Daily Dose of Dark Web Informer - May 11th, 2026

Summary

This is a curated daily threat intelligence digest aggregating multiple security incidents from May 11, 2026, including law enforcement takedowns (Crimenetwork platform), major data breaches (BLS International's 29M records, La Suite Numérique's 18M records), ransomware claims (Qilin targeting Keller Williams), and emerging threats (AI-powered remote access malware AIRDC). The post also notes a possible ShinyHunters clearnet domain seizure and reports on Google's discovery of the first AI-developed zero-day exploit.

Full text

Dark Web Informer — Daily Threat Intelligence Digest 🔑 API Access Available High-volume threat intelligence, ransomware data, IOC exports, and comprehensive feed access for security teams and researchers. Explore API → 🔁 Follow across all official platforms — darkwebinformer.com/socials 🔥 Advertising Opportunities Reach a highly engaged audience. View details 56.2k Unique Visitors 122.1k Pageviews Last 30 days as of May 11, 2026. Next update June 11th. 🔒 Unlock Premium Intelligence Real-time breach tracking, expert analysis, high-resolution evidence, unredacted feeds, and 5,100+ blog posts. View all plans and features on the pricing page. View Plans & Subscribe → 📌 Legend 📰Law Enforcement — LEA updates, investigations ⚠️Dark Web Notices — forums, markets, announcements ❗️Urgent Threats — breaches, ransomware, vulnerabilities 💡Insights & Tools — guides, OSINT, learning resources 🧾 Today's Intelligence Threat Intelligence ❗️ German Authorities Shut Down Revived "Crimenetwork" Platform, Arrest Operator on Mallorca FREE ❗️ Mansoura University Allegedly Leaked Exposing 731 Contact Records From the Egyptian Academic Institution FREE 📰 Google Threat Intelligence Group Reports First Known AI-Developed Zero-Day Exploit FREE ❗️ SAWTAD Allegedly Leaked Exposing 2,211 Files (2.19 GB) of SAW Sensor Diaper Tech R&D and SPMet Metrology Archive FREE ❗️ KAMS PARIS Allegedly Breached Exposing 187,927 Customer Records From the French Niche Perfumery FREE X/Twitter Updates ❗️ Poder Judicial del Estado de Tabasco allegedly leaked exposing 11,741 worker records from the Mexican state judicial body 💡 Possible ShinyHunters clearnet domain seizure as of about 7 hours ago detected by my FBI Watchdog script. ❗️ CalendrIDEL allegedly leaked exposing 1,400 user records from the French independent nurses platform 💡 Interesting find. 💡 Looks like the domain was indeed suspended by the registrar as of now. I will follow up if anything more comes of it. The Pay or Leak portal is still online. ❗️ InterLAB allegedly breached exposing data from 30 Mexican laboratories via compromised server ❗️ 1/2 BLS International allegedly breached exposing 29 million records, source code, and SSH keys from the Indian visa services giant ❗️ familybox.store allegedly breached exposing 1,100,000 PII records from the Venezuelan online supermarket 💡 I pushed a fix to the threat feed that was causing searches to not show that the data was actually loading, even though it was eventually showing results. You may need to hard refresh the page: CTRL+SHIFT+R. ❗️ Emergia Contact Center allegedly breached exposing 12 TB of data from the Colombian/Spanish BPO and 75 client companies 💡 Playground Games, the publisher of Forza Horizon 6 made a statement that they are taking action against individuals found to be accessing the build that was mistakenly released over the weekend. Also stating that is not the result of a pre-load issue. ❗️ Qilin Ransomware Claims Keller Williams Real Estate - Exton County as a Victim 💡 Meme 💡 I was curious to see how Session was doing with their fundraising goal to keep the app going. They have until July 8th to hit 1 million. Don't see that happening unless someone puts up a big number. ❗️ CB FINANCIAL SERVICES, INC. has filed form 8-k due to a cybersecurity incident ❗️ La Suite Numérique allegedly breached exposing over 18 million records from the French government digital workspace ❗️ The hacked data of The Gentlemen Ransomware is up for sale for $10K BTC. ❗️ AIRDC advertised as AI-powered hidden remote desktop control tool for Windows targets

Indicators of Compromise

• domain — familybox.store
• malware — Qilin Ransomware
• malware — The Gentlemen Ransomware
• malware — AIRDC

Entities