RT @3xp0rtblog: The XSS forum community is actively discussing the situation. However, it appears that moderators are removing all content….

RT @BleepinComputer: Microsoft releases emergency patches for SharePoint RCE flaws exploited in attacks - @LawrenceAbrams..

🚨 Don’t miss our upcoming BleepingComputer webinar with @specopssoftware and @SCMagazine!. We'll discuss how stolen credentials and identity-based attacks have become a favorite way to break into networks. 🗓️July 9th at 2 PM ET. ➡️Register here:

Original leak of stolen 2021 AT&T data had three files, a MASTER file containing encrypted SSNs and date of births, and two other files mapping the encrypted data to the plain text SSNs and DOBs. The new repackaged leak adds the unencrypted SSNs and DOBs to each customer record.

FYI, the repackaged AT&T data breach leak on XSS is from the 2021 breach, not the April 2024 Snowflake data theft attacks. Data matches the 2021 data leaked in March 2024.

ShinyHunters is the threat cluster to track this year. They, or threat actors claiming to be, are behind a lot of the attacks we are seeing.

Looks like RansomEXX ransomware op is still around. 👋.

RT @Cyber_0leg: 🚨 How was Black Basta structured? What were its members’ roles? How did its infrastructure operate?. Leaked chats reveal a….

RT @troyhunt: I’ve had a few people flag this with me as a “data breach”. It’s not, it’s authorised access. Not liking that authorisation d….

RT @Blaklis_: is a good example to what platforms should fight against (but they do not!) : low quality hunters. Th….

RT @SwiftOnSecurity: Wow: USAID paid Microsoft to shut down Windows Phone because it was too secure for the CIA to spy on it.

RT @haveibeenpwned: New unverified breach: Data allegedly taken from Brazilian lead gen platform Speedio was posted for sale last week. It….

RT @BleepinComputer: Domains known to have been seized today by the FBI are:. 🔴Cracked[.]io.🔴Nulled[.]to.🔴Starkrdp[.]io.🔴SellIX[.]io.🔴MySel….

RT @BleepinComputer: FBI seizes domains for hacking forums - @serghei..

My scoop from yesterday: Hacker behind PowerSchool breach claimed to steal the data of 62.4 million students and 9.5 million teachers.

PowerSchool customer support portal breach allowed a threat actor to steal the student, teacher data for numerous K-12 school districts.

RT @BleepinComputer: US Treasury Department breached through remote support platform - @LawrenceAbrams. https://t.c….

My Sunday scoop. Clop ransomware claims the Cleo data theft attacks. Another MOVEit?.

RT @bofheaded: Hi Guys, Im seeking job for Threat Intelligence/Hunting. I have past experience in deep/dark web monitoring, telemetry parsi….

RT @Jon__DiMaggio: RANSOMWARE DIARIES Volume 6: “Lie to me. A Bassterlord ransomware story” is out!!!!. #ransomwar….