Olivia
Online
Beat Röthlisberger
@inetbeat
Berne, Switzerland
Joined January 2017
128 Following
93 Followers
601 Posts
‼️🚨 BREAKING: ServiceNow has been breached. Customers are reporting unauthorised access to their instances.
One customer states their security team reported this vulnerability to them, and they closed the case twice, saying they had already known since the 7th of April.
🚨 Warning: Microsoft Defender is wrongly flagging some DigiCert certificates as Trojan:Win32/Cerdigent.A!dha, triggering widespread false positives on Windows systems.
Admins report certificates being removed from the Windows trust store after recent Defender signature updates.
What’s happening:
🔴 Two DigiCert root certificates flagged as malware
🔴 Some systems remove certs from the AuthRoot trust store
🔴 Detection added in April 30th Defender signature updates
Microsoft has released fixes in Security Intelligence updates version 1.449.430.0.
The issue comes shortly after a DigiCert breach where attackers gained access to support systems and code-signing certificates.
If you're seeing Trojan:Win32/Cerdigent.A!dha alerts, update Defender signatures immediately.
⚠️ Instagram Data Leak Exposes Sensitive Info of 17.5M Accounts
Source: https://t.co/3vPNLgpwnG
A significant security breach has compromised approximately 17.5 million Instagram user accounts, exposing sensitive personal information that is now circulating on the dark web.
The breach encompasses a wide range of personal information that could put affected users at serious risk. Compromised data includes usernames, email addresses, phone numbers, and physical addresses.
This combination of information makes users particularly vulnerable to identity theft, phishing, and social engineering.
#cybersecuritynews #databreach
Ubisoft may be in serious trouble. All upcoming Ubisoft games could be leaked very soon if recent reports are true: 🤯
🟢 Hackers have allegedly exfiltrated the source code for all Ubisoft products from the 1990s to the present day, including games, Uplay, and more.
🟢 For 48 hours, the attackers reportedly had access to over 900 GB of data. The victims are said to be Ubisoft and Crytek.
🟢 If Ubisoft does not pay the ransom, and it is confirmed that the data was successfully extracted, it is expected that the production and development materials for all upcoming Ubisoft titles and remakes currently in development will be leaked.
🟢 The hack was allegedly carried out via MongoDB, using a security exploit now known as “MongoBleed.”
Cloudflare went down because a ClickHouse change made a metadata query return duplicate columns. That blew up the size of a config file, it spread across the network and one module couldn’t handle the larger file and crashed. Everything after that was basically fallout from this chain reaction 😅
https://t.co/R4IPMw05ig
🔥 OpenAI just launched an AI #cybersecurity researcher.
It finds bugs, proves they’re real, and patches them — all by itself.
Powered by GPT-5, it’s already discovered 10 vulnerabilities.
The age of autonomous bug hunters starts now → https://t.co/ppE3zNBe4q
CVE-2025-6759 impacts the 𝗩𝗶𝗿𝘁𝘂𝗮𝗹 𝗗𝗲𝗹𝗶𝘃𝗲𝗿𝘆 𝗔𝗴𝗲𝗻𝘁 for CVAD, DaaS, enabling a user with minimal privileges to escalate their 𝗮𝗰𝗰𝗲𝘀𝘀 𝘁𝗼 𝗦𝗬𝗦𝗧𝗘𝗠 𝗹𝗲𝘃𝗲𝗹. P𝗿𝗼𝗺𝗽𝘁𝗹𝘆 𝘂𝗽𝗱𝗮𝘁𝗲 your VDA to mitigate vulnerability. https://t.co/Chf5NxOarr
Hackers lurked in Treasury OCC’s systems since June 2023 breach - @serghei
https://t.co/4JZkr9L6Qg
https://t.co/4JZkr9L6Qg
nsconf2iac transforms NetScaler configuration files into Terraform and Ansible templates https://t.co/qB9n5bsJ3u < written in Python
FBI warnings are true—fake file converters do push malware - @LawrenceAbrams
https://t.co/y4yyiXLkSj
https://t.co/y4yyiXLkSj
CVE-2025-24071: Windows Explorer initiates an SMB authentication request upon extracting a .library-ms file from a .rar archive, exposing NTLM hashes. Extraction alone triggers the vulnerability.
Microsoft Incident Response researchers uncovered a novel remote access trojan (RAT) that demonstrates sophisticated techniques to evade detection, persist in the target environment, and exfiltrate sensitive data. https://t.co/MJARVBz2zd
Within the past 24 hours, we observed Storm-2372 shifting to using the specific client ID for Microsoft Authentication Broker in the device code sign-in flow of their device code phishing campaign. Get more details from our continuous tracking of this active threat: https://t.co/f81DznH66n
US Treasury Department breached through remote support platform - @LawrenceAbrams
https://t.co/slsdT8sUcY
https://t.co/slsdT8sUcY
BeyondTrust says hackers breached Remote Support SaaS instances - @billtoulas
https://t.co/fTLkgyV5i5
https://t.co/fTLkgyV5i5
Hackers now use ZIP file concatenation to evade detection - @billtoulas
https://t.co/4fPmaHZ2qK
https://t.co/4fPmaHZ2qK
VMware makes Workstation and Fusion free for everyone - @serghei
https://t.co/x5rKr6MCCw
https://t.co/x5rKr6MCCw
Microsoft SharePoint RCE bug exploited to breach corporate network - @billtoulas
https://t.co/uqUtt6jBum
https://t.co/uqUtt6jBum
NetScaler Policy tracing using the CLI https://t.co/tvYAOfkAiZ
Most Popular Users
Elon Musk 
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.6M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.1M followers
Taylor Swift
@taylorswift13
81M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69.1M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.7M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.2M followers