Brutkey

TechNadu
@technadu@infosec.exchange
TechNadu
@technadu@infosec.exchange

🚨🚨 Dark web actor β€˜Chucky_BF’ claims to sell KLM Flying Blue loyalty CRM data days after Air France–KLM confirmed a vendor breach.

Possible link to social engineering in the aviation sector. FBI warns of similar tactics.⬇⬇️
https://www.technadu.com/targeting-customer-support-after-air-france-and-klm-confirm-supply-chain-attack-dark-web-post-by-chucky_bf-claims-airline-crm-breach/605660/

#CyberSecurity #DataBreach #DarkWeb #AviationSecurity #ThreatIntel

Targeting Customer Support: After Air France and KLM Confirm Supply Chain Attack, Dark Web Vendor β€˜Chucky_BF’ Puts Airline CRM Data for Sale
TechNadu
@technadu@infosec.exchange

🚨🚨 AI + Phishing = Brazil’s latest cybercrime export

Threat actors are using legitimate AI site builders to mimic Brazilian gov portals, stealing IDs & money via PIX.

Meanwhile, Kaspersky tracked Efimer Trojan to 5,000+ victims globally β€” swapping crypto wallet addresses, hijacking WordPress sites, & spreading via torrents & malspam.

Which poses the bigger long-term risk β€” AI in phishing or Trojans with multi-vector spread?

#CyberSecurity #Phishing #Efimer #CryptoSecurity #Brazil

AI Tools Fuel Brazilian Phishing Scam While Efimer Trojan Steals Crypto from 5,000 Victims
TechNadu
@technadu@infosec.exchange

🚨🚨 Kokomo24/7 breach may have exposed LAUSD student & staff data from 784 schools β€” including SSNs & health info.

Full story: ⬇⬇️
https://www.technadu.com/kokomo24-7-a-vendor-for-the-los-angeles-unified-school-district-hit-by-a-cyber-attack-network-files-likely-compromised/605657/

#CyberSecurity #DataBreach #LAUSD #K12Security #Privacy #darkweboperatie

Kokomo24/7, a Vendor for the Los Angeles Unified School District Hit by a Cyber Attack, Network Files Likely Compromised
TechNadu
@technadu@infosec.exchange

France orders CyberGhost, ExpressVPN, NordVPN, ProtonVPN & Surfshark to block more pirate streaming sites (F1 & Ligue 1 focus). Rights holders beIN & Canal+ push for enforcement. Privacy concerns mounting; appeals likely.

Full story: ⬇⬇️
https://www.technadu.com/cyberghost-expressvpn-nordvpn-protonvpn-surfshark-vpns-ordered-to-block-more-pirate-sites/605573/

#VPN #CyberSecurity #Privacy #Piracy #France #Streaming

CyberGhost, ExpressVPN, NordVPN, ProtonVPN, Surfshark VPNs Ordered to Block More Pirate Sites
TechNadu
@technadu@infosec.exchange

A major breach has hit the U.S. federal court system’s PACER & CM/ECF platforms, affecting multiple states. Suspected nation-state involvement.

Full story: ⬇⬇️
https://www.technadu.com/pacer-hack-exposes-sensitive-data-in-sweeping-administrative-office-of-u-s-courts-cyberattack/605571/

PACER Hack Exposes Sensitive Data in Sweeping β€˜Administrative Office of U.S. Courts’ Cyberattack
TechNadu
@technadu@infosec.exchange

Optus faces a lawsuit from Australia’s privacy watchdog over the 2022 data breach affecting ~9.5M customers (~40% of πŸ‡¦πŸ‡ΊπŸ‡¦πŸ‡Ί).

Exposed: addresses, passport details, phone numbers

Max penalty: AU$2.2M per individual

Story: ⬇⬇️
https://www.technadu.com/optus-faces-2022-data-breach-lawsuit-initiated-by-australian-information-commissioner/605568/

#Optus #DataBreach #InfoSec #CyberSecurity #Privacy

Optus Faces 2022 Data Breach Lawsuit Initiated by Australian Information Commissioner
TechNadu
@technadu@infosec.exchange

πŸ”’πŸ”’ Watch out for celeb-based weight-loss scams.

New campaigns impersonate Jodie Foster & Kelly Clarkson on Facebook to:
- Tag users in spam posts
- Push fake miracle cures
- Redirect via shady domains like litewo. xyz

Lock victims into hard-to-cancel subscriptions

These aren’t just harmless adsβ€”some β€œproducts” are dangerous.

βœ…βœ… Google any celeb + "scam" before believing it.
βœ…βœ… Verify claims through official channels.
βœ…βœ… Don’t click on tagged spam.

#Infosec #CyberSecurity #Scams #SocialEngineering #ThreatIntel #FakeEndorsements

Weight loss scams, or why β€˜Jodie Foster’ wants me to lose weight
TechNadu
@technadu@infosec.exchange

⚠⚠️ 2025 Threat Midyear Report Highlights via KELA:

β€’ #Cl0p = 408 victims
β€’ Akira & Qilin active
β€’ Infostealers (Lumma, Redline, Raccoon2) = 85% of all infections
β€’ Over 1.3B creds shared from logs
β€’ FMovies site used for infection campaigns
β€’ Top CVEs: Ivanti, Microsoft, Roundcube, Cisco

Cross-platform malware + MaaS = rising threat vector

πŸ“–πŸ“– Full write-up: ⬇⬇️
https://www.technadu.com/top-threats-in-2025-cl0p-ransomware-lumma-stealer-and-several-flaw-exploits/605507/

#Infosec #Ransomware #LummaStealer #ThreatReport #DarkWeb #MaaS #CredentialTheft #CyberThreats

Top Threats in 2025: Cl0p Ransomware, Lumma Stealer, and Several Flaw Exploits
TechNadu
@technadu@infosec.exchange

⚠⚠️ AV Killer malware disables most antivirus tools using BYOVD attack via ThrottleStop.sys (TechPowerUp driver)
- Exploits CVE-2025-7771
- Kills AVs: CrowdStrike, BitDefender, Defender, Kaspersky
- Enables ransomware like MedusaLocker
- Active in Russia, Brazil, and Ukraine

🧩🧩 SecureList | Full write-up: ⬇⬇️
https://www.technadu.com/novel-av-killer-malware-exploits-legitimate-driver-throttlestop-sys-targets-all-major-antivirus-solutions/605482/

#BYOVD #CVE20257771 #AVKiller #Malware #MedusaLocker #Infosec #ThreatIntel

Novel AV Killer Malware Exploits Legitimate Driver ThrottleStop.sys, Targets All Major Antivirus Solutions
TechNadu
@technadu@infosec.exchange

🚨🚨 Air France-KLM confirmed a breach stemming from a third-party vendor.

Names, phone numbers, emails, and Flying Blue details may have been accessed β€” but no financials or passwords were exposed.

🧠🧠 Reminder: Third-party risk is still internal risk. ⬇⬇️
https://www.technadu.com/klm-and-air-france-data-breach-possibly-exposed-customer-information/605467/

#Infosec #Cybersecurity #SupplyChainRisk #flyingblue #AviationSecurity

KLM and Air France Data Breach Possibly Exposed Customer Information