๐จ๐ฎ๐น Burger King Italy allegedly targeted in 5M database leak A threat actor on an underground forum is claiming to sell a database allegedly originating from Burger King Italy, the well-established fast-food chain with more than 150 restaurants in the country. The actor claims the database contains roughly 5M...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
WordPress malware campaign hides payloads in Steam profiles Nearly 2,000 WordPress websites were infected with malware that relies on Steam Community profile comments to hide command-and-control (C2) data. [...] https://www.bleepingcomputer.com/news/security/wordpress-malware-campaign-hides-payloads-in-steam-profiles/
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ซ๐ท Le Mรฉdia Pour Tous allegedly targeted in 13K database leak A threat actor on an underground forum is claiming to have leaked a database allegedly originating from Le Mรฉdia Pour Tous, an independent French media outlet created by Vincent Lapierre. The actor notes the data is not from the current year. The actor...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ฅ A new supply chain attack has hit official Red Hat Cloud Services npm packages. The Miasma campaign, a fresh Mini Shai-Hulud variant, plants a malicious preinstall hook that steals GitHub secrets, cloud credentials, SSH keys, and more from developer and CI/CD environments. It also adds persistence and downstream...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ Nornikovik hidden browser malware advertised on underground forum A threat actor on an underground forum is advertising Nornikovik, a hidden-browser malware marketed as fileless and undetected. The seller describes it as a tool that runs a victim's browser silently in the background, lets the operator control it...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
โผ๏ธ New Dark Web Informer Blog Post! Title: Threat Actor Claims to Sell Live Web-Shell Access to a NASA Web Application Link: https://darkwebinformer.com/threat-actor-claims-to-sell-live-web-shell-access-to-a-nasa-web-application/
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ช๐ธ Spanish gas company allegedly targeted in database sale exposing IBANs and phones A threat actor on an underground forum is claiming to sell a database allegedly belonging to a Spanish gas company. The actor describes the leads as fresh and says the data was obtained via a hack/vulnerability and has never been...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Microsoft investigates Office Apps, Teams file access issues Microsoft says an ongoing incident is preventing users of its Teams collaboration platform and Office for the web cloud-based productivity suite from opening files. [...]...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ต๐ช DIRANDRO (Peruvian National Police) allegedly targeted by L4TAMFUCK3RS A threat actor group on an underground forum, identifying as L4TAMFUCK3RS, is claiming to sell a full database allegedly originating from DIRANDRO, the specialized anti-drug-trafficking division of the Peruvian National Police (Policรญa...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Race Against Time: Why Faster Vulnerability Alerts Matter Attackers are exploiting vulnerabilities faster than many organizations can identify and patch them. SecAlerts explains why faster vulnerability alerts can help reduce exposure and improve response times. [...]...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จCyber Alert โผ๏ธ ๐ช๐ฌEgypt - ๐๐ผ๐๐ฟ๐ถ ๐๐ฟ๐ผ๐๐ฝ The Gentlemen hacking group claims to have breached Bouri Group. Threat actor: The Gentlemen Sector: Manufacturing Data exposure (claimed): Not specified Data type: Not specified Observed: Jun 1, 2026 Status: Pending verification ESIXยฉ: 5.04 Full details and impact assessment on...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Critical Windows Netlogon RCE flaw now exploited in attacks The Centre for Cybersecurity Belgium (CCB), the country's national authority for cybersecurity, warned on Friday that threat actors are now exploiting a recently patched critical Windows Netlogon vulnerability in attacks. [...]...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Webinar tomorrow: From alert to resolution in network incident response Network incidents are often detected quickly, but investigations and coordination can delay resolution. Join our webinar tomorrow to learn how automation and AI-assisted workflows can help IT teams accelerate incident response. [...]...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
The โvCISO platformโ label is outdated for todayโs MSPs. Service providers need portfolio-wide security programs, CISO-grade intelligence, and revenue insights. Thatโs why the Security Growth Platform category has emerged โ and Cynomi currently defines it with its unified frameworks and 100% partner-only model. Read:...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Microsoft confirms outage affecting MFA, My Sign-Ins platform Microsoft is working to address an ongoing incident preventing customers from setting up multi-factor authentication (MFA) or accessing the My Sign-Ins platform. [...]...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐ China-aligned hackers are intensifying espionage campaigns. Operation Dragon Weave is hitting Czech Republic and Taiwan with spear-phishing ZIPs to deploy AdaptixC2 via Azure Blob Storage. It gives attackers full remote control with 36 commands. Learn More:...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Microsoft fixes KB5089549 Windows security update install issues Microsoft has resolved a known issue causing installation failures and 0x800f0922 errors when deploying the May 2026 Windows 11 security update (KB5089549). [...]...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
SHOPOSINT A tool for gathering additional information about accounts across various payment systems (Stripe, SumUp, Revolut, Lydia) https://github.com/redsecurityfr/ShopOSINT
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
TXFETCH A tool for searching for transaction information by volume and time range across 10 popular blockchains (#btc, #eth, #solana, #tron and others) https://github.com/xaynov-osint/txfetch Creator @osint_xaynov
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ A legitimate-looking npm package for OpenAI Codex has been stealing developer auth tokens for over a month. codexui-android, marketed as a remote web UI, has seen 29,000+ weekly downloads. Since version 0.1.82 it quietly sends ~/.codex/auth.json โ including non-expiring refresh tokens โ to an attacker server. Read:...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
โ ๏ธ Threat actors are actively exploiting a critical vulnerability in WP Maps Pro. CVE-2026-8732 (CVSS 9.8) lets unauthenticated attackers create admin accounts and take over sites. It affects all versions up to 6.1.0. Update to 6.1.1 now. Read: https://thehackernews.com/2026/06/critical-wp-maps-pro-flaw-actively.html
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐๐ ๐๐ง๐ญ๐ข๐ ๐๐ ๐๐ฌ ๐๐๐ฐ๐ซ๐ข๐ญ๐ข๐ง๐ ๐ญ๐ก๐ ๐๐ฎ๐ฅ๐๐ฌ ๐จ๐ ๐๐ฒ๐๐๐ซ๐ฌ๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ Agentic AI is already ๐ซ๐๐ฌ๐ก๐๐ฉ๐ข๐ง๐ ๐ก๐จ๐ฐ ๐ฌ๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ ๐จ๐ฉ๐๐ซ๐๐ญ๐ข๐จ๐ง๐ฌ ๐ฐ๐จ๐ซ๐ค, from SOC automation to threat intelligence and vulnerability management. In this article we explore what it actually means for security teams, the ๐ง๐๐ฐ ๐ซ๐ข๐ฌ๐ค๐ฌ it introduces, and why ๐ญ๐ซ๐๐๐ญ๐ข๐ง๐ ๐ข๐ญ ๐๐ฌ ๐...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จCyber Alert โผ๏ธ ๐ฏ๐ตJapan - ๐๐๐ผ๐๐ถ๐ฒ๐ ๐๐ป๐ฐ. Asoview Inc. disclosed a cyberattack on its โsatsukiโ reservation management system after detecting unauthorized access on May 20, 2026. Attackers allegedly used compromised partner credentials to access partner and guest reservation data. Exposed information included company...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จCyber Alert โผ๏ธ ๐ง๐ทBrazil - ๐๐ฟ๐๐ฝ๐ผ ๐ ๐ฎ๐๐ฎฬ BravoX hacking group claims to have breached Grupo Mauรก and allegedly exfiltrated 427.3 GB of data. Threat actor: BravoX Sector: Construction Data exposure (claimed): 427.3 GB of data Data type: Client records, accounting data, confidential documents, marketing data, project...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ฎ๐ท Hajj and Pilgrimage Organization allegedly targeted in breach exposing 168M+ records for $80,000 BTC A threat actor on an underground forum is claiming to sell a database allegedly originating from the Hajj and Pilgrimage Organization in Iran, the government body managing pilgrimage travel. The actor claims the...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐จ๐ด GamaSoft allegedly targeted in 150GB+ data breach A threat actor on an underground forum is claiming to have exfiltrated data allegedly originating from GamaSoft, a Colombian company specializing in POS software for the food and beverage sector. The actor notes the company has over 25 years of experience, more...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ซ๐ท Avantages Enseignants allegedly targeted in 126K database leak A threat actor on an underground forum is claiming to have leaked a database allegedly originating from Avantages Enseignants, a French platform dedicated to education professionals (teachers and staff in the National Education system). The actor...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Yesterday I got a funny DM. s00pcan said some AI slop is automatically forking his Linux open-source projects and adding goofy ass ReadMe files to look all fancy. The primary difference though is the ReadMe includes a "download here" link which delivers a .zip file. The .zip file contains cool and badass malware. The...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ FedEx account checker tool advertised on underground forum A threat actor on an underground forum is advertising a FedEx "mail pass" account checker, a credential-stuffing tool designed to validate stolen email/password combinations against FedEx accounts. The seller markets it as request-based with updated API...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ฌ๐ง๐ฎ๐ช Nando's allegedly targeted in employee database breach A threat actor on an underground forum is claiming to sell an employee database allegedly originating from Nando's, the restaurant chain. The actor says the breach occurred as of May 30, 2026, and the data consists mainly of UK and Irish employees. The...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ซ๐ท Air Austral allegedly targeted in database leak A threat actor on an underground forum is claiming to have leaked a database allegedly originating from Air Austral, a French airline specializing in flights between the Indian Ocean, metropolitan France, southern Africa, and certain Asian destinations. The actor is...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐บ๐ธ MoniCare allegedly targeted in breach exposing 40K+ consumers A threat actor on an underground forum is claiming to sell a dataset allegedly originating from MoniCare, a Chicago-based domestic staffing agency that places professional nannies, babysitters, housekeepers, household managers, personal assistants, and...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
โผ๏ธ New Dark Web Informer Blog Post! Title: Australian Workplace Catering Platform Hampr Hit by Alleged 360K+ Record Leak Link: https://darkwebinformer.com/australian-workplace-catering-platform-hampr-hit-by-alleged-360k-record-leak/
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐บ๐ธ Bridges Bay Resort allegedly targeted in database leak A threat actor on an underground forum is claiming to have leaked a database allegedly originating from Bridges Bay Resort, a lakeside resort and waterpark located in Okoboji, Iowa. The actor is releasing the data for free. The actor claims the leak contains...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ฎ๐ฉ Ratakan allegedly targeted in free database leak exposing 80K records A threat actor on an underground forum is claiming to have published a database allegedly originating from Ratakan, an Indonesian digital marketplace and affiliate sales platform. The actor is releasing the data for free. The actor claims the...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ฎ๐ณ Mydukaan allegedly targeted in massive breach exposing 100M users A threat actor on an underground forum is claiming to sell a full database dump allegedly originating from Mydukaan, an e-commerce platform (described as similar to Shopify) widely used in India. The actor claims the dump contains roughly 100M...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
WP Maps Pro bug exploited to create admin accounts on WordPress sites Hackers are targeting WordPress websites running a vulnerable version of the WP Maps Pro plugin, which allows creating rogue administrator accounts without authentication. [...]...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐จ๐ด CNE (National Electoral Council) allegedly targeted by EsqueleSquad A threat actor on an underground forum, attributing the leak to a group called EsqueleSquad, is claiming to have obtained confidential material directly from the CNE (Consejo Nacional Electoral), Colombia's National Electoral Council, and related...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Dutch authorities have dismantled a botnet comprising at least 17 million infected devices, including computers, smartphones, tablets, and IoT devices. More than 200 servers in the Netherlands supported the operation. Police seized a subset of the infrastructure, and the hosting provider subsequently took the network...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ FalkonC2 Windows RAT advertised on a Russian speaking underground forum A threat actor on an underground forum is advertising FalkonC2, a private Windows remote access trojan (RAT) written in C++ and assembly. The seller markets two payload variants, one aimed at consumer systems and one at corporate environments,...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ฆ๐บ RIC Publications allegedly targeted in breach exposing 116K+ customers A threat actor on an underground forum is claiming to sell a dataset allegedly originating from RIC Publications, an Australian educational publishing company that develops teaching resources, student workbooks, lesson plans, and...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ฆ๐บ Melbourne International Film Festival allegedly targeted in breach exposing 340K+ customers A threat actor on an underground forum is claiming to sell a dataset allegedly originating from the Melbourne International Film Festival (MIFF), Australia's largest and one of the world's oldest film festivals, running...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐บ๐ธ HungerRush allegedly targeted in breach exposing 26.8M+ customers A threat actor on an underground forum is claiming to have leaked a dataset allegedly originating from HungerRush, a U.S.-based restaurant technology company headquartered in Houston that provides cloud-based point-of-sale (POS) and restaurant...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ Bumble allegedly targeted in massive 32 million user database sale A threat actor on an underground forum is claiming to sell a dataset allegedly originating from Bumble, the dating app. The actor describes it as a clean JSON dump of fresh records. The actor claims the dataset contains roughly 32 million records...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
โผ๏ธ๐บ๐ธ Genesis Ransomware Claims 5 Victims ๐บ๐ธ A Roettgers - Fuel distributor and gas station operator. ๐บ๐ธ Cedar Street Capital - Private investment entity associated with Cynvestors Limited Partnership. ๐บ๐ธ Green Resource - Distributor of professional fertilizers, chemicals, and seeds for turf, lawn, and landscaping...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ GoldenBullet cracking tool advertised on underground forum A threat actor on an underground forum marketplace is advertising GoldenBullet, an automation and web testing framework being promoted as a credential-stuffing and account-checking tool. The post markets version 2.1 with a refreshed UI and updated...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Here are SOME features coming to the new Threat Feed in June. - OCR Text Scanning. Click a button to scan the screenshot, wait a couple seconds and it will pull any links, session IDs, tox, telegrams from the screenshot back to you with easy to copy buttons - Threat report generation. You can run it per Threat Alert...
Hello I have added more malware to the malware collection place. I have added 150,000 malwares and a bunch of malware reversing papers coupled with malwares. Please download the malware. vx-underground.org/Updates
KRONIKIER If you havenโt been able to find the contact details on a particular website today, that doesnโt mean theyโve never been there The Internet Archive API and Kronikier may find contact details that have been removed very quickly https://github.com/soxoj/kronikier Creator @soxoj_insides
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐จ๐ด Colombian government systems allegedly compromised by EsqueleSquad (150 GB) A threat actor group on an underground forum, identifying as EsqueleSquad, is claiming to have compromised 15 official Colombian government databases, extracted directly from internal servers. The actors are threatening to release the...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ญ๐ฐ Hong Kong school and food sector orgs allegedly targeted in 120K database leak A threat actor group on an underground forum, identifying as Anka Red Team (TurkHackTeam), is claiming to have dumped a database allegedly originating from Hong Kong based school and food sector entities. The actors claim the leak...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks Palo Alto Networks is warning that hackers are now exploiting a PAN-OS GlobalProtect authentication bypass flaw, tracked as CVE-2026-0257, in attacks attempting to breach corporate networks. [...]...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ฒ๐ฝ INCODIS allegedly targeted in leak exposing 20,000+ users with disabilities A threat actor on an underground forum, attributing the leak to a group called Olympus_Group, is claiming to have leaked data allegedly originating from INCODIS, the State of Colima's institute for the inclusion and protection of people...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ช๐ธ Bambuy allegedly targeted in free database leak A threat actor on an underground forum is claiming to have published a database allegedly originating from Bambuy, a Spanish e-commerce platform. The actor is releasing the data for free. The actor claims the leaked SQL database contains customer and address...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ช๐ธ Podoservice allegedly targeted in 100K database sale A threat actor on an underground forum is claiming to sell a database allegedly originating from Podoservice, a Spanish podiatry services platform. The actor claims the database contains roughly 100K records across customer and contact data. ๐ช๐ต๐ฎ๐'๐ ๐ฎ๐น๐น๐ฒ๐ด๐ฒ๐ฑ๐น๐...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
AgenticEarth An AI assistant with access to 123 geospatial datasets. It allows you to gather a wealth of information about any location on Earth and visualise the results on a map. Free trial. https://agenticearth.app/ #geoint
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ช๐ธ Spain allegedly targeted in massive 19 million biometric photos and ID cards leak A threat actor group on an underground forum, identifying as EsqueleSquad, is claiming to expose more than 19 million Spanish citizens and politicians in a consolidated 13 GB database. The actors claim the credentials were taken...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
New CIFSwitch Linux flaw gives root on multiple distributions A newly discovered local privilege escalation vulnerability dubbed 'CIFSwitch' in the Linux kernel could allow attackers to forge CIFS authentication key descriptions, abuse the kernel's key request mechanism, and gain root privileges. [...]...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
A long long time ago, when I first got into malware, I met a kid who was a little older than me who, by all standards of measurement, was significantly more intelligent and gifted than me. He made me feel like a moron. Very quickly he established a reputation on IRC for being "the guy", despite being like, 16. His...
Hello, If you're a person who enjoys malware and/or knows Python and wants to see malware that targets STEAM and GAMERS, I have the source code to a malware I have named "Stealer.Python.GMBA.Manipulator". This malware was originally noted on Xitter from GMBA. In summary, this Python malware kills the Steam process...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
I learned quite a bit from this actually. I didn't know Steam was a Chromium app. Hence, you can kill Steam then relaunch it with the "-cef-enable-debugging" flag. Once you'll launched Steam with this, you can inject Javascript into Steam using Chromium "webSocketDebuggingUrl" stuff. This malware has a whole...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ CVE-2026-0257, a PAN-OS and Prisma Access authentication bypass flaw, is under active exploitation. The CVSS 7.8 bug can enable unauthorized VPN access and, in some observed cases, access to internal networks. Patch immediately or apply mitigations. Details:...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Using this script you can also send these Russian people very important and private messages (I didn't message them this, this isn't my image, someone else did) Images via "pro from 2c44"
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
I got the payload to this malware. It is absurdly silly. This malware is killing me bro. It is so unbelievably silly. This was 100% written using Claude or ChatGPT. I've never seen a malware payload LEAVE NOTES describing what it's doing. The malware has a Powershell script that connects to the C2 for stinky malware...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
Hello, Awhile ago some guy on Xitter was talking about his friend being scammed and losing Counter Strike stuff. I'm not a gamer, I don't understand Counter Strike markets and stuff, but the gist of everything was he purchased an item and he was (in some capacity) scammed? He said Steam support was DMing him over...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
โผ๏ธ๐บ๐ธ DentaQuest has had 234GB+ leaked on to ShinyHunters Pay or Leak Dark Web portal ________________________________________ Main Channel: https://t.me/SliceForLifeee Backup Channel: https://t.me/SliceForLifeeee Website: darkwebinformer.com Pricing (Includes Crypto): darkwebinformer.com/pricing API Access:...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ Keybe.ai allegedly targeted in customer database leak A threat actor on an underground forum is claiming that Keybe.ai, an AI platform, suffered a data breach in May 2026 resulting in the full compromise of its customer database. The actor claims the leak contains roughly 1.9M CSV records (~156M in size), partially...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
John Daghita aka "lick" will be extradited back to the United States after a judge approved it. h/t: @vxdb https://rci.fm/deuxiles/infos/Justice/Le-hacker-John-Daghita-soupconne-dun-vol-de-46-millions-de-dollars-en-cryptommonaie
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ๐ฒ๐ฆ Multiple Moroccan government and corporate databases allegedly listed for sale A threat actor on an underground forum is claiming to sell a bunch of Moroccan databases, attributed to a group/dumper known as PKA291. The listing spans both government-related and corporate datasets. The actor claims the combined...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
๐จ 0day Syndicate has a security check page... /verify.php?id=1&confirm_hash= that tells people not to scrape their information. The funny thing is that the onion url at the bottom of the security check message goes to 0APT which shows the hacked KRYBIT message from earlier this month. Clicking the verify human button...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post
ChatGPT share links abused to host fake outage pages to deliver malware Threat actors are abusing ChatGPT's content-sharing feature to display fake OpenAI outage pages that direct users to download malware disguised as the ChatGPT desktop application. [...]...
Telegram media itemMedia served by Telegram. The preview loads from telegram.org when this card is visible.Open original Telegram post