SYSTEM NOR

🇪🇸 Spain - Public Administration A threat actor is advertising alleged access to a Spanish public administration environment, claiming control over multiple internal government systems. According to the listing, the actor possesses: * Remote Code Execution (RCE) * Database dump containing 179 tables * Government webmail access * 45.3 GB of internal files * Access to payment and invoice systems * Electronic certificates used for tax-related submissions The seller further claims the compromised environment could be used to modify employee payment data and redirect SEPA transactions. The access is being offered for $14,500 and is reportedly being sold to a single buyer. Daily Dark Web has not independently verified the authenticity of the claims. Analyst Note: Government access sales involving financial systems and digital signing certificates can present substantial operational and fraud risks. Compromise of trusted signing infrastructure may have consequences beyond data exposure, potentially impacting financial transactions and administrative processes. #DDW #Intelligence #DarkWeb #Spain

🇲🇽 Mexican Federal Judiciary Database Allegedly Offered for Sale A threat actor is advertising what they claim is a database belonging to Mexico's Federal Judiciary (Poder Judicial de la Federación). * The seller claims the dataset contains approximately: * 11.4 million judicial case records ("expedientes") * According to the advertisement, the database allegedly includes: * Judicial circuits and court locations * Judges and magistrates with appointment information * Court secretaries and judicial personnel * Case records involving individuals and organizations * Mexican national identifiers (CURP and RFC) * Full residential addresses * Legal representatives and professional license information * Financial claim amounts and damages * Precautionary measures and judicial resolutions * Email addresses and telephone numbers * Electronic judicial addresses * FIREL digital identity tokens * Electronic signatures and digital acknowledgements * Judicial notifications and recipients * The scale and sensitivity described would make this one of the more significant alleged judicial data exposures reported in recent months if confirmed. * Potential risks include: * Exposure of sensitive legal proceedings * Privacy risks for citizens, attorneys, and court personnel * Identity theft and fraud * Targeted social engineering campaigns * Intelligence gathering against judicial officials * Abuse of legal and administrative information * Daily Dark Web has not independently verified: * The authenticity of the dataset * Whether the records originate from the Federal Judiciary * The accuracy of the claimed record count * Whether the data is recent or historical * Whether the seller possesses the full dataset Analyst Note: Judicial systems hold some of the most sensitive information maintained by governments, including legal disputes, personal identifiers, addresses, and court decisions. Claims involving judicial databases warrant immediate investigation due to the potential impact on citizens, legal professionals, and public trust in the justice system. #DDW #Intelligence #DarkWeb #Mexico

Interesting look at potential LLM vulnerabilities. This video shows a user allegedly executing a prompt injection attack against the Meta AI support chatbot to forcibly change an account email and reset the password. Meta AI support might have some serious patching to do. 🤖💻 #AI #PromptInjection #Infosec

🇲🇽 Mexico: Major Healthcare Database Allegedly Offered for Sale – 2.7M Patients Impacted * Threat actor claims to be selling the full clinical database of https://t.co/KpSXb62OnN, a Mexican ambulatory Electronic Health Record (EHR) platform * Alleged scope of exposed data: * 2.7 million patient records * 30,900 physicians * 1.2 million prescription records * 448,000+ consultation records * 328,000+ family relationship records * 264,000+ records involving minors * Claimed exposed information includes: * Patient names and contact details * Medical consultations and treatment history * Prescription information, medications, dosages, and diagnoses * Physician records with personal contact information * Family relationship mappings * National identification data (CURP) * Historical healthcare data spanning approximately six years * The threat actor claims the dataset contains individual-level medical records rather than aggregated statistics and advertises nationwide coverage across Mexico * According to the post, the data ranges from 2020 through May 2026 Analyst Note: Healthcare databases remain among the most valuable assets traded in cybercriminal ecosystems due to the permanence and sensitivity of medical records. If verified, this would represent one of the more significant healthcare-related exposures observed in Mexico, potentially affecting patients, physicians, and minors. Medical records cannot be "reissued" like passwords, making long-term identity theft, insurance fraud, targeted phishing, and privacy violations persistent concerns for affected individuals. #DDW #Intelligence #Eleonor #DarkWeb

🚨DDoS Alert 🇪🇨 Hider_Nex claims to have targeted multiple websites in Ecuador. * Ecuador's Ministry of Foreign Affairs and Human Mobility * Ecuador's Ministry of Economy and Finance * Ecuador's Ministry of Labor * Ecuador's Ministry of Government * Ecuador's Ministry of Public Health * Ecuador's Ministry of National Defense * Ecuador's Ministry of Agriculture and Livestock * Ecuador's Ministry of Education, Sport and Culture * Ecuador's Ministry of Telecommunications and Information Society * CNE Ecuador * Office of the Attorney General of Ecuador * Judicial Branch of Ecuador * Integrated Security Service ECU 911 * National Customs Service of Ecuador * Catholic University of Ecuador * National Electricity Corporation