🇪🇸 Alleged Exposure Impacts Spanish Football Federation Coaching Platform
A threat actor claims to have discovered a misconfigured Firebase deployment affecting https://t.co/xogYnfCv31, the official coaching academy platform of the Royal Spanish Football Federation (RFEF).
According to the forum post:
* The actor claims a publicly accessible Firebase Storage bucket exposed approximately 504 files (around 182 MB) without authentication.
* The exposed files allegedly include student documents, profile photos, invoices, and scans of Spanish national identity cards (DNI), including both front and back images.
* The actor also claims to have enumerated 113,681 Firebase Authentication user IDs through a publicly accessible Realtime Database endpoint.
* The post attributes the exposure to misconfigured cloud storage and database permissions rather than exploitation of a software vulnerability.
Analyst Note: These claims have not been independently verified. If accurate, the incident would highlight the continued risk posed by cloud storage misconfigurations, particularly where identity documents and sensitive user files are stored without proper access controls.
#DDW #Intelligence #DarkWeb #Spain
🚨 Microsoft just released its largest Patch Tuesday ever.
🩹 570 vulnerabilities fixed
🔥 3 zero-days (2 actively exploited)
💻 141 remote code execution flaws
Microsoft recently warned larger Patch Tuesdays were coming as it uses AI to help discover more security flaws before attackers do.
➡️See full report: https://t.co/54Kxatd2WK
🚨 BREAKING: An American hip-hop rapper has released a diss track titled “WHISTLE MAFIA” protesting alleged FIFA and referee bias toward Argentina and Messi. 😳🎵🎶
Vazou a footage da final da Copa 2026🐷
No fim, os porcos erguem a taça.
Encardida de lama, do jeito que foi conquistada.
Marca aquele teu amigo que acha que a FIFA tá limpa.
Salva pra rever e 👉 segue @abrahubstudio pra aprender.
Miniplasma (Windows unpatched LPE)
CVE-2020-17103 apparently was not patched or the patch was reversed, regardless this the PoC for an LPE in cldflt.sys used to spawn a SYSTEM shell. Success rate may vary since it's a race condition
https://t.co/Lc2ie8FXXp
#windows
🚨 Nightmare Eclipse just released another vulnerability called MiniPlasma
GitHub: https://t.co/oySBY1X8ke
CVE: CVE-2020-17103 which is a high-severity elevation of privilege vulnerability in the Windows Cloud Files Mini Filter Driver that allows an attacker to gain elevated, unauthorized access to a targeted system
Yippie
Two new Microsoft Windows 0days. The exploits have cool and badass mysterious names to be extra spoopy
- GreenPlasma: Windows CTFMON Arbitrary Section Creation Elevation of Privileges Vulnerability
- YellowKey: Bitlocker Bypass Vulnerability
https://t.co/VaWFtW5lFi
CVE-2026-40361 (https://t.co/CNZKI1aKWG), patched today, is a critical 0-click UAF/RCE bug in Microsoft Outlook that I discovered back in Q1. You definitely want to patch this sooner rather than later.
The danger of such 0-click bugs in Outlook is that they are triggered as soon as the victim reads or previews the email - no clicking of links or attachments is required. Since the bugs reside in Outlook's email rendering engine, it is difficult to mitigate or block (though specifically setting Outlook to render emails only in plain text format is a valid mitigation).
Fun fact about the discovery: after the discovery of the #BadWinmail bug a decade ago, I wanted to run an experiment in Q1 to see if I could find another 0-click RCE in Outlook. The result? It wasn't easy — I even built a dedicated system for it — but I eventually found this one. :)
To understand why such bugs are so critical, check out the #BadWinmail video demo I released a decade ago: https://t.co/DBhE5sWGDH. They share the same attack vector (though #BadWinmail was a working exploit, while this one was a PoC). Essentially, anyone could compromise a CEO or CFO just by sending an email. The threat perfectly bypasses enterprise firewalls and is delivered directly to the inbox. Furthermore, note that Outlook (Classic) lacks an application sandbox, making this attack vector even more dangerous.
Regarding defense and detection: if you are concerned about Outlook 0-click 0-days, my EXPMON system (https://t.co/NKqtbTEmVW) provides cutting-edge detection against such advanced threats. When I designed the original system in 2020/2021, I developed this functionality specifically considering the impact of #BadWinmail. The system accepts .eml or .msg formats, and email samples are deeply tested within an Outlook sandbox. For enterprise users, emails can be "dumped" from the mail server, and EXPMON can be deployed in a private network. Contact me for more details.
P.S. I just noted that the title of the Microsoft Security Update (https://t.co/CNZKI1aKWG) lists this as a Microsoft Word bug, which may or may not be entirely accurate. I demonstrated this bug to MSRC by showing that it works in a real, live Outlook + Exchange Server environment. My bet is that because the bug resides in wwlib.dll — a shared DLL used heavily by both Outlook and Word — it likely affects both Outlook (via email) and Word (via a document file). Regardless of the title, it is a genuine Outlook 0-click RCE.
#CVE-2026-40361 #PatchTuesday #Outlook #0click #EmailSecurity #EnterpriseSecurity #expmon #ThreatIntel #ExploitDetection
PoCs for Apache Tomcat Unauth RCE (CVE-2026-34486) and Apache httpd Pre-auth RCE (CVE-2026-23918) are now public on our Github.
Tomcat exploit is fully reliable. httpd chain works in a controlled lab setup with a known info leak.
https://t.co/D3dg5iTuwP
https://t.co/2zyr1ds4Mo