16 billion logins exposed in massive data breach; secure your accounts now! #DataBreach #Cybersecurity #InfoSec

More details: https://www.it-daily.net/en/thema/infostealer-en - https://www.flagthis.com/news/17017

⚠️ CVE-2025-4102: HIGH-severity vuln in Beaver Builder Plugin (Starter) for WordPress. Admins can upload arbitrary files (RCE possible). Partial patch in 2.9.1. Restrict admin access, enable MFA, and monitor uploads. Update when full fix available. https://radar.offseq.com/threat/cve-2025-4102-cwe-434-unrestricted-upload-of-file--8dd8e099 #OffSeq #WordPress #Vuln #Infosec

Possible Phishing 🎣
on: ⚠️hxxps[:]//hxxpshxxpshxxpshxxpshxxpttpshxxpsilotbet-03121[.]weebly[.]com
🧬 Analysis at: https://urldna.io/scan/6855e7fa3b7750000dc36386
#cybersecurity #phishing #infosec #urldna #scam #infosec

Takeover of British Russia expert’s email accounts used novel phishing tactic https://therecord.media/keir-giles-russia-expert-email-attack-gtig-citizen-lab-reports #cybersecurity #infosec

Possible Phishing 🎣
on: ⚠️hxxps[:]//apple-kicker-1870[.]typedream[.]app
🧬 Analysis at: https://urldna.io/scan/6855e81c3b7750000dc363d7
#cybersecurity #phishing #infosec #urldna #scam #infosec

orwO\kaI,t,o&7_n4U'}

ApproachOperate1Margarine

#bot #password #passphrase #infosec #opsec

Possible Phishing 🎣
on: ⚠️hxxp[:]//mail-modp-gov-pk-view[.]netlify[.]app/error[.]html
🧬 Analysis at: https://urldna.io/scan/685616253b7750000ecf4172
#cybersecurity #phishing #infosec #urldna #scam #infosec

This dumb password rule is from Alibaba.

- At least 2 uppercase letters
- Plus 2 lowercase letters
- Plus 2 numbers
- Plus 2 punctuation marks

Phew, too many rules, because why not, if [Ma thinks AI stands for Alibaba Intelligence](https://www.youtube.com/watch?v=f3lUEnMaiAU),
then password rules can be equally intelligent too.

Also, ...

https://dumbpasswordrules.com/sites/alibaba/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

🚨 Buffer overflow (HIGH, CVSS 8.7) in TOTOLINK EX1200T v4.1.2cu.5232_B20210713 exposes networks to remote attack via /boafrm/formTmultiAP (submit-url). Public exploit disclosed. Patch or restrict web interface! CVE-2025-6336 https://radar.offseq.com/threat/cve-2025-6336-buffer-overflow-in-totolink-ex1200t-6f240db7 #OffSeq #Infosec #RouterVuln #IoTSecurity

Possible Phishing 🎣
on: ⚠️hxxps[:]//axczazac[.]blogspot[.]ca
🧬 Analysis at: https://urldna.io/scan/6855e7f53b7750000ecf4021
#cybersecurity #phishing #infosec #urldna #scam #infosec

Possible Phishing 🎣
on: ⚠️hxxp[:]//ashishkalbande11[.]github[.]io/Netfilx
🧬 Analysis at: https://urldna.io/scan/68560c0c3b7750000dc36471
#cybersecurity #phishing #infosec #urldna #scam #infosec

Validating my Facebook data dump, I ran across this meme from November 2014. I'm pretty sure I created this when I discovered that SonicWall's DNS client used ++ on a global static variable to “generate” the ID in its DNS request packets.

#Infosec #DNS #Vulnerability

Possible Phishing 🎣
on: ⚠️hxxp[:]//binancezj[.]com
🧬 Analysis at: https://urldna.io/scan/6855e1eb3b775000106d10be
#cybersecurity #phishing #infosec #urldna #scam #infosec

Unusually patient suspected Russian hackers pose as State Department in ‘sophisticated’ attacks on researchers https://cyberscoop.com/russian-hackers-state-department-sophisticated-attacks-researchers-citizen-lab/ #cybersecurity #infosec

Possible Phishing 🎣
on: ⚠️hxxps[:]//secure-ardentcu[.]weebly[.]com
🧬 Analysis at: https://urldna.io/scan/6855e5dd3b7750000dc3632d
#cybersecurity #phishing #infosec #urldna #scam #infosec

Possible Phishing 🎣
on: ⚠️hxxps[:]//celpidys[.]weebly[.]com
🧬 Analysis at: https://urldna.io/scan/6855e5e93b775000106d10df
#cybersecurity #phishing #infosec #urldna #scam #infosec