Powered by DarkMirror™
This week’s edition covers the latest dark web news from the past week. admin access sale, company database theft, and stealing personal data are on the rise and took their place on the headlines this week. Click here to read the last week’s edition. Here are the details of the major events that took place on the deep web this week:
The Database of Property Owners in Dubai For Sale On The Dark Web Marketplace
On July 16, 2021, on a dark web forum monitored by SOCRadar, a vendor put a database for sale allegedly including PII (personally identifiable information) of all property owners in Dubai. According to the vendor’s claim, the database contained property owners’ detailed information with building names, unit numbers, mobile phones, ID numbers and various personally identifiable information. The vendor also gave the areas included and there were 104 different areas in the dump.
An Unauthorized Access for Company from the UAE
On July 14, 2021, on a dark web forum monitored by SOCRadar, a vendor attempted to sell unauthorized database access for allegedly a company from the UAE. The vendor claimed the victim firm is engaged in horse racing in the UAE. According to the dark web post and shared samples of the database, the vendor accessed financial tables of the victim organization.
An Entertainment Corporation from Mexico Allegedly Suffers Ransomware Attack
On July 12, 2021, SOCRadar detected a post allegedly announcing a ransomware attack that targeted an entertainment organization from Mexico on the REvil ransomware group website. Established in 1971, the victim corporation is an international cinema firm with its over 27 thousand employees. The group behind the attack known as REvil is said to be also responsible for last month’s ransomware attack on major companies in the US. If the victim organization would not cooperate with the ransomware group, the ransom gang threatened to sell sensitive information belonging to the entertainment organization.
Powered by DarkMirror™
Gaining visibility into deep and dark web threats can be extremely useful from an actionable threat intelligence and digital risk protection perspective. However, it is simply not feasible to monitor all sources which can be time-consuming as well as challenging. One click-by-mistake can result in malware bot infection. To tackle these challenges, SOCRadar’s DarkMirror™ screen empowers your SOC team to follow up with the latest posts of threat actors and groups filtered by targeted country or industry.
