📢 Unlock Exclusive Cyber Threat Intelligence
Powered by DarkWebInformer.com
Get foundational access to breach intelligence — track breaches, leaks, and threats in real-time with unfiltered screenshots and expert summaries.
⚠ Disclaimer
This report includes actual screenshots and/or text that may include unredacted personally identifiable information (PII) gathered from publicly available sources. The sensitive information presented within this report is intended solely for cybersecurity awareness and threat intelligence purposes. Dark Web Informer explicitly condemns unauthorized access, distribution, or misuse of the personal data displayed or referenced here. Users must treat exposed data responsibly and ethically.
📌 Overview
A threat actor using the alias Zoldyck has claimed to be selling a database allegedly stolen from SNCF Connect, the French state rail company’s digital service. The threat actor posted the offer on a dark web forum, claiming the breach contains over 5 million customer and employee records, with detailed personal and account information.
📊 Key Details
| Attribute | Information |
|---|---|
| Date | 6/11/2025, 2:58:50 AM |
| Threat Actor | Zoldyck |
| Victim Country | France |
| Industry | Leisure & Travel |
| Organization | sncf connect |
| Victim Site | sncf-connect.com |
| Category | Data Breach |
| Severity | Medium |
| Network | openweb |
Subscriber-only content…
![IOC Alert: Lumma Stealer C2 Domain Identified – larpfxs[.]top](/content/images/size/w1304/format/webp/2025/08/23985762398576198764252-1.jpg)
