Category: ➽Latest News
-
![APT36 Malware Campaign Revealed: Golang-Based DeskRAT Attack on Indian Government [2025 Report]](https://blog.darknetsearch.com/wp-content/uploads/2025/10/APT36-malware.jpg)
APT36 Malware Campaign Revealed: Golang-Based DeskRAT Attack on Indian Government [2025 Report]
The APT36 malware campaign has once again shaken the cybersecurity landscape of South Asia. In its latest operation, the Pakistan-linked threat group, also known as Transparent Tribe, launched a Golang-based DeskRAT campaign targeting the Indian government and defense networks. According to recent reports from The Hacker News, the attackers employed sophisticated social engineering and cross-platform…
-
GCash Data Breach 2025 Revealed: Key Facts, Risks & Proof from the Dark Web
The GCash data breach has sent shockwaves across the Philippine fintech community, raising concerns among millions of mobile wallet users. Reports surfaced on October 25, 2025, claiming that sensitive GCash KYC data—including eKYC records, linked bank accounts, and personal information—has been put up for sale on a dark web forum. The alleged leak, reportedly spanning…
-
Unsecured Server Exposure Reveals Billions of Credentials: The Urgent Impact of a Massive Elastic Database Leak
In a critical breach that underscores how vulnerable modern data stores have become, a publicly reachable instance of Elasticsearch (hosted at IP 188.214.129.11, assigned to UAB Cherry Servers) has reportedly exposed approximately 1,710,059,583 documents across a dataset of about 774.43 GB. This exposure includes Compromised fields: username, url, email, plain-text password, CPF, CEP, full name,…
-
Working-Dog.com Data Leak Exposes 4 Billion Records in Unsecured Server: Full Report
The Working-Dog.com data leak has sent shockwaves through both the dog-breeding community and the cybersecurity world 🐾. In a startling discovery, the Kaduu cybersecurity team uncovered an unsecured server exposure tied to Working-Dog.com, a popular global platform for breeders, trainers, and animal enthusiasts. The exposed database—indexed on Shodan—contained over 4.18 billion documents and more than…
-
ArtistsAndClients Data Breach: 2025 Dark Web Leak Revealed by Kaduu Team
The Artists&Clients data breach has raised new concerns across the creative freelance community after a massive database containing sensitive user information surfaced on dark web forums in late August 2025. The breach, reportedly discovered by the Kaduu Cyber Threat Intelligence Team during routine monitoring, was shared on the underground forum Breachsta.rs around September 1, 2025.…
-
Estafas deportivas: el nuevo auge del ciberfraude en las apuestas online en España
Las estafas deportivas se han convertido en uno de los fenómenos de ciberfraude más preocupantes en España durante 2025. El crecimiento imparable de las apuestas online y la digitalización del sector han abierto un terreno fértil para los ciberdelincuentes, que aprovechan la pasión por el deporte para engañar a miles de usuarios. Según expertos en…
-
PassiveNeuron APT Revealed: Inside the Silent Cyber Espionage Campaign Targeting Global Servers
Researchers first identified the PassiveNeuron APT in 2024, a stealthy campaign revealed by cybersecurity experts at The Hacker News. The discovery of the PassiveNeuron APT marks one of the most sophisticated cyber espionage operations seen in recent years. 🎯 This advanced persistent threat (APT) uses two powerful implants — Neursite and NeuralExecutor malware — to…
-
SnappyBee Malware Attack: How Citrix Flaw Exposed European Telecom Networks
A major cybersecurity storm has erupted following the discovery of a sophisticated SnappyBee malware attack that exploited a critical Citrix flaw to breach multiple European telecom networks. The Kaduu team, renowned for its deep web intelligence capabilities, first identified both the malware and the exploit during dark web routing monitoring — long before the attack…
-
TP-Link Omada Gateway Vulnerability: Critical Command Injection Flaw Revealed
The recent TP-Link Omada gateway vulnerability has sent shockwaves through the cybersecurity community ⚡. Identified by the Kaduu team during dark web and deep web routing monitoring, this flaw exposes TP-Link Omada gateways to dangerous command injection attacks that could give hackers complete access control of affected devices. With millions of small and medium-sized businesses…
-
Ciberseguridad: Madrid se alía con Cisco para modernizar la gestión pública
La ciberseguridad se ha convertido en una prioridad estratégica para las administraciones públicas, y la Comunidad de Madrid ha decidido dar un paso firme en esta dirección. Con la nueva alianza entre el Gobierno regional e Cisco, la presidenta Isabel Díaz Ayuso busca reforzar la protección digital y acelerar la transformación tecnológica de la gestión…