CyberNetSecIO
LightNews LightNews
netsecio.bsky.social
CyberNetSecIO
@netsecio.bsky.social
5 followers 26 following 72 posts
Cybersecurity professional with over 10 years of specialized experience in security operations, threat intelligence, incident response, and security automation.
Posts Media Videos Starter Packs
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 13h
A new infostealer MaaS called 'logins[.]zip' claims to steal 99% of credentials in 12 seconds using Chromium zero-days. ⚡️ Sold for $150/month, it poses a major threat for widespread credential theft. #InfoStealer #Malware #ZeroDay
New
A new Malware-as-a-Service infostealer called
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 13h
Ransomware gang 'incransom' claims a massive 20TB data theft from Evolve Mortgage Services. 🚨 The group's leak site alleges theft of SSNs, credit histories, and more, threatening to release the data. #Ransomware #IncRansom #DataBreach
IncRansom Claims 20TB Data Heist from Evolve Mortgage Services
The incransom ransomware group has claimed a major data breach at Evolve Mortgage Services, alleging the theft of over 20TB of data including SSNs and credit histories.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 13h
CRITICAL LEAK: Consulting giant EY exposed a 4TB+ unencrypted SQL database to the public internet. 😳 The backup file, found by researchers, contained API keys, passwords & other corporate secrets. #DataBreach #CloudSecurity #Misconfiguration
EY Leaks 4TB+ SQL Database Packed with Corporate Secrets via Cloud Misconfiguration
Consulting firm EY exposed a 4TB+ unencrypted SQL Server backup file containing API keys, passwords, and other sensitive data on the public internet due to a cloud misconfiguration.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 13h
Cyberattack hits Merkle, the US-based subsidiary of ad giant Dentsu. 🛡️ The company detected 'abnormal activity' and confirmed both staff and client data were exposed. Systems were shut down to contain the threat. #Cyberattack #DataBreach #Dentsu
Ad Giant Dentsu
Global advertising firm Dentsu confirmed its US subsidiary, Merkle, was hit by a cyberattack that exposed both staff and sensitive client data, prompting system shutdowns.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 13h
⚠️ Massive data breach at government contractor Conduent exposes personal & medical info of over 10 MILLION people. Data includes SSNs & health details. Unauthorized access occurred from Oct 2024 to Jan 2025. #DataBreach #Conduent #PII
Conduent Data Breach: 10 Million+ Individuals
Government contractor Conduent confirms a data breach exposed the personal and medical information, including Social Security numbers, of over 10 million individuals.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 1d
💻 Chrome zero-day CVE-2025-2783 exploited by "Mem3nt0 mori" APT in espionage campaign! Attacks targeted Russia & Belarus, deploying LeetAgent spyware via phishing links. #ZeroDay #Chrome #APT #Spyware #Infosec
Chrome Zero-Day Exploited by "Mem3nt0 mori" APT to Deploy Spyware
The Mem3nt0 mori APT group exploited a Chrome zero-day, CVE-2025-2783, to deliver LeetAgent spyware in a targeted espionage campaign against Russian and Belarusian organizations.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 1d
🤖 New "Herodotus" Android banking trojan mimics human typing to bypass biometric security! Sold as MaaS, it takes over devices to steal from banking & crypto apps. Active in Italy & Brazil. #Android #Malware #BankingTrojan #MobileSecurity
Herodotus Android Malware Mimics Human Typing to Bypass Biometric Security
The Herodotus Android banking trojan, a new MaaS offering, evades behavioral biometric detection by mimicking human typing patterns to conduct fraudulent transactions.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 1d
⛓️ New "Airstalk" malware in suspected nation-state supply chain attack! Abuses VMware Workspace ONE API for covert C2 and uses a stolen code-signing certificate to evade detection. #SupplyChain #Malware #ThreatIntel #VMware
New "Airstalk" Malware Abuses VMware API in Nation-State Supply Chain Attack
A new malware strain named "Airstalk" is being used in a nation-state supply chain attack, using the VMware Workspace ONE API for command and control.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 1d
🚗 Massive 70TB data leak at Tata Motors! Exposed AWS keys on an e-commerce site led to the breach of customer PII, financial records & more. A stark reminder to secure cloud credentials. #DataBreach #AWS #CloudSecurity #Misconfiguration
Massive 70TB Data Leak at Tata Motors from Exposed AWS Keys
Over 70TB of sensitive data from Tata Motors was exposed due to misconfigured AWS access keys left in plaintext on a public website, leading to a major data breach.
cyber.netsecops.io
1
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 1d
🤖 New "Shadow Escape" zero-click attack steals data from AI agents like ChatGPT, Claude & Gemini! Exploits the Model Context Protocol (MCP) to silently exfiltrate sensitive info from documents. #AI #CyberSecurity #ZeroClick #DataBreach
"Shadow Escape": New Zero-Click Attack Steals Data from ChatGPT, Claude, and Gemini
Researchers uncover "Shadow Escape," a zero-click attack that exploits the Model Context Protocol (MCP) in AI agents like ChatGPT and Gemini to silently steal sensitive data.
cyber.netsecops.io
1
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 3d
Major healthcare data breaches: ModMed, LifeBridge Health, and Right at Home exposed patient PHI, including SSNs and diagnoses. Sinobi ransomware claims responsibility for one attack. 🩺💔 #Healthcare #DataBreach #HIPAA #Ransomware
Healthcare Sector Rocked by Breaches at ModMed, LifeBridge, and Right at Home
Data breaches have been announced by EHR provider Modernizing Medicine (ModMed), LifeBridge Health, and home healthcare provider Right at Home, exposing a wide range of patient and financial data.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 3d
Multiple data breaches reported: Toys 'R' Us Canada, Japanese retailer Askul (hit by ransomware), and security firm Verisure have all exposed customer data, including PII and SSNs. 🛒🔐 #DataBreach #CyberAttack #Retail
Data Breaches Hit Toys
Several consumer-facing companies including Toys
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 3d
South Korea-aligned APT-C-60 is escalating its cyber-espionage campaign against Japan, deploying new versions of its 'SpyGlace' backdoor and abusing GitHub & StatCounter for C2 comms. 🇰🇷➡️🇯🇵 #APT #CyberEspionage #ThreatIntel
APT-C-60 Escalates
The South Korea-aligned cyber-espionage group APT-C-60 has escalated its attacks against Japanese organizations, deploying updated versions of its
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 3d
New ChatGPT exploit allows attackers to poison the AI's persistent memory via a CSRF flaw. This 'memory tainting' can lead to account takeover and code execution. 🤖🧠 #ChatGPT #AI #Vulnerability #CSRF
ChatGPT Flaw Allows
A CSRF vulnerability in OpenAI
cyber.netsecops.io
2
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 3d
⚠️ Critical 'SessionReaper' flaw (CVE-2025-54236) in Adobe Commerce & Magento is actively exploited! Unauthenticated attackers can hijack sessions and deploy web shells. CISA added to KEV. Patch now! #Adobe #Magento #eCommerce #KEV
Critical Adobe Commerce Flaw Under Active Exploitation, CISA Warns
A critical session hijacking vulnerability (CVE-2025-54236) in Adobe Commerce and Magento is under active exploitation, allowing attackers to deploy web shells. CISA has added it to the KEV catalog.
cyber.netsecops.io
1
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 3d
🚨 Safepay ransomware claims attack on German video surveillance provider Xortec. Major supply chain risk, as compromised systems could be used to spy on end-users. #Ransomware #Safepay #SupplyChainAttack #Xortec
Safepay Ransomware Hits German Surveillance Firm Xortec, Sparking Supply Chain Fears
The Safepay ransomware group has targeted German video surveillance firm Xortec, raising concerns of a major supply chain attack with systemic risks.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 3d
🇷🇺 Russia's food safety agency Rosselkhoznadzor hit by massive DDoS attack, crippling food supply chain systems. Major delays for meat & milk shipments reported nationwide. #DDoS #Russia #CyberAttack #SupplyChain
DDoS Attack on Russian Food Agency Cripples National Supply Chains
A large-scale DDoS attack on Russia
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 7d
🚨 CISA has added a new, actively exploited vulnerability to its KEV catalog. Federal agencies are now under a deadline to patch per BOD 22-01. This is a critical warning for ALL orgs to identify and remediate this active threat. #CISA #KEV #PatchNow
CISA Orders Federal Agencies to Patch New Actively Exploited Vulnerability
CISA has added a new, actively exploited vulnerability to its KEV catalog, triggering Binding Operational Directive (BOD) 22-01 and requiring federal agencies to patch the flaw to defend against ongoing attacks.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 7d
🚨 Palomar Health Medical Group in California discloses a severe data breach. Attackers stole highly sensitive patient info, including BIOMETRIC DATA and financial accounts. A class action lawsuit is already under investigation. #DataBreach #Healthcare
Palomar Health Breach Exposes Highly Sensitive Patient Data, Including Biometrics
Palomar Health Medical Group (PHMG) in California has suffered a major data breach, exposing sensitive patient information including biometric data, financial accounts, and U.S. alien registration numbers.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 7d
⚠️ Misleading Calm: Official stats show a drop in September healthcare breaches, but The HIPAA Journal warns the numbers are artificially low due to the government shutdown halting HHS reporting. The true scale is likely much worse. #HIPAA #DataBreach
Healthcare Breaches Seem to Drop, But Government Shutdown Hides True Numbers
A reported decline in September 2025 healthcare data breaches is misleading, warns The HIPAA Journal, as a government shutdown has paused the HHS OCR
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 7d
Unit 42 uncovers two major campaigns: 'The Smishing Deluge,' a global SMS phishing flood from China, and 'Jingle Thief,' a cloud-based operation automating gift card fraud. 📱💬 💳 #Smishing #Fraud #CyberCrime #Unit42
Unit 42 Exposes
Palo Alto Networks
cyber.netsecops.io
1 1
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 7d
🏆 Pwn2Own Ireland Day 1: Hackers earn $522,500 for 34 unique zero-days! 100% success rate against printers, NAS & routers from QNAP, Synology, HP & more. Patches expected within 90 days. #Pwn2Own #ZeroDay #Hacking #InfoSec
Pwn2Own Day 1: Hackers Net $522K for 34 Zero-Days in SOHO Devices
On Day 1 of Pwn2Own Ireland 2025, security researchers earned $522,500 by demonstrating 34 zero-day vulnerabilities against popular SOHO devices from QNAP, Synology, Canon, and HP with a 100% success rate.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 7d
🚨 CRITICAL VULNS: Oracle patches two 9.8 CVSS RCE flaws in E-Business Suite Marketing (CVE-2025-53072, CVE-2025-62481). Unauthenticated attacker can gain full system access. Patch immediately! #Oracle #EBS #CVE #PatchTuesday
Patch Now: Critical RCE Flaws in Oracle E-Business Suite Marketing Module
Oracle has patched two critical RCE vulnerabilities (CVE-2025-53072, CVE-2025-62481) with a 9.8 CVSS score in its E-Business Suite Marketing module. Apply the October 2025 CPU immediately to prevent a full system takeover.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 7d
🇮🇷 Iran-linked APT MuddyWater targets 100+ government entities in the MENA region with its 'Phoenix' backdoor. The campaign uses phishing with malicious macros and abuses NordVPN for anonymity. #APT #MuddyWater #CyberEspionage #ThreatIntel
Iran
The Iranian APT group MuddyWater is targeting over 100 government entities in the MENA region with a new cyber-espionage campaign deploying the Phoenix v4 backdoor via phishing and malicious macros.
cyber.netsecops.io
netsecio.bsky.social
CyberNetSecIO @netsecio.bsky.social · 7d
🚨 CRITICAL Zero-Day in Netty (CVE-2025-59419) allows attackers to bypass SPF, DKIM & DMARC. The SMTP injection flaw enables perfect email spoofing. Patch immediately! #CVE #Netty #EmailSecurity #ZeroDay
Critical Netty Zero-Day Bypasses All Major Email Authentication
A critical zero-day vulnerability, CVE-2025-59419, in the Netty Java library allows SMTP injection to bypass SPF, DKIM, and DMARC, enabling attackers to send perfectly spoofed emails. Patch now.
cyber.netsecops.io