Powered by DarkMirror™
This week’s edition covers the latest dark web news from the past week. admin access sale, company database theft, and stealing personal data are on the rise and took their place on the headlines this week. Click here to read the last week’s edition. Here are the details of the major events that took place on the deep web this week:
The New Ransomware Victim of Lockbit 2.0
On August 1, 2021, on the LockBit 2.0 ransomware group website, SOCRadar detected a post allegedly announcing a ransomware attack that targeted a healthy food manufacturer firm from Indonesia. The victim corporation is a long-lasting organization providing its customers a healthier way to produce and consume foods with its revenue of $40 million. According to the ransomware post, the ransom group obtained all available information of the company.
Database of A Giant Bank From The UAE For Sale On The Dark Web Marketplace
On July 30, 2021, a vendor put a database assertedly belonging to a giant bank from the UAE for sale on a dark web forum monitored by SOCRadar. The victim organization is engaged in local and international banking, moreover it was reported that the banking firm has a consolidated net profit of $137.5 million. While it is not clear how the database was seized, the vendor claimed to have 57 thousand lines of data including analysis reports, agreements, various documents and personally identifiable information (PII) of the company’s clients.
Unauthorized Access Sale Detected For An Enterprise From Indonesia On An Underground Market
On July 29, 2021, on a dark web forum monitored by SOCRadar, a vendor attempted to sell unauthorized access allegedly for the finance software of a private clinic in Indonesia. The dark web vendor claimed to see an amount of $20 thousand in the incoming and outgoing account belonging to the victim enterprise. The vendor also stated that the finance software was provided by a third party company that has many customers over the world and has a revenue of $215.3 million.
Powered by DarkMirror™
Gaining visibility into deep and dark web threats can be extremely useful from an actionable threat intelligence and digital risk protection perspective. However, it is simply not feasible to monitor all sources which can be time-consuming as well as challenging. One click-by-mistake can result in malware bot infection. To tackle these challenges, SOCRadar’s DarkMirror™ screen empowers your SOC team to follow up with the latest posts of threat actors and groups filtered by targeted country or industry.