A threat actor using the alias ChimeraZ has posted what they describe as the database of Ouestfrance-Immo.pro (ouestfrance-immo.com), a French digital platform built for real-estate professionals and property marketing services.
A threat actor using the alias S0BER is advertising the sale of a claimed ~13.9 GB dataset of around 10,290 files across three RAR archives, spanning 2003 to 2026, said to be stolen from PiniWeb / Editora Pini (piniweb.com.br), a Brazilian information company that has served the construction industry since 1948.
A threat actor using the alias 0xSec has posted what they describe as a small database from Timer Immobilier, a specialized French real-estate agency and online platform that runs a transparent “interactive sale” (auction-style) system for property buyers and sellers.
A threat actor using the alias ChimeraZ has posted what they describe as a partial database of MaGestionLocative (magestionlocative.fr), a French property management software platform used by landlords and real-estate professionals.
CVE-2026-48907 is a critical unauthenticated remote code execution flaw in the Joomla Content Editor (JCE), the most widely installed editor extension for Joomla.
A threat actor using the alias ChimeraZ has posted what they describe as the database of TakTikimmo (taktikimmo.fr), a French professional real-estate software platform that helps agencies manage property listings, client relationships, and sales processes.
A threat actor using the alias Rhodes is advertising the sale of a claimed 116GB dataset of around 125,000 files said to be stolen from VNIIR-M, described in the listing as a Russian scientific research institute focused on radio communications and electronic defense and involved in defense-related R&D.
A threat actor using the alias 0cx00iq has listed for sale what they describe as a dataset of employees of Kuwait's National Security Agency, the country's domestic intelligence service.
Threat actors using the aliases ChimeraZ and misere have posted what they describe as a partial database of Autosur (autosur.fr), a French professional vehicle inspection and technical-control (contrôle technique) service used by car owners and dealerships.
A threat actor using the alias ChimeraZ has posted what they describe as a partial database of Inter Mutuelles Habitat (referenced as ima.eu / imha.fr), a French organization specializing in home-insurance assistance and claims management for policyholders of partner mutual insurers.
A threat actor using the alias 0xSec has posted what they describe as the full database of Local'Emploi (localemploi.fr), a French public employment platform that aggregates local job offers, internships, permanent contracts, and training in the Paris-Saclay area.
A threat actor using the alias ChimeraZ has posted what they describe as a scrape of public data from Superimmo (superimmo.com), a French real-estate platform that aggregates property listings from agencies and developers.
A threat actor using the alias ChimeraZ, working with a collaborator named Cybernox, claims to have leaked the member database of Lancy FC, a Swiss football club based in Geneva that runs teams across all age groups.
Threat Feed 3.0 adds an interactive OSINT investigation toolbox, threat triage and verdicts, expanded enrichment, and a refreshed interface. Early access June 12.
CVE-2026-35273 is a critical unauthenticated remote code execution vulnerability in Oracle PeopleSoft Enterprise PeopleTools. Rated CVSS 9.8, the flaw affects PeopleTools versions 8.61 and 8.62 and requires immediate mitigation.
A threat actor using the alias Orcinusorca claims to have gained deep access to the production infrastructure of Wickr Enterprise, the AWS-owned secure enterprise messaging platform.
A threat actor using the alias ChimeraZ claims to have leaked the database of Jestimo (jestimo.com), a French real-estate valuation platform used by estate agents and rental managers.
Dark Web Informer
Checked
21 hours 51 minutes ago
A real-time cyber threat intelligence platform that monitors the dark web and clearnet for data breaches, ransomware campaigns, darknet market activity, leaked databases, and active threat actors.