botw44 𝕏

Niet mee eens saai; Een glas bier kost de maatschappij meer dan het oplevert. bnr.nl/nieuws/economi… #BNR

By popular demand ShinyHunters active onion /shnyhntww34phqoa6dcgnvps2yu7dlwzmy5lkvejwjdo6z7bmgshzayd[.]onion Enjoy!

🚨Cyber Alert ‼️ 🇳🇱Netherlands - ASML Holding N.V. "1011" threat actor claims to have breached ASML Holding N.V. Allegedly, the attackers leaked data including approximately 154 SQL databases containing user information, software and device records, and disk encryption keys. Sector: Manufacturing Threat class: Cybercrime Observed: Jan 7, 2026 Status: Pending verification — About this post: Hackmanac provides early warning and cyber situational awareness through its social channels. This alert is based on publicly available information that our analysts retrieved from clear and dark web sources. No confidential or proprietary data was downloaded, copied, or redistributed, and sensitive details were redacted from the attached screenshot(s). For more details about this incident, our ESIX impact score, and additional context, visit HackRisk.io.

🚨Cyberattack Alert ‼️ 🇲🇽Mexico - Universidad Nacional Autónoma de México (UNAM) ByteToBreach threat actor claims to have breached Universidad Nacional Autónoma de México (UNAM). Allegedly, the attackers conducted a multi-stage intrusion leveraging an F5 BIG-IP vulnerability and multiple internal pivots, deploying custom ransomware primarily for data exfiltration and encryption. Compromised data reportedly includes student and staff records, emails, databases, directory services data, and internal documents. Sector: Education Threat class: Cybercrime Observed: Jan 7, 2026 Status: Pending verification — About this post: Hackmanac provides early warning and cyber situational awareness through its social channels. This alert is based on publicly available information that our analysts retrieved from clear and dark web sources. No confidential or proprietary data was downloaded, copied, or redistributed, and sensitive details were redacted from the attached screenshot(s). For more details about this incident, our ESIX impact score, and additional context, visit HackRisk.io.

Clarification post, previous post about Ubisoft lead to some confusion. That's my fault. I'll be more verbose. I was trying to compress the information into 1 singular post without it exceeding the word limit. Here's the word on the internet streets: - THE FIRST GROUP of individuals exploited a Rainbow 6 Siege service allowing them ban players, modify inventory, etc. These individuals did not touch user data (unsure if they even could). They gifted roughly $339,960,000,000,000 worth of in-game currency to players. Ubisoft will perform a roll back to undo the damages. They're probably annoyed. I cannot go into full details at this time how it was achieved. - A SECOND GROUP of individuals, unrelated to the FIRST GROUP of individuals, exploited a MongoDB instance from Ubisoft, using MongoBleed, which allowed them (in some capacity) to pivot to an internal Git repository. They exfiltrated a large portion of Ubisoft's internal source code. They assert it is data from the 90's - present, including software development kits, multiplayer services, etc. I have medium to high confidence this true. I've confirmed this with multiple parties. - A THIRD GROUP of individuals claim to have compromised Ubisoft and exfiltrated user data by exploiting MongoDB via MongoBleed. This group is trying to extort Ubisoft. They have a name for their extortion group and are active on Telegram. However, I have been unable to determine the validity of their claims. - A FOURTH GROUP of individuals assert the SECOND group of individuals are LYING and state the SECOND GROUP has had access to the Ubisoft internal source code for awhile. However, they state the SECOND GROUP is trying to hide behind the FIRST GROUP to masquerade as them and give them a reason to leak the source code in totality. The FIRST GROUP and FOURTH GROUP is frustrated by this Will the SECOND GROUP leak the source code? Is the SECOND GROUP telling the truth? Did the SECOND GROUP lie and have access to Ubisoft code this whole time? Was it MongoBleed? Will the FIRST GROUP get pinned for this? Who is this mysterious THIRD GROUP? Is this group related to any of the other groups? Find out next time on Dragon Ball Z

30 Tbps в секунду: закат эпохи защищённого интернета? Конец 2025 года ознаменовался появлением угрозы нового класса. Ботнет AISURU последовательно пробил планку в 15, а затем и в 30 Tbps, атакуя инфраструктуру Microsoft и Cloudflare: u.habr.com/lUmRT

Automates LLM fuzzing to identify jailbreaks github.com/cyberark/Fuzzy…

🚨CVE-2025-8088 PoC: WinRAR for Windows path traversal allows arbitrary code execution via crafted archives GitHub PoC: github.com/sxyrxyy/CVE-20… Video Credit: @xrahitel" target="_blank" rel="nofollow noopener">youtube.com/@xrahitel Advisory: github.com/advisories/GHS… CVSS: 8.4

Cloudflare just autonomously blocked hyper-volumetric DDoS attacks twice as large as anything seen on the Internet before — peaking at 22.2 Tbps & 10.6 Bpps. Can your mitigation provider’s scrubbing capacity handle that scale?

🚨 vx-underground reverse-engineered the malware that stole $32k donated to Rastaland for his cancer fight. They uncovered the entire infrastructure, operations, the people that fell victim, and people behind it.

🚨300K Login:Passwords of McDonald's

New blog post with @infosec_au: We found a vulnerability in Subaru where an attacker, with just a license plate, could retrieve the full location history, unlock, and start vehicles remotely. The issue was reported and patched. Full post here: samcurry.net/hacking-subaru

Google Drive :) huh site:drive.google.com inurl:folder site:drive.google.com inurl:open site:docs.google.com inurl:d site:drive.google.com "confidential" site:docs.google.com inurl:d filetype:docx hackerone.com/reports/2926447

🚨 We discovered two malicious Python packages in #PyPI repository that remained undetected for over a year. These packages mimicked tools for working with popular AI language models (#ChatGPT and #Claude), silently exfiltrating data and compromising developer environments. Full details and IOCs in the thread 👇

Checkout our new blogpost! In this post we talk about SAML and the recent Ruby-SAML Auth bypass. CVE-2024-45409: Ruby-SAML Auth Bypass in GitLab blog.projectdiscovery.io/ruby-saml-gitl…

A ransomware group was compromised. It contains some interesting information — it's their tooling, some minor chat information, infrastructure credentials, internal notes, etc. It's going to make some people VERY angry. tl;dr mini Conti leaks

Not all records you’re happy about breaking: @Cloudflare recently mitigated the largest ever reported hyper-volumetric #DDoS attack. 3.8 terabits per second (Tbps) and 2.14 billion packets per second (Bpps). Handled automatically any without any customer impact. Details to come.

Blind file read to RCE in PHP - without access to files, we need to build reliable arbitrary read primitive from the ISO-2022-CN-EXT overflow (CVE-2024-2961) #CNEXT