Threat actors claim access to Telegram servers through insiders

Researchers reported that a threat actor claims to provide access to internal servers at Telegram for $20,000. SafetyDetectives reported that a member of a dark web marketplace is claiming to provide access to internal servers at Telegram for $20,000. The seller claims that the access is permanent because is provided by insiders that are staff […]

The post Threat actors claim access to Telegram servers through insiders appeared first on Security Affairs.

January 12, 2023
Read More >>

Twitter: 200M dataset was not obtained through the exploitation of flaws in its systems

Twitter said that its investigation revealed that users’ data offered for sale online was not obtained from its systems. Twitter provided an update on its investigation launched after data of 200 Million users were offered for sale online. The company has found “no evidence” that the data were obtained by hacking into its systems. Below […]

The post Twitter: 200M dataset was not obtained through the exploitation of flaws in its systems appeared first on Security Affairs.

January 12, 2023
Read More >>

Phising/Self-exploit or a proper attack vector?

Here’s some backstory.

A report I have made has been marked as Informative because the attack vector I used was supposedly “Phising or Self-exploit”. The attack vector I used was this: •Send sms or message from messaging app containing a enticing message (either a insult or something similar that mentions being in a group on the affected app, or a message from the attacker pretending to be someone that would require the message to be passed on into the group) that is a payload in disguise. •The victim would either be mad and paste the message into the group (if insult, to try and figure out who said this) or they would believe the faking person and share the message into the group •The hidden payload activates and strings get leaked from the app and get sent into the group, where presumably, there’d be a compromised account or a person in on the plan that would copy it before it gets deleted

Does this count as Phising or Self-exploit?

submitted by /u/Educational-Age3766
[link] [comments]

January 12, 2023
Read More >>

Social marketplace Trustanduse exposes nearly half a million users

Security loopholes on social marketplace website trustanduse.com exposed data of around 439,000 users including many businesses for at least six months. Disclosing personal data on platforms providing digital services is always risky. The Cybernews research team identified a publicly accessible database storing up to 855GB of sensitive user and business data that belongs to social […]

The post Social marketplace Trustanduse exposes nearly half a million users appeared first on Security Affairs.

January 12, 2023
Read More >>

How to Bypass Windows’s BitLocker?

Helloe together,

I am furious currently. I was starting my way into Linux and not in particular hacking, but a bit about security and such. But I am a complete noob and I am at the beginning of all of that. So I had the plan to make a persistent live SSD in a case with an USB adapter. So far so good.

But I didn’t know, that Windows would make problems after disabling secure boost and would ask for a key afterwords, WHICH I NEVER KNEW ABOUT NOR SET IT UP MYSELF.

The key isn’t on my microsoft account and enabling safe boot didn’t help.

Does anyone know some resources or/and programs would could help me, to recover my data? I hate Windows.

submitted by /u/OlliO_o
[link] [comments]

January 12, 2023
Read More >>

Royal Mail is suffering service disruption due to a ‘cyber incident’

Royal Mail, Britain’s postal service, announced it has suffered a “cyber incident” that caused a “severe service disruption.” Royal Mail, the British multinational postal service and courier company, announced this week that a “cyber incident” has a severe impact on its operation. The incident only impacted Royal Mail’s international export services, the company said it is temporarily unable to […]

The post Royal Mail is suffering service disruption due to a ‘cyber incident’ appeared first on Security Affairs.

January 12, 2023
Read More >>