May 16, 2025
May 16, 2025
https://neal.fun/internet-artifacts/Not that many impacted customers ( but 1% of monthly active *transacting* wallets), but the info that was leaked is everyones name, address, phone, email, last 4 ssn, partial bank, government id, account and corporate data.. Gonna assume thats mostly whale accounts https://t.co/GfSeF6bVbo pic.twitter.com/ZhdlK33gm0
— AndrewMohawk⁽ⁿᵘˡˡ⁾ (@AndrewMohawk) May 15, 2025
Coinbase confirms it's compromise (crazy story, will discuss it later). But, Coinbase is being extorted for $20,000,000
— vx-underground (@vxunderground) May 15, 2025
Coinbase said it won't pay the $20,000,000 and instead is offering a $20,000,000 bounty for the identification of the people involved pic.twitter.com/W4nK9ALvcZ
Nice, @Android has finally added a spiritual equivalent to iOS Lockdown Mode in Android 16. If you turn it on, then (among other things) the "trivial access to obscure (read: vulnerable) device drivers via USB" loophole is closed. Also "intrusion logging"! https://t.co/iN0ehtEpQB
— Bill Marczak (@billmarczak) May 15, 2025
Dr. Christopher Kunz: "CISA is changing the way they publizice alerts, i…" - chaos.social
CISA is changing the way they publizice alerts, including the KEV (known exploited vulnerabilities). These will no longer be shown on the "Alerts" overview, but must be subscribed to via GovAlert (or just scrape the JSON...). The first vulnerability that is not being published as an alert is...drumroll... CVE-2025-47729. "The TeleMessage archiving backend through 2025-05-05 holds cleartext copies of messages from TM SGNL app users" Isn't that a funny coincidence?
Peter Schaar: "#Microsoft has blocked its services to the Intern…" - Mastodon
#Microsoft has blocked its services to the International Criminal Court by order of Donald #Trump. The #ICC prosecutor doesn’t have access to his #email. Source:AP https://apnews.com/article/icc-trump-sanctions-karim-khan-court-a4b4c02751ab84c09718b1b95cbd5db3
OPSEC broken by bellingcat
It’s interesting how, due to information preserved in old leaked data and archived websites/forums, OPSEC fails are a bad mistake to have made. That is, if you screwed up in the past, it can be fatal even if you’ve been clean on OPSEC (lol) for years.
And as always, the foundational sin of this OPSEC failure is the lack of strict compartmentation. Connections between usernames, accounts, emails, and passwords are the foundations of these investigations. Using entirely unique accounts that don’t contaminate each other is critical, absolutely vital, to security.
The best time to compartment is before you started, the second best time is now.
Report: Terrorists seem to be paying X to generate propaganda with Grok https://t.co/rUUFDj3PII
— switched (@switch_d) May 15, 2025