This page collects WhisperX intelligence signals tagged #dark-web. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
The QILIN ransomware operation has publicly listed CAD-IT UK as its latest claimed victim, adding the UK-based engineering software solutions provider to its dark web leak site. The listing surfaced on threat intelligence channels, marking another escalation in the group's targeting of European technology and professio...
The ShinyHunters ransomware group has listed Houghton Mifflin Harcourt Company on their dark web leak site, marking the educational publishing giant as a confirmed target of the threat actor. The posting suggests that data exfiltration may have occurred during the attack, though the full scope and nature of the comprom...
A threat actor operating under the alias "sinobi" has published an unverified claim alleging a ransomware attack against Neurotrials Research Inc, according to threat intelligence surfaced on dark web monitoring channels. The claim, which appeared on the intelligence platform Yazoul, remains classified as unverified, w...
A ransomware operation identifying itself as Inc Ransom has surfaced on dark web monitoring platforms, hosting what appears to be a leak site at Sibillacapital.com. The group joins a crowded field of ransomware-as-a-service operations that have increasingly targeted critical infrastructure, healthcare, and financial se...
A threat actor operating under the alias "Akira" has reportedly claimed responsibility for a cyberattack against SDK Environmental, alleging the exfiltration of approximately 10 gigabytes of corporate data. The claim, currently unverified, surfaced on dark web channels and includes reference to sensitive internal docum...
A ransomware collective identifying as Genesis has appeared to reference a Casino Gaming Commission in a post shared via a dark web forum, according to a monitoring feed captured on Mastodon. The brief signal, detected through automated threat intelligence aggregation, suggests the group may be preparing to publish or ...
The QILIN ransomware operation has added LTJ Industrial Services to its public victim roster, signaling potential data exposure from the industrial sector. RedPacket Security, a threat intelligence tracker, documented the addition, indicating the group may possess sensitive corporate data and is demanding payment to pr...