Lionishackers Sell Stolen Corporate Data on Dark Web

A cybercrime group known as Lionishackers has rapidly gained notoriety for infiltrating corporate databases and marketing stolen information on dark web forums and Telegram. Primarily targeting organizations in Asia, the group uses automated SQL injection tools to breach vulnerable systems. Lionishackers sell stolen data directly, bypassing traditional ransomware tactics in favor of monetizing raw records.

First observed in September 2024, Lionishackers established credibility by posting proof-of-compromise screenshots and offering data samples. They operate under multiple aliases linked to the same Telegram contact, making attribution difficult while maintaining customer access. The group has expanded beyond corporate leaks to include credential dumps, DDoS botnets, and underground forum hosting. Lionishackers sell stolen data from government agencies, telecoms, pharmaceutical firms, and casinos, often exposing personally identifiable information and financial records.

Outpost24 researchers say the group relies on tools like SQLmap and simple web shells to automate attacks and maintain persistence in compromised networks.

Read the full report here: https://cybersecuritynews.com/lionishackers-threat-actors/