🚨 Threat actor claims to have leaked a massive Chinese citizen database containing over 1.2 billion full-identity records allegedly sourced from china.gov.cn systems. 📌 China 🇨🇳 ▪️ Target: china.gov.cn systems ▪️ Type: National real-name citizen registry ▪️ Format: XLSX archive (36 files) • ~1GB RAR ▪️ Records: ~1.2 billion ▪️ Threat Actor: Solonik ▪️ Samples: Yes Alleged data includes: ▪️ Full name ▪️ Gender ▪️ Full address ▪️ Phone number ▪️ National ID ▪️ Birthdate ▪️ GPS / geo-coordinates ▪️ Residence registration ▪️ File timestamps

🚨 Threat actor has leaked a historical database allegedly belonging to OSBot.org, a third-party Old School RuneScape botting platform. ▪️ Website: osbot.org ▪️ Industry: Gaming / RuneScape Bots ▪️ Type: Data Leak ▪️ Threat Actor: david-webmaster ▪️ Records Exposed: ~32,000 user accounts ▪️ Breach Year: 2013 (historical leak) Alleged compromised data: ▪️ Email addresses ▪️ IP addresses ▪️ Usernames ▪️ Hashed passwords

🚨 Threat actor is selling a PowerShell-based keylogger with clipboard hijacking and screen-capture capabilities. ▪️ Type: Malware ▪️ Threat Actor: UnknownUser ▪️ Model: PowerShell Keylogger + Clipper + Screen Capture ▪️ Samples: No Capabilities (as claimed): ▪️ Clipboard monitoring + crypto address hijacking ▪️ Keystroke logging ▪️ Clipboard data exfiltration ▪️ Periodic screen capture ▪️ Background activity recording ▪️ Exfiltration to remote C2 server Targeted cryptocurrencies: ▪️ BTC • XMR • ETH • DASH • SOL • BTC Cash • TRX Price: ▪️ Price: $680

🚨 Threat actor leaks data allegedly belonging to InstruRap.fr, a French platform for rap & hip-hop beat producers. 📌 France 🇫🇷 ▪️ Website: instrurap.fr ▪️ Industry: Music / Beat Marketplace ▪️ Type: Data Leak ▪️ Threat Actor: aaa ▪️ Users Affected: 75,292 ▪️ Breach Date: 4 December 2021 Exposed data (as claimed): ▪️ Usernames ▪️ Emails ▪️ Passwords (12,943 in plaintext • 62,349 hashed with MD5) ▪️ IP addresses ▪️ Profile info (bio, links, social handles) ▪️ Account roles & permissions ▪️ Purchase/payment fields (partial) ▪️ Project & beat metadata ▪️ Custom badges, color themes, preferences

Another video showing how incredibly easy the n8n RCE vulnerability (CVE-2025-68613) is. Credit: http://youtube.com/@0xmrsecurity

A fast, simple, recursive content discovery tool written in Rust GitHub:

GitHub

GitHub - epi052/feroxbuster: A fast, simple, recursive content discovery tool written in Rust.

A fast, simple, recursive content discovery tool written in Rust. - epi052/feroxbuster

📷youtube.com/@z1l0x

phpsploit: Full-featured C2 framework which silently persists on webserver via polymorphic PHP oneliner GitHub:

GitHub

GitHub - nil0x42/phpsploit: Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor - nil0x42/phpsploit

🚨DATA LEAK: Threat actor claims to have leaked a French national death registry dataset covering 1970–2025, allegedly sourced from deces-en-france.fr. 📌 France 🇫🇷 ▪️ Website: deces-en-france.fr ▪️ Industry: Public Records / Civil Registry ▪️ Type: Data Leak ▪️ Threat Actor: closed ▪️ Records: ~28,498,095 Alleged data includes: ▪️ Full names ▪️ Gender ▪️ Date of birth ▪️ INSEE birth codes ▪️ Place/country of birth ▪️ Date of death ▪️ INSEE death codes ▪️ Registry numbers ▪️ Origin file / opposition flags

taws: "Provides a terminal UI to interact with your AWS resources. The aim of this project is to make it easier to navigate, observe, and manage your AWS infrastructure in the wild." GitHub:

GitHub

GitHub - huseyinbabal/taws: Terminal UI for AWS (taws) - A terminal-based AWS resource viewer and manager

Terminal UI for AWS (taws) - A terminal-based AWS resource viewer and manager - huseyinbabal/taws

🚨 Akira Ransomware Claims 4 Victims 🇨🇭 BUHLMANN GROUP 🇮🇹 Labeltex Group 🇺🇸 RJS Corporation 🇺🇸 Wilson Smith Cochran Dickerson