Sunday , April 20 2025
dark web

‘Hell Paradise’ Claims
Government Websites in 49 Countries at Risk

According to FalconFeeds x post, a threat actor has listed 49 countries as part of an experiment. They also claim that over 1000 government sites are vulnerable. According to Cyber Express, the threat actor is promoting an onion website called ‘Hell Paradise’ which aims to obtain vulnerable government sites and data for free. The actor lists various critical and high-severity vulnerabilities like RCE, LFI, SQLi, etc.

FalconFeeds tweeter post

A cybercriminal has appeared on the dark web, announcing the creation of “Hell Paradise,” an undercover online platform supposedly made for taking advantage of weaknesses in government websites and getting access to important information. The cybercriminal mentions countries like the United Arab Emirates, Albania, Armenia, and Angola as some of their targets.

UK Software Firm Exposed 8 million of Healthcare Worker Records

A data leak involving 8 million UK healthcare worker records, including IDs and financial information, was caused by a misconfigured...
Read More
UK Software Firm Exposed 8 million of Healthcare Worker Records

GitHub Enterprise Server Vulns Expose Risk of Code Execution

GitHub has released security updates for GitHub Enterprise Server to fix several vulnerabilities, including a high-severity flaw that could allow...
Read More
GitHub Enterprise Server Vulns Expose Risk of Code Execution

CVE-2025-2492
ASUS warns of critical auth bypass flaw in routers

Hackers can exploit a vulnerability in Asus routers to execute unauthorized functions. This serious issue, rated 9.2 out of 10,...
Read More
CVE-2025-2492  ASUS warns of critical auth bypass flaw in routers

16,000+ Fortinet devices compromised with symlink backdoor, Mostly in Asia

According to Shadowserver Foundation around 17,000 Fortinet devices worldwide have been compromised using a new technique called "symlink". This number...
Read More
16,000+  Fortinet devices compromised with symlink backdoor, Mostly in Asia

Patch now! Critical Erlang/OTP SSH Vuln Allows UCE

A critical security flaw has been found in the Erlang/Open Telecom Platform (OTP) SSH implementation, allowing an attacker to run...
Read More
Patch now! Critical Erlang/OTP SSH Vuln Allows UCE

CISA warns of increasing risk tied to Oracle legacy Cloud leak

On Wednesday, CISA alerted about increased breach risks due to the earlier compromise of legacy Oracle Cloud servers, emphasizing the...
Read More
CISA warns of increasing risk tied to Oracle legacy Cloud leak

CVE-2025-20236
Cisco Patches Unauthenticated RCE Flaw in Webex App

Cisco issued a security advisory about a serious vulnerability in its Webex App that allows unauthenticated remote code execution (RCE)...
Read More
CVE-2025-20236  Cisco Patches Unauthenticated RCE Flaw in Webex App

Apple released emergency security updates for 2 zero-day vulns

On Wednesday, Apple released urgent operating system updates to address two security vulnerabilities that had already been exploited in highly...
Read More
Apple released emergency security updates for 2 zero-day vulns

Oracle Released Patched for 378 flaws for April 2025

On April 15, 2025, Oracle released a Critical Patch Update for 378 flaws for its products. The patch update covers...
Read More
Oracle Released Patched for 378 flaws for April 2025

CVE-2025-24054
Hackers Exploiting NTLM Spoofing Windows Vuln the in Wild

Check Point Research warns of the active exploitation of a new vulnerability, CVE-2025-24054, which lets hackers leak NTLMv2-SSP hashes using...
Read More
CVE-2025-24054  Hackers Exploiting NTLM Spoofing Windows Vuln the in Wild

The hacker’s message to the Breachforums Community is a clear explanation of the “Hell Paradise” platform, which contains vulnerable government websites and related data categorized by country and vulnerability type.

The hacker claims to have found over 1000 vulnerable government websites from 49 countries. They are promoting “Hell Paradise” as a place to find and take advantage of these vulnerabilities.

Hackers classify vulnerabilities into three main categories: Vulnerabilities, Exposed Gits, and Exposed Env files. Of particular concern are critical and high-severity vulnerabilities such as Remote Code Execution (RCE), Local File Inclusion (LFI), and SQL injection (SQLi), which pose significant security risks if not fixed.

Access to “Hell Paradise” is not free. The hacker charges a $50 registration fee to prevent spam and abuse. This financial barrier helps the operator control access and reduce the risk of exploitation.

The hacker says that no data will be saved by the platform, only email addresses are needed for registration. However, the suggestion to use disposable email services like cock.li suggests that the operation is secretive and raises concerns about the real intentions of “Hell Paradise.”

“Hell Paradise” highlights the growing cyber threats to government infrastructures worldwide. Malicious actors are now more focused on attacking critical systems and stealing sensitive data. This poses a significant risk of widespread disruption and data compromise.

The cybersecurity community needs to collaborate and stay vigilant to face the increasing threat from cybercriminals and state-sponsored actors. We must take proactive measures and respond together to protect digital infrastructure and prevent the harmful effects of cyber exploitation.

Source: FalconFeeds, Cyberexpress

(Media disclaimer: This report is based on research from various sources and is for reference only. Users are responsible for how they use this information. InfoSecbulletin is not liable for the accuracy or consequences of using this information)

Check Also

ANY.RUN

Top 10 Malware Threats of the Week: Reports ANY.RUN

Cybersecurity platform ANY.RUN recently reported the top 10 malware threats of the week, highlighting a …

Leave a Reply

Your email address will not be published. Required fields are marked *