124 Million Unique Passwords Exposed In New Infostealer Log Dataset

A new collection of 124 million unique passwords from hundreds of millions of malware stealer log records has been confirmed ...
LondonLovesBusiness

Open Source Intelligence, or OSINT, involves collecting and analysing information that is publicly available online

Uncover the power of Open Source Intelligence. Learn how to collect and analyse publicly available information effectively.

With Just 1 Click, Researchers Figured Out How to Hijack Microsoft Copilot to Steal Your Data

A recent Microsoft Copilot exploit demonstrates how AI can make existing cybersecurity bugs even more virulent.

Critical Copilot vulnerability allowed hackers to steal 2FA code from users

Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

24B Records Exposed in Massive Leak of Emails, Passwords, and Login Data

Cybernews researchers found an exposed database with 24 billion credential records, raising fresh risks from password reuse ...

124M Passwords Exposed as Infostealer Malware Hits Millions of Devices

Have I Been Pwned has added 124 million passwords and 56 million email addresses from infostealer logs tied to infected ...
CSO Online

GreatXML zero-day BitLocker bypass doesn’t seem to work, yet

Researcher’s feud with Microsoft continues to escalate with new Windows zero-day flaw that an experience vulnerability expert ...
Linux Journal

The Growth of Vulnerability Management: The Rise of Agentic AI Pentesting

Autonomous Agents: Solutions like XBOW provide a more independent experience by allowing the AI to create its own logic or ...
Dark Reading

ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed

A major bug in Oracle's ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of data.
SecurityWeek

FortiBleed: 86,000 Fortinet Device Credentials Compromised

The large-scale credential theft campaign hit roughly half of the internet-accessible Fortinet firewalls and VPNs. CISA is urging organizations to harden their internet-accessible Fortinet devices in ...