Democratizing Cyber Security. Threat intelligence platform for Cyber Security professionals and Small/medium business. Insights from Darkweb and Threat Actors.
Do you believe the latest claims made by Intel Broker are hyped? Do you think these claims are hoax with very less proofs?
#Cybersecurity
#Poll
#Threatintel
Kelvinsecurity claims to offer 13GB of files related to the Mexican political party MORENA from 2016 to 2023 on the hacker's forum. The files reportedly include info on party members, militants, campaign financing, and financial managers.
#Cybersecurity
#Mexico
#databreach
…
Tracking the Cyber Frontlines: Israel vs. Palestine 🌍🔍
We have identified 100 active groups participating in the ongoing cyber warfare between Israel and Palestine. Of these, 20 groups align with pro-Israel sentiments, 77 support the Palestinian side, and 3 remain neutral.…
Kelvinsecurity has added the Covid-19 database of
#Ecuador
in a hacker's forum for sale. Information like names, identification numbers, dates of birth, contact information, vaccination details, etc are included in claimed data.
#Databreach
#cyberrisk
Anonymous Sudan claims to have targeted the website of Archive of Our Own, a nonprofit open source repository for fanfiction and other fanworks contributed by users.
Note- site is down at the moment.
#anonymoussudan
#cti
#threaintel
#infosec
Employee data from a major cybersecurity firm in the United States have been posted for sale on a hacker forum. Private keys, several scripts, and a lot more data are contained in the 219.46 GB of claimed data.
#USA
#Cyberrisk
#databreach
Vendor in hackers forum has added Indonesia's Largest Tollway Operator PT JASAMARGA. They claims to have 252 GB of data, coding and documents, and involves their users, customers, employees, corporate and financial data.
#databreach
#darkweb
#deepweb
#cyberrisk
Indian Cyber Force has posted messages on their Telegram channel, announcing plans to launch cyber attacks on Palestine starting from October 8th.
#Cyberattack
🔍 Cyber Conflict: Israel-Palestine Scenario 🔍
In light of the ongoing Israel-Palestine conflict, the cyber arena is experiencing a surge of activity. Key observations from our extensive monitoring:
1.Around 70 incidents where Asian hacktivist groups are actively targeting…
A forum user claims to have breached the Senado De La Republica (). They claims to have over 1,000 private government documents from September to October and the total size of the files is 19.4GB.
#Mexico
#databreach
#dataleak
#cti
#darkweb
Several hacker groups, including Sylhet Gang, Garnesia Team, Panoc Team, and Ganosec, are launching DDoS attacks on Indian government websites as a response to India’s support for Israel. The official site of the Delhi government was among those targeted.
NB: Sites are up and…
The pro-Israeli group The Red Evils claims to have taken control of a major ISP provider in Lebanon, which is said to provide services to the country’s major paramilitary forces.
#Cyberattack
#Lebanon
#Middleast
#Cyberwarfare
Gotham Stealer
We have discovered a new stealer called "Gotham stealer" with a wide range of capabilities. It includes features such as Discord Injection, Startup Injection, Wallets Stealer, Browser Stealer, System Info Stealer, Auto-Parsed Cookies, Roblox Session Stealer, Steam…
🎯 “Cyber Shadows: Real Power Behind ‘Ghost of Palestine’ & ‘Anonymous Sudan’!” 🎭
“Ghost of Palestine” has been fervently targeting Israel’s key services. They’ve hit over 20 government sites in the past day alone. Originating from a region where much of the infrastructure,…
Doomworld ()Database has been uploaded in the hackers forum.The leak led to the exposure of data including Usernames, Email addresses, IP Addresses, Dates of birth and Passwords. In total, 34.4k users were affected.
#databreach
#darkweb
#deepweb
#cyberrisk
A user in the hackers forum is claiming to sell the database of BCA Bank credit card users. The provided sample contains addresses, emails, phone numbers, etc.
#Indonesia
#DataBreach
#DeepWeb
#CyberRisk
🚀 Indian cyber force to Target Qatar’s Digital Infrastructure 🚀
The Indian hacking group is planning a cyber attack on Qatar’s digital infrastructure. Every geopolitical issue now has a cyber dimension, with cyber wars and misinformation campaigns likely to play a major role…
A user on a hackers' forum is advertising the sale of the database of the Ministry of State Security (China). The Claimed data includes 479,082,385 Names, DOB, Phone numbers, E-mails, Classified documents and Addresses.
The authenticity of the claim is yet to be verified.
#China
…
Multiple groups including
F7 Exploiter, OX1Z3N, Purple Brain, Fk, And Systemadminbd Team claims to have hacked an Indian government’s webserver with 100 GB of data
This attack is in response to India’s support to Israel.
#CyberAttack
#Threatintel
#India
A malware named "Akira Stealer" is being promoted for sale. It includes features such as a password grabber, cookies grabber, credit card grabber, and more. It is designed to bypass all antivirus software, including Windows Defender.
#malware
#stealer
#CTI
#ThreatIntel
🚨 Threat Intelligence Update: Anonymous Sudan’s Claim on Cloudflare 🚨
Anonymous Sudan is taking its cyber campaign to a new level, claiming they’ve acquired a vulnerability that could bypass Cloudflare’s robust defenses. In an unexpected turn, they’re reportedly opting to sell…
Anonymous Sudan allegedly claims to target Israel's Iron Dome. Earlier the group claimed to have targeted the Alert applications in Israel.
#Israel
#cti
#threatintel
#cyberattack
Israel is facing an unprecedented attack both Online and Offline.
Anonymous Sudan claims to have targeted Israel’s alert applications Tzeva adom and Redalert.
#Cyberattack
#Israel
A forum user is advertising a sophisticated ransomware product called UBUD, fully developed in the C programming language, for sale. The ransomware features AES-256 file encryption, RSA-4096 key encryption, customizable ransom notes and wallpapers, and strong anti-detection…
Cyber Attack Alert: Indian Cyber Force Targets Qatar’s E-Commerce 🚨💻
On November 7th, the Indian Cyber Force claimed responsibility for a cyber attack on Qatar’s government e-commerce portal. Additionally, they reportedly defaced an online portal as part of their operation.…
An unknown user on a hacker's forum has claimed to have breached Eye4Fraud and obtained a full database backup from their S3 storage servers. They claim that the data contains 29M rows of customer order data from various e-commerce sites.
#USA
#DarkWeb
#cyberrisk
#databreach
Eye4Fraud database has been added to the hackers' forum. They claim that this breach has impacted 532k members. The leak led to the exposure of data including Names, Emails, Ph no, addresses, and Payment methods.
#UnitedStates
🇺🇸
#databreach
#darkweb
#cyberrisk
#deepweb
A forum user is advertising a new type of ransomware called "Diablo Ransomware", which they have developed. This malware uses the AES encryption algorithm to lock files on a victim's computer, making them inaccessible without specific decryption software. Remarkably, Diablo works…
Falcon Feeds is now available for public access. We are in our Public Beta stag e& require your feedback and support. We have been tracking around 4000 + threat actors and their further movements. More features and analytics being added soon.
Sign up at
We have discovered a new stealer called 'Sentinel Stealer.' Its features include browser, communication, crypto, games, FTP/SSH, Discord injection, wallet injection, etc
#sentinelstealer
#malware
#stealer
The DuoLingo database (scraped) has been listed for sale in a hacker's forum. According to the user, the claimed data contains 2.6 million account entries.
#databreach
#cyberrisk
survived a massive DDoS attack today with 30 million requests! This is our 5th attack since launching less than 2 months ago. Monitoring threat actors is now more critical than ever as their tactics evolve constantly.
#DDoS
#Threatintel
Read the full…
LockBit
#ransomware
group added Darktrace (), a cyber security company based in
#UK
, to their victim list. All the download links added redirects to the official website of darktrace.
#DarkWeb
#DeepWeb
#CyberRisk
"WORMGPT," a project presented as an alternative to ChatGPT for blackhat activities like malware coding and exploits, was found selling in the hackers forum. The claimed features are quick responses, unlimited characters, privacy focus, and different AI models.
#WormGPT
#Darkweb
…
Massive DDoS Disruption: Ghosts of Palestine orchestrates a vast assault, crippling 28+ Israeli government domains, 10+ banks, and 6+ ISP providers, along with a slew of additional targets. 🌐💥 A comprehensive report on the affected domains is in progress. 🔜
#CyberAttack
#DDoS
…
Anonymous Global has claimed that they have united hackers from around the world to support Palestine in their initiative called
#OpIsrael
. According to their statement, teams from various countries including Palestine, Yemen, Russia, Indonesia, Morocco, Pakistan, Bangladesh, and…
🚨 New Blog Alert! 🚨
“The Evolving Landscape of Cyber Warfare in the Israel-Palestine Conflict: A Comprehensive Analysis”
Delving deep into motives, methods, & consequences of cyber-attacks in the ongoing geopolitical crisis. Our research sheds light on industries & countries…
We have discovered new c2 panels for Meduza Stealer. All are hosted on Aeza International LTD.
79[.]137[.]194[.]188
5[.]182[.]86[.]32
79[.]137[.]203[.]12
#malware
#stealer
#ThreatIntelligence
#CTI
🔍 Just published! Our in-depth research on
#Cl0p
Ransomware reveals tactics and attack vectors. Don’t miss our insights on how this notorious group operates.
Read the full blog :
#CyberSecurity
#ThreatIntelligence
#InfoSec
A newbie ransomware collective known as the "Wolphv Ransomware Group" has emerged. The group asserts their commitment to creating highly secure ransomware that is resistant to decryption. The author of this ransomware claims to employ sophisticated encryption algorithms, with the…
🚨 Critical Alert 🚨
Blacksec, in coordination with Ghostsec’s owner, is targeting over 100 modbus systems. If successful, the attack has the potential to shut down industrial systems and other critical infrastructures.
#Threatintel
#Cyberattack
#Israel
A threat actor is allegedly selling a zero-day exploit for Google Chrome on a cybercrime forum.
The exploit targets both the 32-bit and 64-bit versions of Google Chrome and allows for Remote Code Execution (RCE) and Sandbox Escape on the target system.
#RCE
#0day
#Vulnerability
…
Our researchers did an extensive research on multiple Darkweb Market places that are very active.
Read full research: …
To monitors threat actors in realtime signup at
@SahariyaMayank
#Cti
#threatintelligence
Ghosts of Palestine targeted major websites of Israel.
Ministry of Foreign Affairs
Israeli Army Radio Broadcasting
Breaking News Online
News Website i24
Israel Nuclear Research
Ben Gurion Airport
NB : Impact is unknown
#Cti
#Threatintel
#Israel
FIFAPlusCollect () customer data has been added to the hacker's forum for sale. Information including ID, email, address, balances, and other details are claimed from 70,000 users.
#databreach
#cyberrisk
A user on a hackers' forum claims to have leaked the database of PTV Telecom (). The provided data includes ID, Contact number, DOB, Nationality, Postal code, Phone number, E-mail etc.
#Spain
#DataBreach
#Darkweb
#ThreatIntel
Israel is facing an unprecedented attack both Online and Offline.
Anonymous Sudan claims to have targeted Israel’s alert applications Tzeva adom and Redalert.
#Cyberattack
#Israel
Dear
@Cyberknow20
We sincerely regret and apologize for the unauthorized use of your creative work.
We believe that your work has served as an inspiration to our threat intelligence analysts. Your expertise and contributions in this field are something we’ve always held in…
@Cyberknow20
C’mon
@FalconFeedsio
you’re better than this. Let’s not make knockoff versions of other’s work.
Here’s some free tools/sites to make your own diagrams:
- Use Maltego
- Use
- Use Excalidraw
- Even MS PowerPoint is fine
Have another go ok 👌 take 2
🚀 20,000 Followers Milestone! 🚀
Thank You all.
A year ago, we ignited Falcon Feeds with a dream: to democratize cybersecurity. Our mission was clear - make the elusive threat intelligence from the deep, dark, and open web accessible to not just a privileged few, but to every…
A user in hackers forum is promoting the sale of "Masad Stealer". The stealer captures various data from the user's PC, including browser passwords, credit card information, user details, desktop files, screens, and data from various applications like Steam, messengers, and web…
🚨 Ransomware Alert : Malaysia's National Anti-Financial Crime Centre (NFCC) has fallen victim to a ransomware attack by the notorious Lockbit gang. Stay vigilant and stay tuned for updates on this developing situation🛡️🔒.
#CyberSecurity
#Ransomware
#Lockbit
#Malaysia
#NFCC
…
🚨 New Cyber Threat: Weedsec Launches 'Dumped' Forum 🌐💻
The notorious hacker group Weedsec has escalated its activities by launching a new criminal forum named 'Dumped.' This platform is openly offering a range of illicit services, including data breach assistance and…
The group ‘Ghosts of Palestine’ is actively launching DDoS attacks on Israel’s Education Ministry and Ministry of Foreign Affairs.
NB: Both websites are not responsive at the moment.
#Cti
#Threatintel
An unknown user claims to have leaked a database from a major private bank in India, including personal details such as names, ages, ph nos., emails, gender, addresses, etc. The authenticity of the data has yet to be verified.
#India
#databreach
#DarkWeb
#DeepWeb
#cyberrisk
🚨 New group detected! 🚨 We've identified a new DDOS for hire group named InfraShutdown. The group claims to have targeted ISPs in Chad, Uganda, Poland, Israel, South Africa, Djibouti, etc. They were promoted by Anonymous Sudan.
#DDOS
#ThreatIntel
#Cyberattack
India’s leading news agency is under attack from religious hacktivist group mysterious team Bangladesh.
The site is down at the moment.
@ANI
@IndianCERT
#Cti
#Threatintel
A user in the hackers forum was found selling personal data obtained from the Indonesia National Police (POLRI) comprising 400K+ records. The claimed data includes information such as region name, unit name, rank name, nrp, name, gender, birth place, birth date, religion, email,…
The Killnet Group, led by Russian hackers, has launched a new Telegram channel dedicated to activities related to Palestine. The group named as KILLNET PALESTINE reaffirmed its affiliation with Anonymous Sudan and announced intentions to target Israel. They also declared…
The hackers' groups ThreatSec, GhostSec, Stormous, Blackforums, and SiegedSec have come together to create a united collective called "The Five Families." Additionally, this collective has dropped hints regarding collaborative operations in the future.
#CTI
#ThreatIntel
#Infosec
…
NoName hackers group claims to have targeted:
- La Moncloa
- Renfe
- Royal Household of Spain
- Navantia
- Ministry of Territorial Policy
- CERES fnmt
- Constitutional Court of Spain
- Metro Valencia
#Spain
#NoName
#cti
#ddos
#cyberattack
🚨💻 Cybersecurity Alert! 🚨💻
🔥Uncovered a fresh
#BanditStealer
panel on IP 185.250.151.78. Hosted by none other than Stark Industries! Currently flying under the radar, it's showing clean in VirusTotal (VT).🔥
urlscan:
Anonymous Sudan recently claimed to have targeted the Dutch-based hosting and cloud service provider, Leaseweb.
Interestingly, many of their recent claims appear to be exaggerated or false. However, today they managed a success by momentarily disrupting the service. The…
A forum user claiming to be an Israeli group has announced they have breached the Egyptian Money Laundering and Terrorist Financing Combating Unit (EMLCU) and obtained 417 GB of sensitive data.
#Egypt
#databreach
#dataleak
#cti
#darkweb
🚨LockBit’s portal was seized by Law Enforcement! 🚔 The National Crime Agency of the UK, in collaboration with the FBI, 'Operation Cronos', has taken control 💻🔐
#CyberSecurity
🛡🌐
#ransomware
#lockbit
We have discovered new c2 panels for Meduza Stealer. All are hosted on Aeza International LTD.
79[.]137[.]194[.]188
5[.]182[.]86[.]32
79[.]137[.]203[.]12
#malware
#stealer
#ThreatIntelligence
#CTI
🚨
#GTALeaks
Alert: Confidential data from GTA has surfaced on a Tor website. A dedicated Telegram page, “GTA V Leaks,” has been set up to distribute this information. Currently, the group is sharing only onion links.
Kelvinsecurity has added the admin access of Ministry of Defense
#SriLanka
to the hacker's forum for sale. Names, phone numbers, emails, etc. are among those claimed.
#databreach
#CyberRisk
KILLNET hackers group allegedly claims to have targeted IBAN banking system and they also claims to target SEPA, WISE and SWIFT. Meanwhile "REvil" group started a poll to select the targets.
#killnet
#REvil
#infosec
#cybersecurity
#cyberattack