Espresso

Sign in Subscribe

Cybersecurity

179 Factories Exposed: US Tops Global Naked-PLC Leaderboard

179 Factories Exposed: US Tops Global Naked-PLC Leaderboard

TL;DR * Global ICS Exposure Rises as 179 Industrial Control Systems Found Exposed on Modbus Port 502, U.S. Leads with 57 Devices * Cybercriminals exploit emoji patterns to evade keyword-based detection systems, Flashpoint reports * NHS Scotland website defaced with illegal content; no patient data breached, cybersecurity team responds 🔥 179 Modbus

5M Linux Servers Hacked via One Print Job: Fortune 500 Port 631 Exposed

TL;DR * APT28 (Forest Blizzard) scales DNS hijacking campaign, compromising 200+ organizations via TP-Link routers to enable AITM attacks * Chaos malware evolves with SOCKS proxy capability, targeting misconfigured Hadoop deployments and Linux cloud servers in new 64-bit ELF variant * CUPS 2.4.16 and older versions vulnerable to unauthenticated root

€1.44 B Vanishes: 1.2 M French Accounts Looted via Weak API

€1.44 B Vanishes: 1.2 M French Accounts Looted via Weak API

TL;DR * French Banking Breach Exposes 1.2M Records with IBANs, SSNs, and Tax IDs, Data Sold on Dark Web via FICOBA Registry * UnitedHealth Pays $22M Ransom After BlackCat Breach Exposes 192.7M Patient Records, Causing $2.9B in Damages 💥 1.2 M French Accounts Leaked: €1.44 B Fraud

78 % Exchange 0-Day Rampage in 12 h: Hospitals Piñata’d, 9-Day Patch Lag Leaves SMBs Hand-Painting Invoices

TL;DR * Storm-1175 Exploits 16+ CVEs Including CVE-2026-23760 Zero-Day to Deploy Medusa Ransomware Across Healthcare and Finance Sectors * Drift Protocol Suffers $285M Exploit via North Korean UNC4736, Leveraging Social Engineering and Multi-Sig Bypass * Qilin Ransomware Group Uses BYOVD Technique to Disable 300+ EDR Solutions via Malicious DLL msimg32.dll 😈 78%

💥 Claude Code Leak: 512k Lines Weaponised, 10k US Dev Rigs Now Proxy Zombies

💥 Claude Code Leak: 512k Lines Weaponised, 10k US Dev Rigs Now Proxy Zombies

TL;DR * Claude Code source code leaked, triggering trojanized repos with Vidar and GhostSocks infostealers targeting 10,000+ downloads * Microsoft integrates Sysmon into Windows 11 with AI-powered threat detection * Russia's internet blocking attempts trigger nationwide banking failure, disrupting payments and Telegram services 💥 Claude Code Leak: 512k Lines Weaponised,

😱 4-TB Heist in 3 Hours: Mercor AI Supply-Chain Pillaged via Poisoned LiteLLM

😱 4-TB Heist in 3 Hours: Mercor AI Supply-Chain Pillaged via Poisoned LiteLLM

TL;DR * Mercor AI Breached via Poisoned Python Package, Exposing 211GB of Candidate Data * NoVice malware infects 2.3M Android devices via 50+ Google Play apps, persists after factory reset via kernel and Mali GPU exploits * HasBro Discloses Cybersecurity Incident, SEC Files 8-K Amid Ongoing Forensic Investigation 😱 4-TB Heist in

India Yanks 45M Chinese Cams: Spyware Piñatas Banned, Price +20%

India Yanks 45M Chinese Cams: Spyware Piñatas Banned, Price +20%

80% of India’s CCTV cams were CCP spyware piñatas—now banned overnight! 🎉 45M Hikvision/Dahua units yanked like bad teeth; price tag +20% but 68% fewer 9.8-CVSS ‘oopsies’. India yanked 45 million Hikvision & Dahua boxes off Flipkart faster than you can say “CVE-2017-7921,” and the only thing