@sitreports is monitored as a public Telegram source. This profile preserves source metadata and links back to the original channel rather than treating posts as independently verified reporting.
๐ก Dutch police disrupt botnet tied to 17 million compromised devices Dutch authorities have dismantled a botnet infrastructure linked to roughly 17 million infected devices, targeting the command layer used to manage a large pool of compromised systems. The action, detailed in the operation, focused on taking down...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ CVE-2026-0257 exploited via forged GlobalProtect cookies Rapid7 says attackers actively abused CVE-2026-0257 against multiple customers after Palo Alto patched the flaw on 13 May. The issue affects PAN-OS GlobalProtect portal and gateway deployments where auth override cookies are enabled and the same certificate...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
โก First Windows PC powered by Nvidia chips to debut next week, Axios reports The first Windows PC powered by Nvidia chips is slated to debut next week, Axios reports. This marks a notable shift in the Windows hardware landscape, signaling Nvidiaโs push into client processors and prompting OEMs and developers to...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ค SoftBank to build up AI data centres in France with major investment SoftBank plans to expand AI data centres in France, committing a major investment to build out domestic compute infrastructure. The initiative indicates increased capacity for AI workloads hosted on French soil. Operationally, this points to a...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ก Blue Origin faces months of delays after rocket explosion damages launch pad Blue Origin faces months of delays after a rocket explosion damaged its launch pad, pausing operations while repairs and verifications proceed. The stand-down compresses the near-term manifest, prompts schedule reshuffles for queued...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ก From lottery draws to fiscal spending, China broadens digital yuan footprint China is expanding the reach of its digital yuan, extending usage from lottery draws to direct fiscal spending. The move signals a shift from narrow pilots to operational deployment across citizen-facing services and government payments....
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ Google enables DBSC by default in Chrome for Windows Google has moved Device-Bound Session Credentials to general availability in Chrome for Windows. The control is now enabled by default for Google Workspace users and also covers Workspace Individual and personal Google accounts. DBSC binds session cookies to...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
The Silence Around Destroyed Gepards Western governments and media once highlighted every batch of Gepards delivered to Ukraine as a symbol of support. Today, the same actors stay almost silent when those systems are destroyed in Russian strikes. This contrast between loud announcements of deliveries and quiet...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ Signal backup phishing shifts focus from account access to message archives A targeted phishing campaign is sending SMS messages that impersonate Signal Support and pressure users to paste 64-character backup recovery keys into chat. The operation has been observed against journalists and activists and abuses...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ CIFSwitch opens local root path on multiple Linux distributions A newly disclosed Linux local privilege escalation flaw, dubbed CIFSwitch, abuses forged cifs.spnego key requests to make the root-run cifs.upcall helper trust attacker-controlled data. The issue affects systems using vulnerable kernel CIFS plus...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ก Netherlands seizes 200 servers in 17-million-device botnet case Dutch police and the NCSC say they dismantled a botnet spanning at least 17 million infected computers, tablets, and smartphones, and seized more than 200 servers hosted in the country. The infrastructure was tied to the residential proxy service...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ SideCopy Uses XenoRAT Against Afghan Finance Network SideCopy, linked to Transparent Tribe/APT36, is assessed to have targeted Afghanistanโs Ministry of Finance and all 34 provincial revenue directorates with a spear-phishing chain delivering XenoRAT 1.8.7. The lure used a Pashto-named LNK inside a ZIP archive,...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ก Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks Attackers are now exploiting a GlobalProtect VPN authentication bypass flaw in Palo Alto Networks gateways, enabling login checks to be bypassed. Operationally, GlobalProtect becomes an active ingress vector. Organizations should expedite fixes,...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ No fix yet for critical Gogs RCE bug - exploit module is out A critical remote code execution flaw in Gogs remains unpatched, and an exploit module is now public. Coverage of the Gogs RCE bug highlights immediate risk to exposed instances. Priority actions: reduce attack surface, restrict external access, disable...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ค ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface A disclosed ChatGPhish vulnerability exploits ChatGPTโs Markdown rendering to inject phishing content through web page summaries, effectively turning the summarization feature into a delivery path for malicious links. Operationally, this...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ Malicious NuGet Package Poses as Sicoob SDK to Steal Passwords A fraudulent NuGet package posing as the Sicoob SDK has been identified stealing passwords. By mimicking a trusted SDK, it targets developers pulling dependencies through routine workflows. Operationally, this highlights software supply-chain risk in...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ 14 malicious npm packages impersonated OpenSearch, Elasticsearch libraries Fourteen malicious npm packages impersonated OpenSearch and Elasticsearch libraries on npm, posing as trusted components for search integrations. The incident highlights ongoing supply chain risk in the JavaScript ecosystem. Teams should...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ค Dutch govt disrupts malware botnet with 17 million infected devices Dutch authorities have disrupted a massive malware botnet involving 17 million infected devices. The action reduces capacity for spam, credential theft, and DDoS, and signals stronger state pressure on criminal infrastructure. Defenders should...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ Microsoft Calls the Zero-Day Dumps Irresponsible. The Researcher Says Microsoft Started It. Microsoft calls recent zero-day dumps irresponsible; the researcher responds that Microsoft set the events in motion. A public dispute over disclosure and accountability is now explicit. Operationally, the clash spotlights...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ค Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit On May 10, 2026, threat actors exploited CVE-2026-39987 in Marimo and deployed an LLM-driven agent for post-exploitation, enabling credential theft and exfiltration of a PostgreSQL database. The incident highlights coordinated...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ค GREYVIBE Hackers Use ChatGPT and Gemini to Power Cyberattacks A threat group identified as GREYVIBE is leveraging mainstream generative AI tools, including ChatGPT and Google Gemini, to enable and scale cyberattacks. Operationally, this highlights how off-the-shelf LLMs can accelerate content creation, targeting,...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ก Operation Jailbreak: the Armyโs massive push to hack its own systems and make them talk to each other The U.S. Army has launched Operation Jailbreak to hack its own systems and force cross-platform interoperability. Operationally, the push aims to streamline interoperability across sensors, shooters, and command...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
โก New Gogs zero-day flaw lets hackers get remote code execution A new zero-day in the Gogs Git service allows remote code execution. The Gogs zero-day elevates exposure from repo access to potential server takeover. Operationally, RCE on Gogs threatens repository integrity and developer infrastructure, enabling...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ BTMOB Android malware service generates custom phishing payloads An Android malware-as-a-service named BTMOB generates custom phishing payloads through a builder, allowing operators to tailor lures to specific themes. This capability streamlines phishing operations at scale and increases pressure on mobile...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ค Armyโs new data operations center may stay โleanโ on people, expecting automation to help pick up growing workload The Armyโs new data operations center may remain light on personnel, with automation taking on an expanding set of tasks as demand grows. Operationally, a lean construct can accelerate scaling and cut...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ Draft NDAA would dissolve Space Development Agency, Rapid Capabilities Office The Draft NDAA would dissolve the Space Development Agency and the Rapid Capabilities Office, ending both organizations in their current form. If enacted, dissolution would force program transfers to other acquisition channels, with...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ก DOD wants more than $2B in fiscal 2027 to move beyond โfragmentedโ CJADC2 deployments The Pentagon seeks over $2B in FY27 to move CJADC2 beyond fragmented rollouts, aiming to consolidate softwareโcentric C2 on a single pane of glass, per budget documents. Consolidation would tighten interoperability, speed decision...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ Microsoft 0-day feud escalates as researcher threatens another Windows exploit dump A Microsoft 0-day feud has escalated as a security researcher threatens to release another Windows exploit dump. The standoff heightens risk for Windows users and enterprise environments. A public drop would shrink defender...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ก Resecurity Supports Microsoft DCU in Disrupting Fox Tempestโs Cybercriminal Code-Signing Ecosystem Resecurity supported the Microsoft DCU in disrupting Fox Tempestโs cybercriminal code-signing ecosystem. The action targets tooling and channels used to pass malware as trusted software. Operationally, neutralizing...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
โก Hackers exploit FortiClient EMS flaw to push infostealer malware Threat actors are exploiting a vulnerability in the FortiClient Enterprise Management Server, using the centralized endpoint management platform to deliver credentialโstealing malware to systems under its control. By abusing trusted distribution...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post