Our 2024 Credential Leak Report for top SaaS products is now available. Gain valuable insights into credential leaks affecting platforms like Jira, GitLab, Salesforce, and more. #Cybersecurity #SaaS #DataBreach #StealerMalware https://t.co/oAUi3K1Ssk

Public GitHub Repository Scan is now available for Enterprise and Threat Intel plans! Monitor up to 8 or 16 repos with full branch and commit coverage. We cover pretty much any type of secrets. Limitations will be increased after some testing period.

Feature update: We have doing last tests on Git secret scanning functionality. Once the tests are complete, will be released for Enterprise and Threat Intel license holders. **Ps, secrets on the screenshot are not real just a vulnerable lab.

Hopefuly should be released by monday.

Working on a new feature to add Git repository monitoring for Secret leaks. Why? Because we simply recieved more than 3 formal request for it and we agreed it is a part of credential leaks as well.

Alongside credential leaks, we also monitor dark web mentions for the specific keywords you define. Sounds interesting? Read more here:

Waiting for our turn in the AI headlines: “Cybersecurity company uncovers galatic billions of leaked passwords. The whole internet, even your toddler’s tablet, needs a reset.” News outlets, hit us up. There is no such thing as bad publicity.

As the year ends, WhiteIntel turns 1.7 years old. We’re truly grateful for your support. With no big marketing or corporate backing, we grew through our community and became a strong competitor among products with million dollars of budget.

Looks amazing

Hundreds of leaked EDR credentials are circulating. Because EDRs have deep device access, this is like handing over your C2. This issue doesn’t stem from vulnerabilities in the EDR products themselves, but rather from end users who inadvertently download and execute malware.

Since we have started, we seen at least 250 telegram channels fade away with TBs of stealer logs. At this point, we feel like historians.

Legacy dataset update: We have updated our legacy datasets (from 2022 to 2024) with additional 890K unique device records (12M processed). No matter what, there is always another weird private tg channel with 4 subscribers to find.

As part of our unified cyber intelligence efforts, we have enabled look alike domain monitoring feature. You can now set alerts for newly registered domain names that mimics your brand. We are collecting fresh domains every day on continuous basis.

Uh thats alot

New Integration Update You can now connect WhiteIntel with Jira and Slack. Get alerts directly in Slack or automatically create Jira tickets when new incidents are detected.

To achieve this: we have monitored more than 600 resources that includes Telegram Channels, Discord Channels and Hacker Forums.

Our 2025 detection stats 📶 Compromised devices: 11.680.477 Marked as unique: 4.942.693 Creds from unique devices: 847.7852.65 Unique creds from combolists: 1.2B+ Most seen malwares: Lumma (early 2025), Vidar (late 2025), StealC Give it a try: https://t.co/c7S5wwGiCW

Gotcha!

Officially, nearly every big vendor on info stealer area switched to Vidar malware. And for IOC purposes, here is their main domain: vidars[.]su

We have an account on Linkedin but we are not active on there. The main reason for that is we do not feel belong to be there. We are all technical people that are coming from this community. We do not speak their language and we do not like be part of it. Maybe in future not now.

We literally experienced this with 290M rows. Since that day, never enabled auto commit