DevRex

🚨Cyber Alert ‼️ 🇪🇸Spain - Endesa A threat actor known as “spain” claims to have breached Endesa and is selling an allegedly new and unique database containing data on over 20 million individuals. The dataset reportedly totals about 1.05 TB across multiple .sql files and includes sensitive information such as IBANs, national IDs, contact details, addresses, and customer and billing records. Sector: Energy / Utilities Threat class: Cybercrime Observed: Jan 05, 2025 Status: Pending verification — About this post: Hackmanac provides early warning and cyber situational awareness through its social channels. This alert is based on publicly available information that our analysts retrieved from clear and dark web sources. No confidential or proprietary data was downloaded, copied, or redistributed, and sensitive details were redacted from the attached screenshot(s). For more details about this incident, our ESIX impact score, and additional context, visit https://t.co/eB7qgxKFAa.

‼️Cloudflare Outage: The Company Explains What Happened Cloudflare communicates that it experienced a widespread service degradation starting at 11:20 UTC. The issue was resolved for most services by 14:30 UTC and fully fixed by 17:06 UTC. The incident was not caused by an attack but by a latent bug in the bot management configuration. A configuration file grew beyond the expected size, causing a crash in the traffic-handling system and resulting in HTTP 500 errors for many customers. The team reverted to an earlier configuration and updated the core proxy to prevent similar failures in the future.

CVE-2025-32463: Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option. PoC: https://t.co/yS03Se0L4o CVSS: 9.3 Affected Versions: ▪️Vulnerable: sudo 1.9.14 – 1.9.17 ▪️Non‑vulnerable: Legacy versions (<1.9.14, no chroot support)

🚨🇪🇸Cyber Update: The National Police has launched an urgent investigation following a new massive leak of personal data affecting Prime Minister Pedro Sánchez, his family, and senior officials from some of the most sensitive state institutions, including the CNI and the Ministry of the Interior. Source: https://t.co/i8NBsrEmGp

🚨Cyber Alert ‼️ 🇪🇸Spain – A threat actor going by the alias N4t0x has leaked a dataset allegedly containing personal data of Spanish politicians, law enforcement officials, intelligence officers, and their families. The attacker claims to have used a tool called SpainData, which allegedly provides real-time access to national ID numbers (DNI/NIF), phone numbers, addresses, emails, dates of birth, and familial links across the entire Spanish population. Discover more at https://t.co/yiQ1nOhPjb

🚨Cyber Alert‼️ 🇪🇸Spain - PSOE (Partido Socialista Obrero Español) Threat actor embi claims to have hacked PSOE, Spain’s current ruling political party. Allegedly the attack, led to the exfiltration of nearly 10GB of internal files, source code, and databases containing sensitive data of employees, affiliates, politicians, and party members. The hacktivist stated the breach was “much easier than expected” and not for personal gain, but to expose systemic corruption. The actor also claimed to have previously reported P1 vulnerabilities in Spanish government institutions, including the DGT, to INCIBE. Discover more at https://t.co/yiQ1nOhPjb