All articles tagged with #dark web
Malwarebytes reports a dark-web cache tied to a 2024 Instagram API breach exposing about 17.5 million users’ personal details and potentially enabling attackers to trigger password-reset emails. Instagram says there was no breach of its systems and that accounts remain secure. Users are advised to reset passwords, enable two-factor authentication, and consider deleting accounts if concerned.
MI6 is launching a dark web portal called Silent Courier to attract and recruit spies, especially from Russia, by providing a secure communication platform, following similar efforts by the CIA, to enhance national security amid increasing global threats.
TransUnion experienced a data breach affecting 4.4 million customers, exposing sensitive information such as names and Social Security numbers, with the breach occurring on July 28. The company is notifying affected individuals and offering 24 months of free credit monitoring, while advising consumers to take additional security measures. The breach involved unauthorized access from a third-party application, and the exposed data may already be circulating on the dark web.
The Justice Department has successfully shut down four major dark web child abuse sites, arresting and convicting at least 18 individuals involved in sharing millions of exploitative images and videos, in a significant crackdown on online child exploitation.
A massive cyber leak in 2025 exposed over 16 billion login credentials, the largest in history, raising global security concerns and prompting warnings from authorities and tech companies to enhance password security and vigilance against cyber threats.
Law enforcement across Europe, supported by Europol and Eurojust, dismantled Archetyp Market, the longest-standing dark web drug marketplace, arresting key individuals and seizing assets worth EUR 7.8 million, significantly disrupting the online sale of illicit drugs including fentanyl and synthetic opioids.
A massive data breach exposed over 184 million login credentials, including plaintext passwords from major platforms like Apple, Google, and Meta, stored on an unsecured server, raising serious privacy and security concerns worldwide.
Larry Dean Harmon, an Ohio man, has been sentenced to three years in prison and must forfeit over $400 million in assets for running Helix, a dark web cryptocurrency mixer used for money laundering. Harmon processed over 350,000 Bitcoin through Helix from 2014 to 2017, concealing transactions often linked to illegal activities. He pleaded guilty to conspiracy to commit money laundering and received a reduced sentence for assisting in other investigations, including the trial of another crypto mixer operator.
Live Nation is investigating a data breach at its Ticketmaster subsidiary, with a hacking group named ShinyHunters claiming responsibility and seeking $500,000 for the stolen data, which includes personal and some credit card details of millions of customers. The breach is being mitigated, and law enforcement is involved. This comes shortly after the U.S. Justice Department sued Live Nation and Ticketmaster for allegedly running an illegal monopoly over live events.
Ticketmaster has confirmed a data breach involving over 560 million users' information, stolen from a third-party cloud database provider, believed to be Snowflake. The breach, attributed to the threat actor Shiny Hunters, has led to the data being offered for sale on the dark web. The attackers reportedly used stolen credentials to access the data, affecting multiple companies. Ticketmaster is working with law enforcement and notifying affected users.
Ticketmaster has confirmed a data breach involving over 560 million users' data, stolen from a third-party cloud provider, believed to be Snowflake. The breach, attributed to the threat actor ShinyHunters, has led to the data being offered for sale on the dark web. The stolen data includes personal details and ticket information. Investigations reveal that the breach was facilitated through stolen credentials and unexpired auth tokens. Snowflake and other companies affected are cooperating with law enforcement and taking steps to mitigate the impact.
The threat actor ShinyHunters claims to be selling data from a recent breach of Santander Bank, affecting 30 million customers and employees in Chile, Spain, and Uruguay. This follows Santander's disclosure of a data breach two weeks ago. ShinyHunters, known for previous high-profile data breaches, is offering the data for $2 million, though Santander's customer numbers suggest the claim may be exaggerated. The sale was first listed on the Exploit hacking forum before appearing on the newly restored BreachForums, raising questions about its authenticity.
AT&T confirmed a data leak from 73 million current and former customers, with information such as Social Security numbers and addresses exposed on the dark web. The company is contacting affected customers and resetting passwords, while urging them to monitor their accounts and consider identity theft protection. Customers are advised to change passwords, enable two-factor authentication, monitor accounts, contact financial institutions, and consider identity theft protection services. AT&T is actively investigating the situation, and individuals can check if their information was exposed on the dark web through haveibeenpwned.com.
AT&T reported that personal data from 73 million current and former customers, including names, addresses, phone numbers, and Social Security numbers, was leaked onto the dark web, prompting the company to reset 7.6 million account passcodes. The leaked data, which appears to be from 2019 or earlier, does not include personal financial information or call history. AT&T is investigating the source of the data and is offering credit monitoring to affected customers. This incident comes after a previous claim of stolen information from about 70 million AT&T customers in 2021.
AT&T has confirmed a data breach that exposed the personal information of 73 million current and former customers, including Social Security numbers and passcodes. The company is investigating the incident and has begun notifying affected customers, while also resetting passcodes for current users and offering credit monitoring services. Consumers impacted by the breach should be vigilant about protecting their information and can take steps such as creating strong passwords, using multifactor authentication, and setting up credit freezes and fraud alerts with credit bureaus.