rp77

‼️Multiple users are reporting suspicious Microsoft passwordless sign-in emails containing legitimate verification codes. Threat actors are allegedly using leaked databases for large-scale account enumeration to identify email addresses linked to Microsoft accounts, potentially for later credential-stuffing attacks. Users are advised to ignore unexpected codes, change passwords, and enable 2FA.

Vulnerabilidad de día cero en Windows BitLocker permite acceder a unidades cifradas Dos nuevas vulnerabilidades de día cero en Windows BitLocker que aún no han sido parcheadas La más grave, denominada YellowKey, permite evadir completamente el cifrado de BitLocker, otorgando a los atacantes acceso total y sin restricciones a las unidades del sistema bloqueadas. Asimismo, se ha identificado otra falla de escalada de privilegios llamada GreenPlasma. https://t.co/c48IjbgxxQ

⚠️ BitUnlocker Attack on Windows 11 Allows Access to Encrypted Disks in 5 Minutes Source: https://t.co/dq8KjmuHtP A new tool, BitUnlocker, reveals a practical downgrade attack against Microsoft's BitLocker encryption, allowing attackers with physical access to decrypt protected volumes on patched Windows 11 machines in under 5 minutes by exploiting a crucial gap between patching and certificate revocation. The attack is rooted in CVE-2025-48804, one of four critical zero-day vulnerabilities. Systems that have completed the KB5025885 migration, moving the boot manager signature to the newer Windows UEFI CA 2023 certificate, are also protected against this downgrade path. #cybersecuritynews #Windows11

🚨 CRITICAL CYBERINTEL ALERT: MASSIVE DATA EXFILTRATION – NATURGY (SPAIN) 🇪🇸⚡🔥🔓 A massive data breach has been detected affecting the Spanish energy company Naturgy (https://t.co/Glg1yxfp5q). A threat actor identified as "spain" has published the exfiltration of a critical database that compromises the privacy of millions of citizens and their financial data. 🏢 Affected Entity: Naturgy (Electricity and gas company in Spain). 👤 Threat Actor: spain 📂 Leak Volume: 74.2 GB of exfiltrated data. 1.8+ Million affected customers. 📅 Publication Date: April 30, 2026. ⚠️ Status: ACTIVE LEAK / SAMPLE OF 1,000 CUSTOMERS RELEASED. 📊 Breach Scope (PII and Banking Data) The exposed database contains columns of extremely sensitive information that enable complete consumer profiling: Identity and Contact: Full name, surnames, NIF/DNI (Tax/ID number), email addresses, and phone numbers. Financial Data: Full bank IBANs, SEPA contract details, and signing dates. Infrastructure Information (CUPS): Electricity and gas CUPS codes, detailed physical addresses (street, building number, floor, unit/door number, postal code, and locality). Operational Details: Activation dates, tariff types, contracted products, and internal notes from the energy provider. 🛡️ Immediate Response Recommendations 🔒 Banking Vigilance: Naturgy customers are advised to monitor their bank statements for unauthorized charges and notify their financial institution regarding the potential exposure of their IBAN. 🔑 Communication Hygiene: Be wary of calls or emails requesting additional data or urgent payments, even if they mention actual details regarding your contract or CUPS code. Monitor: https://t.co/wk9bZJ2Nli #CyberSecurity #Naturgy #DataBreach #Spain #IBANLeak #CUPS #InfoSec #GDPR #VECERT #CyberAttack 🇪🇸🛡️⚠️🚨⚡

Some hackers got together and made a charging cable for your phone. It’s called the OM.G cable. Just picking up and looking at it, you wouldn’t be able to tell, nor would most people even suspect that cable can hack your phone. Once it’s plugged in, it shows up on the other users device as a WiFi hotspot, they connect to it and instantly have control over the device the cable is plugged into. Although it’s used for ethical means to detect vulnerabilities in software for phones. People are buying them and leaving them around places like airports waiting for someone to take it and use it. Knowing how easy this works, would you be weary about using anyone else’s cables anymore?

Telefónica consigue una sentencia judicial que permite bloquear internet "Los bloqueos aplicarán "todos los días de emisión de eventos deportivos en directo", arrancando por primera vez con el partido de eliminatoria de la Champions League entre el Atlético de Madrid y el Barcelona que se celebra hoy martes 14 de abril. Continuará el miércoles con el Bayern de Múnich - Real Madrid. Además, según el diario se repetirá "en otros acontecimientos deportivos, como torneos de tenis o de golf, tanto en emisiones en directo como en películas y series". Puertas al campo? https://t.co/tEB7t5YH6e