Dark Web Informer - Cyber Threat Intelligence

Threat actors using the aliases ChimeraZ and misere have posted what they describe as a partial database of Autosur (autosur.fr), a French professional vehicle inspection and technical-control (contrôle technique) service used by car owners and dealerships.

A threat actor using the alias ChimeraZ has posted what they describe as a partial database of Inter Mutuelles Habitat (referenced as ima.eu / imha.fr), a French organization specializing in home-insurance assistance and claims management for policyholders of partner mutual insurers.

A threat actor using the alias 0xSec has posted what they describe as the full database of Local'Emploi (localemploi.fr), a French public employment platform that aggregates local job offers, internships, permanent contracts, and training in the Paris-Saclay area.

A threat actor using the alias ChimeraZ has posted what they describe as a scrape of public data from Superimmo (superimmo.com), a French real-estate platform that aggregates property listings from agencies and developers.

A threat actor using the alias ChimeraZ, working with a collaborator named Cybernox, claims to have leaked the member database of Lancy FC, a Swiss football club based in Geneva that runs teams across all age groups.

Threat Feed 3.0 adds an interactive OSINT investigation toolbox, threat triage and verdicts, expanded enrichment, and a refreshed interface. Early access June 12.

Live dark web threat intelligence in real time - breach alerts, and threat-actor tracking, with built-in investigation and enrichment tools.

CVE-2026-35273 is a critical unauthenticated remote code execution vulnerability in Oracle PeopleSoft Enterprise PeopleTools. Rated CVSS 9.8, the flaw affects PeopleTools versions 8.61 and 8.62 and requires immediate mitigation.

A threat actor using the alias Orcinusorca claims to have gained deep access to the production infrastructure of Wickr Enterprise, the AWS-owned secure enterprise messaging platform.

A threat actor using the alias ChimeraZ claims to have leaked the database of Jestimo (jestimo.com), a French real-estate valuation platform used by estate agents and rental managers.

A threat actor using the alias ChimeraZ claims to be leaking a partial database of Capifrance (capifrance.fr), a French network of independent real-estate agents.

A threat actor using the alias azazeljakel (posting under the tag "CORTEX") claims to have compromised Localizacion Empresarial Telcel (LET), a business location and fleet-tracking platform operated under the Mexican telecom brand Telcel (let.telcel.com).

A threat actor using the alias Zab26 is advertising for sale what they describe as a 533 GB "full-stack" healthcare dataset spanning French and European health systems.

A threat actor using the alias Soral claims to have breached H1 (h1.co), a global healthcare technology and data-analytics company.

A threat actor using the alias ChimeraZ claims to have breached Proprietes-Privees.com, a French real-estate network operating through independent property consultants.

A threat actor using the alias 2019 claims to be selling a patient database stolen from Ochre Health, an Australian medical-centre network providing general practice and allied health services.

A threat actor using the alias 2019 claims to have leaked the database of Zeemart, a Singapore-based B2B procurement and supply-chain platform for restaurants, cafes, and other food and beverage businesses.

A threat actor using the alias 2019 claims to have leaked the customer database of Napoleon Perdis, the Australian luxury cosmetics brand.

A threat actor using the alias ChimeraZ claims to be leaking a 4 million-listing real-estate dataset branded "Leboncoin Immobilier," aggregated from 13 French property portals including Leboncoin, SeLoger, and PAP.

A threat actor using the alias authentic claims to be selling a database of 35 million OkCupid users, saying it was scraped after gaining privileged access to the dating app's internal API.