🌐 Deep Dark Web Weekly Highlights in February W1

⚠️Personal Information Leak: Retail

Tar***, a large retail chain based in the United States, experienced a cyberattack by a criminal group known as "Endurance Ransomware." The attack resulted in the personal information of Tar***'s customers being compromised. The leaked information has been identified as being freely distributed on the prominent hacking forum "Breached".

The leaked data comprises records of personal information belonging to approximately 80,000 customers. The leaked information ranges from general to sensitive data for each consumer, including GST IDs (a 15-digit taxpayer number used in the United States), transaction dates, types of registered cards (credit or debit), city and state of residency, and the zip codes of Tar*** stores

⚠️Confidential Leak: TSA

The No Fly List and the Selectee List, maintained by the Transportation Safety Administration (TSA) within the U.S. Department of Homeland Security, have been leaked. These lists, also known as the "List of Passengers Prohibited from Boarding a Flight to the United States," have been compromised and are currently being circulated on a prominent hacking forum.

⚠️Confidential Leak: Defense

A defense company in India was subjected to a cyberattack from a well-known malware group operating on the dark web, resulting in the compromise and subsequent leak of sensitive internal data. In late January, the notorious dark web ransomware gang known as "BlackCat" uploaded samples of data stolen from "Solar Industries, an Indian defense manufacturing company, to BlackCat's proprietary data breach website. The disclosed information encompasses inventories of weapons, confidential documents, personal details of employees, backup databases, and other miscellaneous items.