π¨βΌοΈ"Team PCP" β the group behind the Trivy compromise β have likely hit more software vendors and repos, stealing even more credentials in the process. LiteLLM is just one of many.
More disclosures are expected in the coming days. Stay alert!
More disclosures are expected in the coming days. Stay alert!
π₯1π€£1
π¨βΌοΈ We're in contact with the actor behind the Trivy and LiteLLM hack. They told us they are currently extorting several multi-billion-dollar companies from which they've exfiltrated data.
They've obtained 300 GB of compressed credentials and are working their way through them as we speak.
The LiteLLM compromise alone led to half a million stolen credentials, according to the threat actor.
Their message to the world: "TeamPCP is here to stay. Long live the supply chain."
They've sent us their new logo (see image) and also teamed up with several threat actors, including Xploiters and Vect.
They've obtained 300 GB of compressed credentials and are working their way through them as we speak.
The LiteLLM compromise alone led to half a million stolen credentials, according to the threat actor.
Their message to the world: "TeamPCP is here to stay. Long live the supply chain."
They've sent us their new logo (see image) and also teamed up with several threat actors, including Xploiters and Vect.
π₯8β€1
Almost 100k followers...
Time to reflect...
Thank you to my followers from the bottom of my heart...
I will never betray you...
Countless nights...
I received dick pics from haters...
I received job offers from law enforcement...
I received job offers from news outlets...
I received threats from threat actors...
I got to know my heroes...
I got to work with my heroes...
I received a lot of hate for no reason...
I received a lot of love...
I saw threat actors go to jail...
I got calls from multi-billion-dollar companies' C-level employees...
I saw legit cybersecurity professionals and their families get threatened by threat actors for doing their job...
I saw threat actors who did their time...
I saw threat actors struggle trying to stay on the right path after doing their time...
I was falsely accused countless times of spreading fake news...
I was suspended for no reason...
I picked up important research and pushed scoops into the world...
I helped journalists cover important stories...
I gave people a voice and told their stories...
I enjoyed every bit of it...
I missed a lot of time with my kids...
When others were relaxing after work, I was working...
When others were having weekends, I was working on this channel...
When others were having holidays, I was working to not miss an important story...
I have worked 80-hour work weeks for the past months...
I have developed an insane drive for this channel...
I am not in it for the money...
I am in it for the passion...
I am just one man...
I have one mission...
That is to inform you...
To create transparency...
To help SOCs/CDCs/CSIRTs...
To inform tech professionals and enthusiasts...
To not let corporations or governments get away with negligence or malice...
Almost 100k followers...
All thanks to you...
Thank you from the bottom of my heart...
Time to reflect...
Thank you to my followers from the bottom of my heart...
I will never betray you...
Countless nights...
I received dick pics from haters...
I received job offers from law enforcement...
I received job offers from news outlets...
I received threats from threat actors...
I got to know my heroes...
I got to work with my heroes...
I received a lot of hate for no reason...
I received a lot of love...
I saw threat actors go to jail...
I got calls from multi-billion-dollar companies' C-level employees...
I saw legit cybersecurity professionals and their families get threatened by threat actors for doing their job...
I saw threat actors who did their time...
I saw threat actors struggle trying to stay on the right path after doing their time...
I was falsely accused countless times of spreading fake news...
I was suspended for no reason...
I picked up important research and pushed scoops into the world...
I helped journalists cover important stories...
I gave people a voice and told their stories...
I enjoyed every bit of it...
I missed a lot of time with my kids...
When others were relaxing after work, I was working...
When others were having weekends, I was working on this channel...
When others were having holidays, I was working to not miss an important story...
I have worked 80-hour work weeks for the past months...
I have developed an insane drive for this channel...
I am not in it for the money...
I am in it for the passion...
I am just one man...
I have one mission...
That is to inform you...
To create transparency...
To help SOCs/CDCs/CSIRTs...
To inform tech professionals and enthusiasts...
To not let corporations or governments get away with negligence or malice...
Almost 100k followers...
All thanks to you...
Thank you from the bottom of my heart...
β€21
βοΈA hack at one of Europe's biggest football clubs Ajax made it possible to steal season tickets, attend matches, and even lift stadium bans.
RTL news found you can see which 500+ supporters are banned from the stadium and remove their bans...
Revealed by
danielverlaan
RTL news found you can see which 500+ supporters are banned from the stadium and remove their bans...
Revealed by
danielverlaan
π€£9
Media is too big
VIEW IN TELEGRAM
βοΈπ·πΊ Russian police arrested the administrator of LeakBase, one of the world's largest cybercriminal forums.
LeakBase launched in 2021 and hosted hacked databases with hundreds of millions of usernames, passwords, bank account and routing info, and credit card numbers.
LeakBase launched in 2021 and hosted hacked databases with hundreds of millions of usernames, passwords, bank account and routing info, and credit card numbers.
β€4π€―4
βοΈJust 13 hours after TeamPCP's Trivy supply chain exploitation, one of the groups involved was already recruiting negotiators.
Today the group announced a partnership with BreachForums: every forum user automatically becomes an affiliate, with ransomware and support included.
Today the group announced a partnership with BreachForums: every forum user automatically becomes an affiliate, with ransomware and support included.
β€5
This media is not supported in your browser
VIEW IN TELEGRAM
Saudi pranks remain undefeated π
π€£9π3β€1
A clone of Epsteinβs Google Calendar with his schedule from the past 20 years.
jmail.world/calendar
jmail.world/calendar
π2
βΌοΈ BREAKING: Reddit's CEO announced he is forcing human verification on the platform.
He will force users to verify through biometrics on their device, a third party, or government ID.
Every single option compromises your anonymity. On a platform built on anonymity.
Read: https://old.reddit.com/user/spez/comments/1s3ezrc/humans_welcome_bots_must_wear_name_tags/
He will force users to verify through biometrics on their device, a third party, or government ID.
Every single option compromises your anonymity. On a platform built on anonymity.
Read: https://old.reddit.com/user/spez/comments/1s3ezrc/humans_welcome_bots_must_wear_name_tags/
π’8π€£7π€¬6β€1π₯΄1
βΌοΈTrivy/LiteLLM supply chain compromise update:
TeamPCP's spokesperson told us that the largest data exfiltration is multiple terabytes of government, military, and public services data, obtained through contractors of the US, UK, and Australia.
"A lot of companies hard code shit or don't gitignore .env files," they told us.
TeamPCP's spokesperson told us that the largest data exfiltration is multiple terabytes of government, military, and public services data, obtained through contractors of the US, UK, and Australia.
"A lot of companies hard code shit or don't gitignore .env files," they told us.
π±9
π¨βΌοΈ BREAKING: The SQL database of BreachForums v5 has been leaked by Shiny.
Usernames, emails, passwords, and more exposed.
Usernames, emails, passwords, and more exposed.
π±7π₯1