DSInfoCom 🎙💻📡

🔴 Un cybercriminel revendique le piratage de Smartbox et publie les données de plus de 60 000 personnes. Smartbox est un service spécialisé dans les coffrets cadeaux, séjours, activités de loisirs et expériences commercialisés dans plusieurs pays européens. Les données publiées contiendraient notamment des noms, prénoms, adresses e-mail, numéros de téléphone, adresses postales et diverses informations associées à des comptes utilisateurs. https://t.co/pOCzLRydqm

🚨 CYBER INTELLIGENCE ALERT: FEMBOYFORUM DRIVES ONE OF THE LARGEST LEAK LIBRARIES IN THE CRIMINAL ECOSYSTEM 🌐 Cybercriminal community announces massive expansion of leak repository [STATUS: ACTIVE MONITORING] The cybercriminal community known as "FemboyForum" has announced the launch and expansion of its central archive—a platform used to share illicitly obtained information, leaked databases, compromised credentials, infostealer logs, vulnerability references, and other resources linked to the criminal ecosystem. Additionally, they announced the upcoming addition of approximately 100,000 new files. 📊 Repository Statistics 📂 Data breach sources (BS): 622,882 🔐 Compromised logs and credentials (ULP/Logs): 33,671 📑 Indexed posts: 656,553 🌐 Onion resources: 11,116 ⚠️ CVE references: 240,332 📈 Intelligence Assessment The observed volume of information suggests the existence of a major aggregation platform used by malicious actors to exchange leaked data, stolen credentials, infostealer malware logs, information derived from security breaches, and technical exploitation references. The announced addition of over 100,000 files could significantly increase the availability of compromised information within criminal circles and facilitate reconnaissance activities, credential abuse, fraud, and unauthorized access. 🎯 Risk Level: HIGH 🏴 Category: Cybercriminal Community / Leak Repository 📈 Trend: Rapid expansion and growth ⚠️ Associated Vectors: Data leakage • Compromised credentials • Infostealers • Security breaches • Illicit information exchange #CyberSecurity #ThreatIntelligence #Cybercrime #DataBreach #DataLeak #DarkWeb #CyberCrime #Infostealer #CredentialLeaks #ThreatActor #Hackers #CTI #CyberThreats #Darknet #CyberIntelligence #VECERT

🇫🇷 Alleged Nantes Metropolitan Administration Employee Directory Leak Advertised Online A threat actor has posted what they claim is a database containing information on employees and agents associated with the Nantes metropolitan administration in France. * According to the post: * Target: https://t.co/C4mR1Ik03h * Claimed records: 5,274 * Format: CSV * Dataset name: annuaire_agents_nantes_v2.csv * The actor states the dataset contains employee directory information, including: * Full names * Job functions and positions * Organizations and departments * Service information * Email addresses * Office phone numbers * Mobile phone numbers * Manager details * Addresses * URLs * The post appears to reference municipal employees and administrative personnel connected to the Nantes metropolitan government. * No evidence was provided indicating financial information, passwords, national identification numbers, or citizen records were included in the exposed sample. * At the time of publication, Daily Dark Web could not independently verify: * The authenticity of the dataset * Whether the data originated from a compromise * Whether the information was publicly accessible prior to publication * Whether all claimed records belong to active municipal employees Analyst Note: Even when datasets contain only directory information, they can significantly increase the effectiveness of spear-phishing, business email compromise (BEC), social engineering, and physical security targeting. Government employee contact databases are frequently leveraged by threat actors to map organizational structures and identify high-value personnel for follow-on attacks. #DDW #Intelligence #DarkWeb #France

🚨🇫🇷 Rennes, Nantes, Bordeaux, Saint-Étienne, Aix-Marseille... les métropoles françaises de plus en plus touchées par les fuites de données Des dizaines de milliers de personnes concernant agents, administrés et utilisateurs de services publics auraient été exposés ces derniers mois. Parmi les données sensibles revendiquées figurent notamment des noms, adresses e-mail professionnelles et numéros de téléphone. Des fonctions, rattachements hiérarchiques et diverses informations internes aux collectivités apparaissent également dans les données exposées.

🔴 FUITES INFOS | SMARTBOX GROUP — Coffrets cadeaux et e-cartes cadeaux — 60 568 personnes concernées 📅 10 juin 2026 Base revendiquée le 10 juin 2026 concernant https://t.co/TwleMFq5lV, site du groupe Smartbox, spécialisé dans la vente de coffrets cadeaux, e-cartes cadeaux et expériences à réserver en Europe, notamment pour les séjours, restaurants, loisirs, bien-être et activités. 60 568 utilisateurs sont annoncés, avec un fichier User.csv de 60 569 lignes et un échantillon contenant notamment des données de comptes pouvant aller jusqu'au 5 juin 2026, ainsi qu'un fichier echosign_dev1__SIGN_Agreement__c.csv de 202 658 lignes semblant contenir des métadonnées d'accords ou documents e-signature. • Identifiants internes • Nom • Prénom • Nom d'utilisateur • Adresse e-mail • Téléphone • Téléphone mobile • Statut du compte • Date de dernière connexion • Type d'utilisateur • Identifiant contact • Identifiant compte • Date de création • Date de modification • Surnom communautaire • Fuseau horaire • Langue • Indicateur portail • Indicateur partenaire • Identifiant de fédération • Société • Département • Fonction • Adresse postale • Ville • État • Code postal �� Pays • Identifiant manager • Alias • Division • Métadonnées de documents e-signature

⚠️ ServiceNow Confirms Flaw Allowing Unauthorized Access to Customer Instance Tables Source: https://t.co/FF1bEWofsy ServiceNow has confirmed a security vulnerability that could allow unauthorized actors to query customer instance tables, raising concerns about potential data exposure across enterprise environments. The issue, disclosed through threat intelligence channels, involves improper access controls that may enable attackers to execute queries against backend instance tables without proper authentication. ServiceNow, widely used for IT service management (ITSM) and enterprise workflows, hosts sensitive operational and business data, making such vulnerabilities particularly critical. #cybersecuritynews