❗️ Interesting move from the French police: they posted on a breaches forum directly from a threat actor's account after they arrested him.

WhatsApp on Windows users targeted in new campaign, warns Microsoft Microsoft warns WhatsApp on Windows users about an ongoing campaign that tries to gain permanent access to your machine

Attackers are sliding into WhatsApp messages to drop a script onto Windows machines which will lead to the attacker gaining full control of the target's machine.

The .vbs attachments look harmless, but lead to a full-on compromise when clicked. From there, it’s a classic living-off-the-land attack.

❗️A hack at one of Europe's biggest football clubs Ajax made it possible to steal season tickets, attend matches, and even lift stadium bans.

RTL news found you can see which 500+ supporters are banned from the stadium and remove their bans...

Revealed by
danielverlaan

Sometimes you find great intell, but you just can't tell anyone about it... Or how you got the intell.... So just a shoutout to @epieos.com, @kagi.com and Maltigo.

Save Lives. Stop Threats. Epieos.

We just released a free OSINT toolkit for investigators.
IP Lookup (VPN/proxy detection + court-ready PDF)
Username Search (600+ sites)
Domain-to-IP with security scoring
Email Header Analyzer
Image EXIF Reader
Timestamp Decoder

Try instantly. Free account for ongoing access. No search data tracked

❗️ Leaked: Dutch Prison Agency (DJI) hacked

This breach, and those of the Dutch Data Protection Authority, the Council for the Judiciary, the European Commission and Finland’s government, all trace back to two critical 0-day vulnerabilities in Ivanti EPMM:
CVE-2026-1281 and CVE-2026-1340.

‼️The leak also include deaths and diseases like 'cancer' for Odido customers and also complaints about customers that are swearing or are being aggressive.

Why were they registering medical data of their customers?

🚨‼️ First batch of Odido customer data has been leaked.

We have analysed the database and found:

All customers: 293,026

Individuals (B2C):
Active: 144,510
Inactive: 117,446

Businesses (B2B):
Active: 16,002
Inactive: 15,068

Top family name: Jong
Top city: Amsterdam

Bellingcat has further analysed videos of the shooting of Alex Pretti by federal agents. The footage shows an agent wearing a black beanie step behind Pretti. His right arm then appears to recoil at the same time the first shot is heard.

It's an execution of a bystander who is on both hands and knees!

Resecurity | Doomsday for Cybercriminals — Data Breach of Major Dark Web Forum

Breachforum breached!

www.resecurity.com/blog/article...

Cybercriminals stole the sensitive information of 17.5 million Instagram accounts, including usernames, physical addresses, phone numbers, email addresses, and more.

This data is available for sale on the dark web and can be abused by cybercriminals.

TikTok ban: Switching to RedNote? Your privacy is at stake. | Proton As the treat of a TikTok ban looms, many U.S. users are flocking to a new TikTok alternative called RedNote. But should they be?

proton.me/blog/tiktok-...

PugRecon

Search by 1.6 billion subdomains scrapped from multiple public (and private) sources.

dash.pugrecon.celes.in

Creator twitter.com/c3l3si4n 👏

#OSMOSISCon #LasVegas
What a view!

Heading to Las Vegas this week for #OSMOSISCon. Three days of OSINT! can't wait. #Shadowdragon, #Fivecast, #District4, #Epieos and #OSINTCombine. #OSMOSIS

Internet Archive hacked, data breach impacts 31 million users Internet Archive's "The Wayback Machine" has suffered a data breach after a threat actor compromised the website and stole a user authentication database containing 31 million unique records.

Holy sh*t....

www.bleepingcomputer.com/news/securit...

Week in OSINT 202426 This week a filled episode, with books and bookmarks, names and Needlestack, training and tweets! This week I spend some extra time to go ov

Good morning! This time a really filled Week in #OSINT, all thanks to: @cybersecstu.bsky.social @needlestackpod.bsky.social @nixintel.bsky.social and many more not on Bluesky yet!

sector035.nl/articles/202...

My Start.me page with osint tools.

start.me/p/vjOnJq/blu...

Largest ever operation against botnets hits dropper malware ecosystem | Europol OP Endgame

Operation Endgame.

www.europol.europa.eu/media-press/...

New Windows AI feature records everything you’ve done on your PC Recall uses AI features "to take images of your active screen every few seconds."

Your passwords are not safe..

arstechnica.com/gadgets/2024...

Proton Pass introduces enhanced identity protection with Pass Monitor | Proton Proton Pass Monitor is an advanced security feature that detects credential leaks and helps you defend your accounts.

proton.me/blog/proton-...

More than 11 million euros seized and man arrested in investigation into gambling platform scam On Monday 29th of April, the FIOD arrested a 26-year-old man who is suspected of fraud, embezzlement and money laundering. The investigation focuses on a large-scale scam surrounding the alleged gambl...

Nice job by the FIOD.

www.fiod.nl/12-million-s...

Week in OSINT 202416 Another Monday with some interesting tips from the world of open source intelligence and investigations This week I have some more interesti

Good morning! A minute or so later, but here it is! Your Week in #OSINT!

H/T: @layer8pod.bsky.social @bendobrown.bsky.social and others!

sector035.nl/articles/202...

Trying out Deck.blue.... twitter deck vibes!!

Did you see the I-SOON data dump? github.com/mttaggart/I-...

Lockbit shutdown?!

www.theregister.com/2024/02/20/l...

We are proud to announce OSINTUp!

Join us on Thursday, February 22 at 11 a.m. ET for a free, virtual skill-sharing event bringing together some of OSINT's leading experts, including a keynote from Micah Hoffman @webbreacher.com from My OSINT Training! 🚀

Sign up and details: bit.ly/48PXZh2

I wonder how much hassle this will cause.