🚨🚨🚨BREAKING: One of the most significant supply-chain data breaches of 2026 may have just hit India’s electronics manufacturing sector. TCS Hacked - Confidential Files of Apple and Tesla Leaked
Threat group “World Leaks” claims to have stolen and published over 200,000 files (630+ GB) from Tata Electronics, exposing sensitive Apple and Tesla data. (Reuters📷)
This isn’t just another ransomware story.
🧵 Thread:
🚨 BREAKING: SERVICENOW HACKED
Unauthenticated API (/api/now/related_list_edit/create) let attackers query IT tickets, employee records, and secrets pasted in support workflows.
Emergency patch landed Jun 5.
Admins: hunt 51.159.98.241 in logs + rotate every credential that ever touched a ticket.
Full breakdown → https://t.co/UYYenT8OYD
#ServiceNow #databreach #ITSM #cybersecurity #infosec #API
https://t.co/NkSLSv4Bka
#databreach #hacked #hackers #servicenow #corporate #ticketing #PII #cybersecurity
Another npm Package Compromise !
Details: https://t.co/hGKxxWFlF9
For free Alerts and to Monitor Supply Chain Attacks: https://t.co/qsbOiUlC92
#npm#supplychain#cybersecurity
This is it.
Everything learned spending millions on longevity.
From: Your Immortal Unc and Auntie.
To: Our Immortal nieces and nephews.
0. Sleep is the world's most powerful drug.
1. Be in your bed for 8 hours
2. Same bedtime every night, any time before midnight
3. Don’t eat right before bed
4. Calm foods for dinner
5. No screens 1 hour before bed
6. Avoid added sugar (be aware it’s in everything)
7. Avoid all things in an American convenience store
8. Avoid fried foods
9. Shoes off at the door
10. Eat whole foods, particularly veggies fruits nuts legumes berries
11. Walk a little after meals or air squats
12. Get your heart rate high routinely
13. Lift heavy things
14. Stretch daily
15. Water pik, floss, brush, tongue scrape, morning and night
16. Make an effort to drink water
17. Get sunlight when you wake up (UV is low)
18. Protect skin in midday sun
19. Stand up straight
20. See at least one friend once a week
21. Avoid plastic where you can (in all things)
22. Circulate air in rooms
23. When stressed, breathe, learn to calm your body
24. Go to the dentist
25. Avoid sitting for long times
26. Protect your hearing, the world is too loud
27. Alcohol is bad for you
28. Finish coffee before noon
29. Avoid bright lights after sunset
30. If obese, look into a GLP
31. Sleep in a cold room
32. Texting while driving is dangerous
33. Turn off all notifications
34. Limit social media use
35. Don’t smoke anything
36. If you struggle to sleep, read a physical book before bed
37. 1 hour before bed have a calm wind down routine: bath, read, light walk, listen to music
38. The body is a clock and loves routine. Have a daily morning and evening schedule.
39. Avoid long distance travel where you can
40. Baby steps first: incorporate new things slowly
41. Do less… most things don’t work.
Bonus points if you get your blood checked.
Start here, it will change your life.
After failing to pay the ransom, hackers have reportedly released the data of Udemy 1.4m users.
Data include PII, Credit Card Data and More
https://t.co/WIYUNKueUf
#databreach#hacked#udemy
>Be north korean hackers
>Spend months pretending to be a quant fund
>Go to events, meet people, and even invest real money (about $1M) to gain trust
>Do all this just so one dev clone a repo
>Turn the $1M into $270M
https://t.co/q1EbIQJlq7
#driftprotocol#cybersecurity#hacked
Meet the Cybersecurity Baron: a specialized LLM fine-tuned for offensive security. This isn't your average chatbot. It's a quantized, 6-bit GGUF model built on Llama 3.1 Instruct, designed to think like a penetration tester. Perfect for ethical hackers and security researchers.
No jailbreak. No problem. 🔓
I built a tool that bypasses iOS SSL Pinning using OpenVPN + iptables — works with Burp Suite & mitmproxy out of the box.
👇 GitHub
https://t.co/N4QyCDaXvR
#CyberSecurity#BugBounty#iOS#Pentesting
Today @BleepinComputer published a story on a company named Telus Digital being compromised by a Threat Group operating under the moniker "ShinyHunters', a reference to Pokemon.
GTIG (Google Threat Intelligence Group) has been tracking ShinyHunters under the label UNC6395.
UNC6395 has been targeting enterprise organizations since at least August, 2025 by exploiting compromised OAuth tokens to gain access to company SalesForce instances. Upon successful compromise, UNC6395 attempts vertical or horizontal movement by combing through the compromised SalesForce data.
At a currently unknown time, UNC6395 successfully compromised Telus' SalesForce instance which allowed them to pivot elsewhere within the organization.
The amount of data UNC6395 claims to have compromised is astronomical. They claim to have exfiltrated over ONE PETABYTE of data (compressed as .tar.xz). While Telus has confirmed the compromise, the exfiltration of ONE PETABYTE of data indicates the compromise may have occurred weeks, possibly months, ago. Telus as of this writing has not given additional details on the compromise (more on that later).
I am unable to confirm the validity of the data, primarily because I do have the means to reliably comb through a petabyte of data. However, "snippets" and "samples" have been shared. Based off data seen, the compromised appears authentic. Here is a high-level overview of what was allegedly compromised and successfully exfiltrated.
- Employee Full Legal Name
- Employee National ID Number and/or SSN
- Telus hashed passwords, API keys, OAuth tokens
- Call record details
- Call meta data
- Telecom customer PII (First Name, Last Name, Address)
- HR records
- Agent performance records
- SalesForce accounts, contacts, leads, and records
- Financial records (ACH routing numbers, etc)
- GitHub repository access to an additional 20 organizations adjacent to Telus (20,000 internal source code projects)
- Customer and Agent call records in .wav
- 14,139 customer database instances, all containing customer PII (unspecified)
- GLEAN TELUS background check files. UNC6395 has access to FBI, RCMP, and CISA background checks.
- GLEAN TELUS confidential reports on investigations
- GLEAN TELUS confidential reports on tax filings (?)
- ... just search "GLEAN" on Google
If what UNC6395 states is true, this breach impacts approx. 230M companies across the globe. Based on information seen publicly, ... it looks bad.
However, as of this writing, Telus has not done anything other than confirm the compromise with some journalists. I suspect they're currently performing a DFIR (Digital Forensics and Incident Response) and forming a strategy to combat this technologically, legally, logistically, and PR-wise.
Is UNC6395 telling the truth? Is this compromise as severe as it appears to be? When will TELUS provide more details? Will impacted customers be notified? Is law enforcement mad their background checks are allegedly compromised?
Find out next time on Dragon Ball Z
Hackers claim to have breached Gravy Analytics, a US location data broker selling to government agencies.
They shared 3 samples on a Russian forum, exposing millions of location points across the US, Russia, and Europe.
It's OSINT time! 👇
In the past few months, I've been making a subdomains database containing 1.6 billion subdomains scrapped from multiple public (and private) sources.
This database is now public and FREE and can be queried on the following website.
https://t.co/C2cXn3sUOD
Enjoy!