🇸 U.S. Identity Data Sold on a Popular Forum; Fullz, ...

2025-10-15T16:21:44Z

🚨🇺🇸 U.S. Identity Data Sold on a Popular Forum; Fullz, SSN, DL, EIN, More

https://darkwebinformer.com/u-s-identity-data-sold-on-a-popular-forum-fullz-ssn-dl-ein-more/

🚨🇺🇸 Navigator Business Solutions (NBS) has Fallen Victim ...

2025-10-15T16:00:03Z

🚨🇺🇸 Navigator Business Solutions (NBS) has Fallen Victim to PEAR Ransomware

Data Volume: 9.9 TB

🚨🇬🇧 Alleged Data Leak of Teknobuilt ...

2025-10-15T15:52:41Z

🚨🇬🇧 Alleged Data Leak of Teknobuilt

https://darkwebinformer.com/alleged-data-leak-of-teknobuilt/

🚨🇧🇴 Alleged Data Breach of Fiscalía General del Estado ...

2025-10-15T15:39:46Z

🚨🇧🇴 Alleged Data Breach of Fiscalía General del Estado

https://darkwebinformer.com/alleged-data-breach-of-fiscalia-general-del-estado/

🚨🇺🇸 Kearney Public Schools has been Claimed by INTERLOCK ...

2025-10-15T15:17:20Z

🚨🇺🇸 Kearney Public Schools has been Claimed by INTERLOCK Ransomware

Lenovo CVE-2025-8061: PoC for popping a system shell against the ...

2025-10-15T01:53:11Z

Lenovo CVE-2025-8061: PoC for popping a system shell against the LnvMSRIO.sys driver

GitHub: https://github.com/symeonp/Lenovo-CVE-2025-8061

For anyone who uses X, you should be aware of this. ...

2025-10-15T00:06:44Z

For anyone who uses X, you should be aware of this. https://x.com/DarkWebInformer/status/1978249519344091364

🚨🇮🇹 Alleged Sale of Italian Hosting Service Databases ...

2025-10-14T23:29:46Z

🚨🇮🇹 Alleged Sale of Italian Hosting Service Databases Containing 6546 MySQL Entries

📌 Italy

• Industry: Hosting / Infrastructure
• Threat Actor: 010010
• Network: Clearnet

Details: Threat actor 010010 is offering access to an Italian hosting provider’s databases and backups, allegedly spanning 40 servers, 526,193 site backups, 4,631 hosting customer accounts, and 6,546 MySQL databases. The package includes full phpMyAdmin access with root credentials and database dumps totaling 1.33 GB. The seller specifies a price of $1000 (TRC20).

🚨🇫🇷 Volkswagen Group France has Fallen Victim to Qilin ...

2025-10-14T22:06:53Z

🚨🇫🇷 Volkswagen Group France has Fallen Victim to Qilin Ransomware

🚨Qilin Ransomware has so far named 36 victims today. 🌍 ...

2025-10-14T20:51:50Z

🚨Qilin Ransomware has so far named 36 victims today.

🌍 EURORDIS
🌍 PQCNC Hospitals
🇺🇸 UT Health Austin
🇫🇮 ZEF's
🇫🇷 Paris Rétina Vision
🌍 Buldi
🇺🇸 City of Riviera Beach, Florida
🌍 Gittens Healthcare
🌍 Trans-World Shipping Service
🇪🇹 Addis
🇨🇴 Ditransa
🇺🇸 LaRosa's
🇺🇸 McGeorge Architecture Interiors
🇫🇷 Typology
🇦🇷 Sistema Odontológico Privado
🇺🇸 American Journal of Managed Care
🇺🇸 Catawba County Government
🇺🇸 HMP Global
🇺🇸 Morris-Sockle
🌍 Capitol Construction Services
🇸🇪 Polar-studio
🌍 H. Gascon
🇺🇸 Clifford Paper
🇬🇷 MPM Imports
🇨🇦 Radiant Beauty Supplies
🇰🇷 Tong Yang Group
🇪🇸 Club Lleuresport
🇸🇪 Repeated Signal Solutions
🇪🇸 Atarfil
🇵🇰 Greenstar Social Marketing
🇺🇸 DuVal & Associates
🌍 Pratt Homes
🇺🇸 Force Marketing
🇨🇦 DV Hardwoods
🇺🇸 M&E Global Group
🇺🇸 Karnes Electric Cooperative

🚨CVE-2025-23166: The C++ method SignTraits::DeriveBits() may ...

2025-10-14T20:38:39Z

🚨CVE-2025-23166: The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process.

CVSS: 7.5

FOFA Link: https://en.fofa.info/result?qbase64=YXBwPSJOb2RlLmpzIg%3D%3D

FOFA Query: app="Node.js"

Results: 18,136,044

Advisory: https://github.com/advisories/GHSA-rrjv-57mm-j6cm

🚨🇷🇺 Alleged Sale of Russia Gambling Casino Leads ...

2025-10-14T20:22:32Z

🚨🇷🇺 Alleged Sale of Russia Gambling Casino Leads

🚨 IOC Alert: Kongtuke JavaScript Payload Masquerading as ...

2025-10-14T19:57:11Z

🚨 IOC Alert: Kongtuke JavaScript Payload Masquerading as Restaurant Website

https://darkwebinformer.com/ioc-alert-kongtuke-javascript-payload-masquerading-as-restaurant-website/

🚨🇦🇺 Claimed Sale of Australian Data Lookup API Service ...

2025-10-14T19:05:48Z

🚨🇦🇺 Claimed Sale of Australian Data Lookup API Service

🚨🇺🇸 UT Health Austin has Fallen Victim to Qilin ...

2025-10-14T18:25:27Z

🚨🇺🇸 UT Health Austin has Fallen Victim to Qilin Ransomware

[Darknetlive Archive] German Man Purchased Counterfeit Euros On ...

2025-10-14T17:47:57Z

[Darknetlive Archive] German Man Purchased Counterfeit Euros On the Dark Web

https://darkwebinformer.com/darknetlive-archive-german-man-purchased-counterfeit-euros-on-the-dark-web/

🚨🇺🇸 Catawba County Government has been Claimed a Victim ...

2025-10-14T17:32:32Z

🚨🇺🇸 Catawba County Government has been Claimed a Victim to Qilin Ransomware

🚨🇹🇭Alleged Data for Sale of Medicine Mahasarakham ...

2025-10-14T16:48:52Z

🚨🇹🇭Alleged Data for Sale of Medicine Mahasarakham University

🚨 Qilin Ransomware Claims 4 Victims: 🇺🇸 Force Marketing ...

2025-10-14T16:21:10Z

🚨 Qilin Ransomware Claims 4 Victims:

🇺🇸 Force Marketing
🇵🇰 Greenstar Social Marketing Pakistan (Guarantee) Limited
🇺🇸 DuVal & Associates, PA
🇺🇸 PRATT HOMES & REMODELING

🚨🇺🇸 M & E Global Group Falls Victim to Qilin ...

2025-10-14T15:44:54Z

🚨🇺🇸 M & E Global Group Falls Victim to Qilin Ransomware

https://darkwebinformer.com/m-e-global-group-falls-victim-to-qilin-ransomware/

🚨 Alleged Sale of FUD[.]BIO Crypter Service Capable of ...

2025-10-14T15:18:56Z

🚨 Alleged Sale of FUD[.]BIO Crypter Service Capable of Bypassing SmartScreen via DLL Sideloading

📌 N/A
• Industry: N/A
• Threat Actor: TyroneJohnson
• Network: Clearnet, Dark Web

Details: Threat actor TyroneJohnson is promoting “fud[.]bio,” a file obfuscation and crypting service designed to evade antivirus detection. The service supports x86/x64/.NET binaries and offers both scantime and runtime FUD options with DLL sideloading support.

Pricing tiers include a $30 Starter Bundle, $270 Popular Bundle, and $300 Professional Bundle, with discounted credits and manual processing options.

Tails has been updated to 7.1 https://tails.net/news/version_7.1/ ...

2025-10-14T14:51:38Z

Tails has been updated to 7.1

https://tails.net/news/version_7.1/

🚨🇮🇹🇺🇸 Alleged Sale of RDP Access to Italian ...

2025-10-12T23:02:34Z

🚨🇮🇹🇺🇸 Alleged Sale of RDP Access to Italian Construction Company, Italian Industrial Machinery Company, and US Corporation within Advertising & Marketing

⚠️Dread: Rate my OpSec 3/10 Thread: ...

2025-10-12T21:21:51Z

⚠️Dread: Rate my OpSec

3/10

Thread: https://dreadytofatroptsdj6io7l3xptbet6onoyno2yv7jicoxknyazubrad[.]onion/post/9348dda96ad2effe33d4