‼️ Cl0p Ransomware Claims 11 Victims 🇮🇹 Labinf IT 🇺🇸 NG Attorneys 🇨🇦 Conwest 🇬🇧 Dukosi 🗺️Crowded Island 🇨🇦 Ideal Welders 🗺️ Strategic Objectives 🏴󠁧󠁢󠁷󠁬󠁳󠁿 TRJ Ltd 🇺🇸 VIP LLC 🇮🇳 MNK Associates 🇺🇸 Brault

‼️ Qilin Ransomware Claims 2 Victims 🇷🇴 CONPET S.A. 🇩🇪 University of Applied Sciences Worms

‼️ Access to a large EU-based Magento 2.4.7 sports shop is being auctioned, with iframe card capture already in place. The site reportedly processed 80,000 cards in December, 150,000 in January, and 15,000 so far in February. The auction starts at $30,000 with a blitz price of $50,000.

‼️🇫🇷 Two French organizations have allegedly been breached by the same threat actor: Fédération Française de la Randonnée Pédestre: Data from 813,983 members of France's national hiking federation is for sale, containing 471,352 unique emails and 796,141 unique phone numbers from 2024–2025 license holders. CCAS Dunkerque: Records of 66,343 individuals receiving social assistance from the Community Center for Social Action in Dunkerque, including 40,406 unique phone numbers and 13,098 unique emails. The data includes family groupings and welfare recipient details.

‼️ An EU-based PrestaShop store selling nutritional supplements is being auctioned with admin account access and a SQL injection point included. The site processes card and PayPal payments with 700 orders in the last 30 days and over 50,000 total. The auction starts at $1,000 with a blitz price of $2,000.

❗️🇫🇷 Order data from Family Cinema, a French movie theater chain, is allegedly being sold, totaling 156,489 orders from 39,896 unique customers spanning 2020 to 2026. The exposed records include emails, phone numbers, full addresses, dates of birth, IP addresses, payment details, and detailed ticket purchase history including film titles and showtime information. A 1,000-line sample has been posted freely.

‼️ Incognito Market Owner "Pharaoh" Sentenced to 30 Years for Running $105M Dark Web Drug Empire Rui-Siang Lin, a 24-year-old Taiwanese national who operated under the pseudonym "Pharaoh," was sentenced to 30 years in federal prison on February 3, 2026, for running Incognito Market, one of the largest dark web narcotics marketplaces ever created. The platform, which operated from October 2020 until its closure in March 2024, facilitated over 640,000 drug transactions totaling more than $105 million in sales. Its inventory included over 1,000 kilograms each of cocaine and methamphetamine, along with hundreds of kilograms of other narcotics and fentanyl-laced pills disguised as oxycodone. The marketplace served more than 400,000 buyer accounts and hosted over 1,800 vendors, while Lin personally collected more than $6 million in profits. Lin oversaw every aspect of Incognito Market's operations from various locations including St. Lucia, where he ironically conducted a training session for local police on cybercrime and cryptocurrency. The platform functioned like a professional e-commerce site, complete with branding, customer service, and its own internal cryptocurrency bank that kept buyers and sellers anonymous. In January 2022, Lin introduced a policy explicitly allowing opiate sales on the site, which led to the sale of counterfeit oxycodone pills laced with fentanyl. directly contributing to the death of a 27-year-old man from Arkansas in September 2022. When Lin shut down the marketplace in March 2024, he stole at least $1 million in user deposits and attempted to extort vendors and buyers by threatening to publish their transaction histories. The sentencing judge called it the most serious drug crime she had encountered in 27.5 years on the bench. Lin was also ordered to forfeit over $105 million and serve five years of supervised release.

Incognito Market Owner "Pharaoh" Sentenced to 30 Years for Running $105M Dark Web Drug Empire

‼️🇺🇸 Cardbase, a U.S.-based platform that aggregates trading card prices across 30+ marketplaces, has allegedly been breached. The listing claims 248,000 user records containing emails, names, and profile pictures are for sale.

❗️ Corporate accounts and internal data from multiple EU-based companies have allegedly been leaked, spanning industrial, financial, and tech sectors. The dump includes 134 corporate email accounts with employee and customer contact information, bcrypt-hashed passwords, and internal company data such as transaction records, business codes, and partner details. DWI Note: A lot of the emails are from personal domains (Example Gmail)

⚠️ A couple of people have asked me how to access the Dread premium link when Dread is down. You need to purchase a premium membership at: https://dreadytofatroptsdj6io7l3xptbet6onoyno2yv7jicoxknyazubrad[.]onion/store/ which is $50. Once you have a membership you can find the link in /d/lounge. Look for this stickied message at the top. Obviously I have redacted the url.