‼️🇪🇸🇵🇱🌍 SQL injection points for 149 PrestaShop stores are being auctioned, primarily targeting sites in Spain, Poland, and across Europe. The listing includes verified vulnerable endpoints with diverse injection types including blind, union, and time-based techniques. The auction starts at $1,500 with a blitz price of $2,500.

❗️🇱🇦 Internal documents from the Xekong 1800 MW power project have allegedly been leaked from Phonesack Group, a major mining and energy company in Laos. The 4 GB dump reportedly contains 81 files including full EPC contract details with a Chinese contractor, power plant technical specs, transmission line route maps, progress reports, and official correspondence with EDC (Cambodia's electricity utility). The asking price is 0.0065 BTC ($479.57).

‼️ 500 "validated" Fortinet VPN credentials collected from stealer logs are being auctioned, with duplicates removed and validity confirmed via Tmchecker across multiple countries. The auction starts at $1,500 with a flash price of $3,000.

‼️ShinyHunters Names 2 New Victims 🇺🇸 Harvard University ▪️1 million records ▪️1.1 GB compressed 🇺🇸 University of Pennsylvania ▪️1.2 million records ▪️483 MB compressed

‼️HasanBroker defaced the .bf BreachForums website, but it is now redirecting to it's new clearnet domain BreachForums[.]jp after .bf was suspended. IOC: breachforums[.]jp

.cz BreachForums is at war with .bf BreachForums and looks like .cz got the .bf clearnet domain suspended. It's currently down. The small screenshot is small because it requires an account to sign in to look at the large snap, but I don't have an account yet. It does look legit.

Daily Dose of Dark Web Informer - February 3rd, 2026

Daily Dose of Dark Web Informer - February 3rd, 2026

❗️ WYTEC INTERNATIONAL, INC. has filed form 8-K due to a cybersecurity incident

WYTEC INTERNATIONAL, INC. Form 8-K

"As disclosed in a Current Report on Form 8-K (the “Original Report”), on August 25, 2025, Wytec International, Inc. (the “Company”) became aware of a cybersecurity incident in which a bad actor published a defaced website at the Company’s web address, wytecintl.com. After the Company restored the website from back-ups, the bad actor was able to deface the website again. To date the Company has received no contact from the bad actor, nor is it aware of any reason for this attack. On August 25, 2025, the Company took the website down, placing a temporary page on the site, while the Company continued to review the entire web platform, so that the site could return as soon as security had been confirmed. Since the filing of the Original Report, the Company has restored the IT systems and data that were impacted by the cyber incident and continues to work through minor operational impacts. The authorities have closed this investigation and were unable to identify the source. As of the date of this Amendment, the Company believes that the impacts of the cyber incident consist primarily of costs associated with rebuilding the website on a new server and hosting platform and enhancing security protocols."

❗️🇦🇺 Alleged Data Breach of 48,000 Customer Records From an Australian Furniture Company

Alleged Data Breach of 48,000 Customer Records From an Australian Furniture Company

❗️🇵🇱 Access to a Polish PrestaShop store with bank transfer payment processing is being auctioned. The shop has 4,363 total orders with 260 in the current month, split between 180 bank transfers and 57 cash-on-delivery. The auction starts at $400 with a blitz price of $750.