German police have seized the dark web shop #Pygmalion, gaining access to user data tied to 7,250 drug orders. Arrests made, servers down, domains seized.

Read: https://hackread.com/police-seize-dark-web-shop-pygmalion-user-data-orders/

Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto · May 2Police Seize Dark Web Shop Pygmalion, Access User Data from 7K OrdersFollow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

#Darknet #Cybercrime #DarkWeb

**Eva Prokofiev** @epcyber@infosec.exchange · May 1

May 1

Eva Prokofiev @epcyber@infosec.exchange

Mapping China’s Fentanyl Supply Chain to the U.S.

This 16-page OSINT report exposes real vendors, domestic Chinese platforms, and digital trafficking infrastructure — far beyond what Google can see.
We dug into the real China’s internal ecosystem — domains, seller communications, logistics tactics — and mapped how fentanyl flows toward the U.S.

Read the full report here:
https://epcyber.com/blog/f/mapping-china%E2%80%99s-fentanyl-supply-chain-epcyber-report

#Fentanyl #ChinaIntel #OSINT

**k3ym𖺀** @k3ym0@infosec.exchange · Apr 24

Apr 24

k3ym𖺀 @k3ym0@infosec.exchange

Finally got my @QubesOS > @whonix Gateway > @torproject browser up and running.

Time to surf the waves of the deep dark web

I might do some real nefarious shit, like go to Silk Road and order 2000 hotdogs, or maybe deepfake videos of me winning arguments

This is proper use of the dark web, right?

#Privacy #DarkWeb

**Charlie McHenry** @CharlieMcHenry@connectop.us · Apr 23

Apr 23

Charlie McHenry @CharlieMcHenry@connectop.us

Have you ever walked into a supermarket, pharmacy, or department store looking to buy a specific item, only to find the layout confusing? Perhaps you ended up aimlessly strolling around, purchasing other items? This is deliberate, and known as the Gruen Transfer. The 'Transfer' part is the moment that you, as a consumer surrounded by a deliberately confusing layout, lose track of your original intentions.
We've all experienced it, and now it's starting to consume the internet. #Internet #GruenTransfer #DarkWeb #WWW #Enshitification

https://sebs.website/blog/the%20gruen-transfer-is-consuming-the-internet

sebs.websiteThe Gruen Transfer is consuming the internet<p>The Gruen Transfer is taking over social media. What is it and how can we avoid it?</p>

**Marc Ruef** @mruef@infosec.exchange · Apr 23

Apr 23

Marc Ruef @mruef@infosec.exchange

DeepSeek Breach Opens Floodgates to Dark Web #breach #darknet #darkweb https://www.darkreading.com/cyberattacks-data-breaches/deepseek-breach-opens-floodgates-dark-web

**Alexandre Dulaunoy** @adulau@infosec.exchange · Apr 23 *

Apr 23 *

Alexandre Dulaunoy @adulau@infosec.exchange

I had the pleasure of presenting at #FIRSTCTI25 in Berlin:

"The Art of Pivoting – How You Can Discover More from Adversaries with Existing Information."

The talk explored how unconventional indicators, like cookie names, QR codes, HTTP headers (HHHash), DOM structures, and reused Google Analytics IDs, can reveal surprising links across threat actor infrastructure and behavior.

We also shared real-world insights from our crawling and analysis with AIL, including:

How “weak” indicators can gain strength through composite correlation
Unexpected metadata reuse across Tor services and social platforms
How AIL enables more creative and effective pivoting workflows

Slides https://www.ail-project.org/assets/img/slides/the-art-of-pivoting.pdf

#threatintel #threatintelligence #cti #opensource #cybersecurity #darkweb

@misp @ail_project @circl

Thanks to @terrtia for the crazy discussions around correlations!

The Art of Pivoting - How You Can Discover More from
Adversaries with Existing Information
2025 Cyber Threat Intelligence Conference FIRSTCTI25 - Berlin, Germany

**Brian Greenberg** @brian_greenberg@infosec.exchange · Apr 23

Apr 23

Brian Greenberg @brian_greenberg@infosec.exchange

Major AI data breach: DeepSeek leaks 1M+ records to the Dark Web

China-based AI startup DeepSeek just exposed a staggering volume of sensitive data:
1M+ chat logs
API keys, backend metadata
Unencrypted traffic via iOS app (ATS disabled)
Open ClickHouse database with full control

This wasn’t just a lapse — it was a floodgate.

AI companies (and anyone integrating LLMs) must:
Audit storage configs
Enforce secure transport policies
Monitor for unintentional data exposure

The future of AI relies on building trust. That starts with securing it.

#AI #CyberSecurity #DataBreach #DarkWeb #InfoSec
https://www.darkreading.com/cyberattacks-data-breaches/deepseek-breach-opens-floodgates-dark-web

**Hackread.com** @Hackread@mstdn.social · Apr 16

Apr 16

Hackread.com @Hackread@mstdn.social

#BidenCash marketplace has dumped 910K+ stolen credit card records on Russian forum. Dump includes card numbers, CVVs, and expiration dates putting users at risk.

Read: https://hackread.com/bidencash-market-leak-credit-cards-russian-forum/

BidenCash Market Leaks 99,000 Stolen Credit Cards on Russian Forum

Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto · Apr 16BidenCash Market Dumps 1 Million Stolen Credit Cards on Russian ForumFollow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

#CyberSecurity #DarkWeb #CyberCrime

**Hackread.com** @Hackread@mstdn.social · Apr 16

Apr 16

Hackread.com @Hackread@mstdn.social

Hertz confirms a data breach after hackers exploited a flaw in vendor #Cleo’s software. In Dec 2024, the #Cl0p ransomware gang claimed responsibility and leaked the data on the #DarkWeb.

Read: https://hackread.com/hertz-confirms-data-breach-hackers-stole-customer-pii/

Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto · Apr 16Hertz Confirms Data Breach After Hackers Stole Customer PIIFollow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

#CyberSecurity #Hertz #DataBreach

**César Pose** @cesarpose@infosec.exchange · Apr 15

Apr 15

César Pose @cesarpose@infosec.exchange

If @Jhaddix says so, you can be sure.

#darkweb #darkwebforums #vpn

**N_{Dario Fadda}** @nuke@poliversity.it · Apr 15

Apr 15

N_{Dario Fadda} @nuke@poliversity.it

#BreachForum down
Gruppo pro-palestina rivendica l'attacco.
Alcuni commenti fanno pensare ad un'azione legale contro #IntelBroker che però non riceve conferme al momento.
Meglio attendere, troppe voci
#darkweb #CTI

**everton137** @everton137@vivaldi.net · Apr 11

Apr 11

everton137 @everton137@vivaldi.net

Over 200 German politician email addresses appear on dark web
https://proton.me/blog/de-politicians-dark-web

That's not surprising. There are even more German politicians on the darkest web, using X as their primary and official communication channel.

Proton · Apr 10Over 200 German politician email addresses appear on dark web | ProtonGerman regional politicians overall have good cybersecurity, but 3 regions had at least half of their regional MPs' email addresses appear on the dark web. Read more to find out which.

#Germany #Politics #X

**Teddy / Domingo (/)** @TeddyTheBest@framapiaf.org · Apr 9

Apr 9

Teddy / Domingo (/) @TeddyTheBest@framapiaf.org

Les hackers peuvent se faire aussi hacker ! Le site du gang Everest piraté sur le #DarkWeb. Le groupe de hackers russes Everest a dû faire face à une mauvaise surprise en ce début de semaine. Le #siteweb qu'il utilisait pour ses #fuites a en effet été saisi par quelqu'un d'autre !
https://www.clubic.com/actualite-560460-les-hackers-peuvent-se-faire-aussi-hacker-le-site-du-gang-everest-pirate-sur-le-dark-web.html

clubic.com · Apr 8Les hackers peuvent se faire aussi hacker ! Le site du gang Everest piraté sur le Dark WebLe groupe de hackers russes Everest a dû faire face à une mauvaise surprise en ce début de semaine. Le site web qu'il utilisait pour ses fuites a en effet été saisi par quelqu'un d'autre !

**Hackread.com** @Hackread@mstdn.social · Apr 7

Apr 7

Hackread.com @Hackread@mstdn.social

USA secures extradition of criminals/cybercriminals from 9 countries, including two brothers behind #Rydox, a dark web market for stolen data and hacking tools.

Read: https://hackread.com/brothers-rydox-dark-web-market-extradited-to-us/