The Week in Dark Web – 13 September 2022 – Database Leaks
Powered by DarkMirror™
Threat actors mostly sold leaked databases last week. Among them were datasets that included important government data. Some Chinese, Italian, and Iranian companies were also among the victims.
Find out if your data has been exposed on the deep web.
Financial Documents of UK Government Shared on the Dark Web
SOCRadar Analysts have encountered a post on a market where the vendor of the post claims they compromised a server connected to the UK Government’s network and allowed them to reach financial reports of UK Government Councils.
The leak reports contain the information of essential credentials, names, balances council addresses, administrator usernames, and transaction information. The vendor claims 37 UK councils are affected by the leak.
Customer Database Sale for an Italian Bicycle Company
On 8 September, a hacker forum monitored by SOCRadar Analysts shared a database sale that includes over 30.000 local customers. The victim is an Italian company selling bicycles, spare parts, and accessories. The database includes critical information like id number, name, surname, mail address, etc. The price tag is $300.
Macedonian Government’s Database is Leaked and Threatened
On 7 September, SOCRadar noticed that a new alleged Macedonian Government Database leak was shared on the dark web. The leak consists of official databases on the government website. The threat actor, who represents the attacker group, claims a more critical leak would be shared if the Macedonian Government did not use the Bulgarian flag on its website until 1 December.
Database of an Iranian Chain Store is for Sale
On 8 September 2022, an announcement was posted in a hacker forum that the SOCRadar keeps an eye on. The post is about a leaked database containing 5 million lines of information. The victim is a market chain that primarily operates in Iran and Iraq.
Customer Database of a Chinese Bank Leaked
On 7 September, a notice for selling a new database belonging to a bank headquartered in China. The leak contains 5 million customers’ information, including name, phone number, ID, card id, location, gender, and age.
Powered by DarkMirror™
Gaining visibility into deep and dark web threats can be extremely useful from an actionable threat intelligence and digital risk protection perspective. However, monitoring all sources is simply not feasible, which can be time-consuming and challenging. One click-by-mistake can result in malware bot infection. To tackle these challenges, SOCRadar’s DarkMirror™ screen empowers your SOC team to follow up with the latest posts of threat actors and groups filtered by the targeted country or industry.