Dark Web Market: B1ack’s Stash
Dark Web Market: B1ack’s Stash On the dark web, every new carding market tries to gain instant credibility. Nothing does that faster than free leaked credit cards. B1ack’s Stash entered the deep web c...
Inside Morte Loader: How Loader as a Service Builds Modern Botnets
Inside Morte Loader: How Loader as a Service Builds Modern Botnets Morte is a Loader as a Service (LaaS) that turns vulnerable SOHO routers, IoT devices and web applications into a flexible botnet pla...
Dark Web Profile: ByteToBreach
Dark Web Profile: ByteToBreach By mid-2025, the alias ByteToBreach was already an active seller on a major cybercrime forum, offering access and databases from banks, telecom, airlines, and other larg...
Alleged SeAH, Under Armour, SecureTeen, and Cloudeka Data Exposures De...
Alleged SeAH, Under Armour, SecureTeen, and Cloudeka Data Exposures Detected SOCRadar’s Dark Web Team identified several high-impact underground posts this week, including alleged leaks involving SeAH...
Dark Web Profile: Berserk Bear
Dark Web Profile: Berserk Bear Berserk Bear is a Russian state-sponsored cyber espionage group linked to the FSB. They have been active since at least 2010 under many names (Dragonfly, Energetic Bear,...
Scattered LAPSUS Hunters Escalate With New Channel and Gainsight Breac...
Scattered LAPSUS Hunters Escalate With New Channel and Gainsight Breach Scattered LAPSUS$ Hunters (SLH) has returned to the spotlight with new claims, alleged leaks, and a new Telegram channel, signal...
Cl0p’s Oracle EBS Zero-Day Campaign: What We Know So Far
Cl0p’s Oracle EBS Zero-Day Campaign: What We Know So Far The Cl0p ransomware group has returned to the spotlight with a new wave of attacks that target Oracle EBS (E-Business Suite) zero-day vulnerabi...
Dark Web Profile: Sarcoma Ransomware
Dark Web Profile: Sarcoma Ransomware Sarcoma ransomware group emerged in late 2024 and quickly launched aggressive double-extortion campaigns worldwide; Sarcoma’s fast-growing victim list and use of s...
Dark Web Market: FreshTools
Dark Web Market: FreshTools The underground economy thrives on scale and speed. Few platforms illustrate this better than FreshTools, a clear-web marketplace that advertises itself as a one-stop shop ...
Eurofiber Data Claims, BMW Employee Leak, and FortiWeb Exploit Surface...
Eurofiber Data Claims, BMW Employee Leak, and FortiWeb Exploit Surface Online SOCRadar’s Dark Web Team uncovered multiple high-impact listings this week, including an alleged Eurofiber data sale linke...
Florida Government Data, Binance Checker, and Legal Organization Leak ...
Florida Government Data, Binance Checker, and Legal Organization Leak Surface on Dark Web SOCRadar’s Dark Web Team observed multiple new listings on hacker forums this week, including alleged database...
What Is Dark Web Threat Intelligence and Why It Matters
What Is Dark Web Threat Intelligence and Why It Matters Dark web threat intelligence has emerged as a critical component of modern cybersecurity strategies, enabling organizations to detect threats be...
Medline & Treasure Coast Data Claims, Stealer Log Search Service ‘LogS...
Medline & Treasure Coast Data Claims, Stealer Log Search Service ‘LogSearch Bot’, Windows Exploit Offers SOCRadar’s Dark Web Team identified fresh underground listings this week claiming patient P...
What's The Difference Between The Dark Web And The Deep Web
What’s The Difference Between The Dark Web And The Deep Web While both the dark web and deep web are hidden from search engines, they serve vastly different purposes. The deep web contains legitimate ...
Italian Credit Cards, Jazeera Passenger Database, and New Decentralize...
Italian Credit Cards, Jazeera Passenger Database, and New Decentralized Botnet Loader SOCRadar’s Dark Web Team spotted multiple underground listings this week, including auctions for Italian credit ca...
Fresh Facebook Data Sale, MonoLock Ransomware, and SIM-Swap Recruitmen...
Fresh Facebook Data Sale, MonoLock Ransomware, and SIM-Swap Recruitment Announced in Underground Forums SOCRadar’s Dark Web Team observed a busy underground market this week where actors offered massi...
Stansberry Data Sale, Oracle 0-Day, and Salesforce Leaks Highlight Dar...
Stansberry Data Sale, Oracle 0-Day, and Salesforce Leaks Highlight Dark Web Activity SOCRadar’s Dark Web Team observed a surge of underground activity this week, including data sales, exploit discussi...
New CipherWolf RaaS, Oracle EBS 0‑Day Exploit & Money Laundering Servi...
New CipherWolf RaaS, Oracle EBS 0‑Day Exploit & Money Laundering Service Detected on Hacker Forums SOCRadar’s Dark Web Team has tracked a cluster of high‑impact underground listings this week. Hig...
Dark Web Profile: Scattered Lapsus$ Hunters
Dark Web Profile: Scattered Lapsus$ Hunters [Update] November 28, 2025: “Is the DLS Already on Its Way Out?” and “Rey, ShinySp1d3r and the Gainsight Breach” In mid-2025, attackers launched coordinated...
Android RCE, CRM Breach, Axiom Crypto Drainer, and Airbus Panel Intere...
Android RCE, CRM Breach, Axiom Crypto Drainer, and Airbus Panel Interest SOCRadar Dark Web Team has uncovered multiple high-impact listings in underground forums, indicating continued targeting of sof...