Dark Web Profile: NightSpire Ransomware
Dark Web Profile: NightSpire Ransomware NightSpire is a financially motivated ransomware group that emerged in early 2025. The group employs a double extortion strategy, encrypting victims’ data and ...
Coca-Cola and DocuSign Breaches Claimed as Insider Recruiting and Card...
Coca-Cola and DocuSign Breaches Claimed as Insider Recruiting and Card Sales Surface SOCRadar’s Dark Web Team has detected several noteworthy developments across underground forums this week. These in...
Dark Web Market: Torzon Market
Dark Web Market: Torzon Market Launched in 2022, Torzon Market is a Dark Web Marketplace that hosts over 20,000 illegal products, accessible via the TOR network. Torzon facilitates transactions in cry...
Dark Web Profile: Aquatic Panda
Dark Web Profile: Aquatic Panda Aquatic Panda is a suspected China-based threat group focused on intelligence gathering and industrial espionage. From around 2016 to 2023, the Chinese tech company i-S...
Instagram Ban Bypass, AI Identity Forgery, and Nova Ransomware Affilia...
Instagram Ban Bypass, AI Identity Forgery, and Nova Ransomware Affiliate Drive SOCRadar’s Dark Web Team has uncovered another round of cybercriminal activity across underground forums. This week’s fin...
Dark Web Profile: Silent Ransom Group (LeakedData)
Dark Web Profile: Silent Ransom Group (LeakedData) A threat group identifying itself as LeakedData emerged in mid-December 2024, claiming responsibility for attacks on at least 41 victims. Header of ...
QatarRat Tool Emerges, GST Data Sold, and LockBit Gets Breached
QatarRat Tool Emerges, GST Data Sold, and LockBit Gets Breached SOCRadar’s Dark Web Team has identified a range of notable activities across underground forums this week. Key findings include the sale...
DarkGPT, Chrome 0-Day Exploit, and Financial Data Sales Detected on Da...
DarkGPT, Chrome 0-Day Exploit, and Financial Data Sales Detected on Dark Web Dark Web forums remain active with concerning developments, as SOCRadar’s Dark Web Team identifies new threats this week ta...
Dark Web Monitoring with Open-Source Tools and Services
Dark Web Monitoring with Open-Source Tools and Services The Dark Web, intentionally hidden on the internet, is accessible only through specialized browsers or technologies. Defenders monitor it for cl...
TikTok Breach Claims, Windows 0-Day Exploit, and UK Credit Card Auctio...
TikTok Breach Claims, Windows 0-Day Exploit, and UK Credit Card Auction Identified SOCRadar’s Dark Web Team uncovered several notable threats across hacker forums this week. Among the key findings is ...
Dark Web Market: WeTheNorth Market
Dark Web Market: WeTheNorth Market WeTheNorth (WTN) is a Canada-focused Dark Web Marketplace (DWM) named after the famous Toronto Raptors slogan. Launched in 2021 after the shutdown of CanadianHeadqua...
Massive Card Leak, New Phishing Tool, and Pharma Scam Attempt Detected
Massive Card Leak, New Phishing Tool, and Pharma Scam Attempt Detected Cybercriminal offerings on dark web forums remained active this week, with SOCRadar’s Dark Web Team uncovering a wide range of th...
Dark Web Market: STYX Market
Dark Web Market: STYX Market Greed may be a timeless driver of cybercrime, but in 2025, it’s the structure, scale, and specialization of dark web marketplaces that elevate this motivation into a full-...
Dark Web Profile: Flax Typhoon
Dark Web Profile: Flax Typhoon Intelligence reports confirm that Flax Typhoon (also tracked as RedJuliett and Ethereal Panda) is a sophisticated Chinese state-sponsored Advanced Persistent Threat (APT...
BidenCash Dark Web Market Leaks Nearly One Million Credit Cards
BidenCash Dark Web Market Leaks Nearly One Million Credit Cards Nearly one million leaked credit cards have been exposed by the dark web market BidenCash in a newly launched campaign. Shared through c...
BreachForums is Offline: A New Twist or Just Another Cyber Shenanigan?
BreachForums is Offline: A New Twist or Just Another Cyber Shenanigan? [Update] June 3, 2025: “BreachForums Is Back (Again), Now on Yet Another Domain” [Update] April 28, 2025: “BreachForums Administr...
Fortinet 0-Day, Spotify Checker Shared, and STX Leak Campaign
Fortinet 0-Day, Spotify Checker Shared, and STX Leak Campaign SOCRadar’s Dark Web Team has uncovered a new round of malicious activity across hacker forums this week. Threat actors are auctioning off ...
Dark Web Profile: Babuk/Babuk2
Dark Web Profile: Babuk/Babuk2 Babuk, originally emerging in 2020, became infamous for its ransomware attacks on large organizations and government agencies. After internal conflicts led to the leak o...
Dark Web Sees New Market Launch, Credit Card and VPN Access Sales
Dark Web Sees New Market Launch, Credit Card and VPN Access Sales SOCRadar’s Dark Web Team has identified several new threats emerging on hacker forums in the last week. Highlights include the promoti...
Top 10 Dark Web Monitoring Tools
Best Dark Web Monitoring Tools 2026 | Expert Guide Last updated: June 2026 | In our analysis of platforms for this guide, we evaluated source coverage, alert quality, integration fit, and operational ...