Espresso

Sign in Subscribe

Cybersecurity

200M Stolen Passwords & 18M Colombian IDs Leaked: Bureaucracy Wins, Security Loses

200M Stolen Passwords & 18M Colombian IDs Leaked: Bureaucracy Wins, Security Loses

TL;DR * LeakBase cybercrime forum dismantled in global operation; 142,000+ members, 215,000 messages, and hundreds of millions of credentials seized * Colombia’s DIAN tax authority breach exposes 18M records via unpatched appointment portal vulnerability 🤡 200 Million Stolen Credentials Seized in Global Crackdown — FBI Takes Down LeakBase Across 14

Revoked Certificates Still Trusted: 2.4M Windows Systems Compromised — Microsoft Defender Fails Trust Chain — Enterprise Security Crisis

Revoked Certificates Still Trusted: 2.4M Windows Systems Compromised — Microsoft Defender Fails Trust Chain — Enterprise Security Crisis

TL;DR * Microsoft Defender identifies phishing campaign using ScreenConnect, Tactical RMM, and Mesh Agent via signed MSI packages in February 2026 * Phishing campaign impersonates Zoom and Google Meet waiting rooms to deploy Windows remote monitoring malware * Trail of Bits releases mquire, a Linux memory forensics tool that analyzes dumps without

96% Iran Internet Blackout After US‑Israeli Jets Strike: $780M Loss

96% Iran Internet Blackout After US‑Israeli Jets Strike: $780M Loss

96% of Iran's net vanished in hours 🌐—digital ghost town as US-Israeli jets strike. 149 M offline, $780 M lost, VPN demand up 579%. The regime's 'security' costs ordinary folks everything. Who's next when a country can be switched off with a

VB6 Malware Beats $100K EDR: Legacy Code Is Now 'Advanced Evasion'

VB6 Malware Beats $100K EDR: Legacy Code Is Now 'Advanced Evasion'

TL;DR * DarkCloud infostealer malware targets enterprise credentials via browsers and email clients, marketed as surveillance software with VB6-based evasion * ResidentBat malware targets Belarusian authorities with C2 infrastructure in Netherlands, Germany, and Switzerland, using port range 7000-7257 * iOS 26 and iPadOS 26 Certified by BSI for NATO Classified Networks, First

💣 581 CVEs Per Codebase: Global Supply Chain Security Collapses as Two-Thirds of Enterprises Face Active Compromise

💣 581 CVEs Per Codebase: Global Supply Chain Security Collapses as Two-Thirds of Enterprises Face Active Compromise

TL;DR * Open source dependency vulnerabilities double: median CVEs per codebase rises from 280 to 581, 65% suffer supply chain attacks * Cortex XDR Live Terminal vulnerability (CVE-2026-0323-2400) allows cross-tenant C2 redirection via WebSocket hijack * Remington.bg breached, exposing 150,000+ customer and order records in Bulgaria cyber incident 💣 581 CVEs

Medusa Ransomware: North Korea's $15M Hospital Shakedown

Medusa Ransomware: North Korea's $15M Hospital Shakedown

TL;DR * Lazarus Group deploys Medusa ransomware against U.S. healthcare and Middle East targets, leveraging Blindingcan and ChromeStealer * ShinyHunters breach CarGurus, compromising 12.6 million accounts with personal data including addresses and phone numbers * CISA mandates federal agencies to inventory and decommission unsupported edge devices within 90 days under