Aaron Swartz, 1986-2013

POC:

🚨 POC for CVE-2025-55182 that works on Next.js 16.0.6 https://t.co/dVd9yuw54h

⚠️ Noctis Mail: A hidden email service with claimed Server-Side Rendering (SSR), Strict Input Sanitation, Cryptographic Authentication, Database Hardening, Zero JS. DWI Note: When you get to the login screen copy the signup link and change the end to /signup. If you do signup

🚨The FBI is alerting the public to a new twist on virtual kidnapping scams. Criminals are taking photos pulled from social media or other public sites and altering them to look like recent proof of life images. They then pose as kidnappers and use these edited pictures or videos

An endpoint is now available for the full IOC history. Please see the message at the top of the Docs page. Nothing more will be added to the API this year. These are currently in the roadmap: - Threat Intelligence Analytics: December (all paid users) - Darknet Markets Timeline:

Just a friendly reminder that you're free to go source all the leaks surrounding #Lockbit #BlackBasta and a few #DarkWeb Markets... I cannot remember if I added "Dream Market" so if it's not there I'll added it https://t.co/GKeyhReol8

Everest Ransomware originally listed Iberia Airlines for a ransom of $150,000. Maybe a holiday discount. 😂

🚨🇪🇸 Iberia Airlines has been listed on forum Exploit for $10,000 by Everest Ransomware

🚨 CVE-2025-55182: Meta React Server Components Remote Code Execution Vulnerability has been added to the CISA KEV Catalog Added: 2025-12-05 Vendor: Meta Product: React Server Components CVSS: 10 CISA KEV Catalog: https://t.co/9idGUAIgzL Write-up:

🚨 Akira Ransomware claims 5 victims 🇺🇸 Sieger Design 🇺🇸 Rosland Capital 🇺🇸 Advanced Power 🇺🇸 Foster & Eldridge 🇺🇸 Consolidated Sterilizer Systems

Trocador: A privacy-focused exchange aggregator that automatically scans partner exchanges to find the best available rates. You can complete your transaction without ever needing to create an account on any of those platforms. Clearnet: https://t.co/A91PhF2Unw Dark Web:

🚨 Qilin Ransomware claims 2 victims 🇺🇸 Beecher Walker Architects 🇺🇸 Shumate Mechanical

🚨🇬🇧 Alleged Sale of 1 Million Personal Records From the United Kingdom https://t.co/ZNF0anQXiq

🚨 ClickFix Payload Delivery URL Identified A URL posing as a Booking[.]com verification page has been flagged delivering a malicious payload with 100% confidence. Quick Facts: ▪️Date/Time: 05 Dec 2025 // 19:09 UTC ▪️Type: URL ▪️Indicator: https://account-bookscaptcha[.]com

🚨@zachxbt is reporting that the British threat actor known as Danny/Meech, believed to be Danish Zulfiqar (Khan), appears to have been arrested, with law enforcement likely seizing his crypto assets. Roughly $18.58M, at the time of Zach's post, is now sitting in

🚨 SAFEPAY Ransomware Claims 8 Victims 🇦🇺 BarNet 🇨🇦 MacTavish & Co. 🇩🇪 Steuerberater-Scheerer 🇩🇪 Untereisesheim 🇩🇪 Julius Koch GmbH 🇦🇺 Hyperdome Medical Centre 🇦🇺 Becks Group 🇩🇪 Wachtmann

📰🇺🇸 Congressman Tony Gonzales of Texas has introduced the bipartisan Dark Web Interdiction Act in the U.S. House of Representatives. The bill seeks to increase penalties for drug dealers and crack down on international fentanyl trafficking carried out through dark web networks.

Another scanner: https://t.co/7iYO1olSsK

🚨 CVE-2025-66478: Next.js RSC RCE Scanner and POC/Exploit Collection A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability. GitHub: https://t.co/bfIaCOlcyQ

🚨🇺🇸 Fargo Park District has been claimed a victim to INTERLOCK Ransomware