Thursday , June 5 2025
dark web

‘Hell Paradise’ Claims
Government Websites in 49 Countries at Risk

According to FalconFeeds x post, a threat actor has listed 49 countries as part of an experiment. They also claim that over 1000 government sites are vulnerable. According to Cyber Express, the threat actor is promoting an onion website called ‘Hell Paradise’ which aims to obtain vulnerable government sites and data for free. The actor lists various critical and high-severity vulnerabilities like RCE, LFI, SQLi, etc.

FalconFeeds tweeter post

A cybercriminal has appeared on the dark web, announcing the creation of “Hell Paradise,” an undercover online platform supposedly made for taking advantage of weaknesses in government websites and getting access to important information. The cybercriminal mentions countries like the United Arab Emirates, Albania, Armenia, and Angola as some of their targets.

CVSS 9.6: IBM QRadar & Cloud Pak Security Flaws Exposed

IBM has issued a security advisory for vulnerabilities in its QRadar Suite Software and Cloud Pak for Security platforms. These...
Read More
CVSS 9.6: IBM QRadar & Cloud Pak Security Flaws Exposed

ALERT
Thousands of IP addresses compromised nationwide: CIRT warn

As Bangladesh prepares for the extended Eid-ul-Adha holidays, the BGD e-GOV Computer Incident Response Team (CIRT) has issued an urgent...
Read More
ALERT  Thousands of IP addresses compromised nationwide: CIRT warn

New Android Malware ‘Crocodilus’ Targets Banks in 8 Countries

In March 2025, the Threatfabric mobile Threat Intelligence team identified Crocodilus, a new Android banking Trojan designed for device takeover....
Read More
New Android Malware ‘Crocodilus’ Targets Banks in 8 Countries

Qualcomm Patches 3 Zero-Days Used in Targeted Android Attacks

Qualcomm has issued security patches for three zero-day vulnerabilities in the Adreno GPU driver, affecting many chipsets that are being...
Read More
Qualcomm Patches 3 Zero-Days Used in Targeted Android Attacks

Critical RCE Flaw Patched in Roundcube Webmail

Roundcube Webmail has fixed a critical security flaw that could enable remote code execution after authentication. Disclosed by security researcher...
Read More
Critical RCE Flaw Patched in Roundcube Webmail

Hacker claim Leak of Deloitte Source Code & GitHub Credentials

A hacker known as "303" claim to breach the company's systems and leaked sensitive internal data on a dark web...
Read More
Hacker claim Leak of Deloitte Source Code & GitHub Credentials

CISA Issued Guidance for SIEM and SOAR Implementation

CISA and ACSC issued new guidance this week on how to procure, implement, and maintain SIEM and SOAR platforms. SIEM...
Read More
CISA Issued Guidance for SIEM and SOAR Implementation

Linux flaws enable password hash theft via core dumps in Ubuntu, RHEL, Fedora

The Qualys Threat Research Unit (TRU) found two local information-disclosure vulnerabilities in Apport and systemd-coredump. Both issues are race-condition vulnerabilities....
Read More
Linux flaws enable password hash theft via core dumps in Ubuntu, RHEL, Fedora

Australia enacts mandatory ransomware payment reporting

New ransomware payment reporting rules take effect in Australia yesterday (May 30) for all organisations with an annual turnover of...
Read More
Australia enacts mandatory ransomware payment reporting

Why Govt Demands Foreign CCTV Firms to Submit Source Code?

Global makers of surveillance gear have clashed with Indian regulators in recent weeks over contentious new security rules that require...
Read More
Why Govt Demands Foreign CCTV Firms to Submit Source Code?

The hacker’s message to the Breachforums Community is a clear explanation of the “Hell Paradise” platform, which contains vulnerable government websites and related data categorized by country and vulnerability type.

The hacker claims to have found over 1000 vulnerable government websites from 49 countries. They are promoting “Hell Paradise” as a place to find and take advantage of these vulnerabilities.

Hackers classify vulnerabilities into three main categories: Vulnerabilities, Exposed Gits, and Exposed Env files. Of particular concern are critical and high-severity vulnerabilities such as Remote Code Execution (RCE), Local File Inclusion (LFI), and SQL injection (SQLi), which pose significant security risks if not fixed.

Access to “Hell Paradise” is not free. The hacker charges a $50 registration fee to prevent spam and abuse. This financial barrier helps the operator control access and reduce the risk of exploitation.

The hacker says that no data will be saved by the platform, only email addresses are needed for registration. However, the suggestion to use disposable email services like cock.li suggests that the operation is secretive and raises concerns about the real intentions of “Hell Paradise.”

“Hell Paradise” highlights the growing cyber threats to government infrastructures worldwide. Malicious actors are now more focused on attacking critical systems and stealing sensitive data. This poses a significant risk of widespread disruption and data compromise.

The cybersecurity community needs to collaborate and stay vigilant to face the increasing threat from cybercriminals and state-sponsored actors. We must take proactive measures and respond together to protect digital infrastructure and prevent the harmful effects of cyber exploitation.

Source: FalconFeeds, Cyberexpress

(Media disclaimer: This report is based on research from various sources and is for reference only. Users are responsible for how they use this information. InfoSecbulletin is not liable for the accuracy or consequences of using this information)

Check Also

Evaly

Evaly E-commerce Platform Allegedly Hacked

Evaly, a Bangladeshi e-commerce platform, is reportedly facing a major data breach that may have …

Leave a Reply

Your email address will not be published. Required fields are marked *