Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug
The White House App has OneSignal's full GPS pipeline compiled in, polling your location every 4.5 minutes, syncing your exact coordinates to a third party server.
Cyberattack by the Handala hacker group and disclosure of confidential data belonging to the former Israeli Defense Minister.
#TGITM @TheGhostITM
#TGITM @TheGhostITM
The Handala hacker group has hacked over 70 pages of communications belonging to Yoav Gallant, the former Israeli Defense Minister, and says it has infiltrated all of his confidential and personal systems.
#TGITM @TheGhostITM
#TGITM @TheGhostITM
Handala emphasized that, due to the high informational value and ongoing exploitation, most of these chats will not be published for now, so that the regime's leaders remain in a state of anxiety and sleeplessness.
#TGITM @TheGhostITM
#TGITM @TheGhostITM
Cyber warfare is entering a new phase: AI vs AI.
Security experts warn that both attackers and defenders now deploy intelligent systems, shifting humans into coordination roles rather than direct operators.
As Joe Carson puts it, AI is a turbo engine, powerful when guided, but dangerous when misused, amplifying vulnerabilities instead of fixing them.
Security experts warn that both attackers and defenders now deploy intelligent systems, shifting humans into coordination roles rather than direct operators.
As Joe Carson puts it, AI is a turbo engine, powerful when guided, but dangerous when misused, amplifying vulnerabilities instead of fixing them.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly disclosed vulnerability affecting F5 BIG-IP systems to its Known Exploited Vulnerabilities (KEV) catalog, warning that the flaw is being actively leveraged in real-world attacks.
CVE-2025-53521 is an unspecified vulnerability within F5 BIG-IP Access Policy Manager (APM) that could allow remote code execution (RCE).
CVE-2025-53521 is an unspecified vulnerability within F5 BIG-IP Access Policy Manager (APM) that could allow remote code execution (RCE).
Hacktivist identifying as NetStrike claims to have compromised the industrial control systems (ICS) of a power facility in Tel Aviv.
Former U.S. Army intelligence officer & cybersecurity expert Josephine Guilbeau (17yrs service w/ USCYBERCOM, DIA, NSA) is challenging the system she served.
Using the U.S.’ own definition of “terrorism,” she dissects the Minab school strike—175+ killed, mostly girls aged 7-12.
When truth erupts from a counterterrorism insider, it’s too heavy to bury.
#TGITM @TheGhostITM
Using the U.S.’ own definition of “terrorism,” she dissects the Minab school strike—175+ killed, mostly girls aged 7-12.
When truth erupts from a counterterrorism insider, it’s too heavy to bury.
#TGITM @TheGhostITM
AI slashes war planning time—Palantir CTO Shyam Sankar says it revolutionizes ops design vs. past wars.
But amid U.S./Israel strikes like Minab's Shajareh Taybeh school—dozens of civilians martyred—questions mount on AI accuracy & human cost.
Tech accelerates death; where's the oversight?
#TGITM @TheGhostITM
But amid U.S./Israel strikes like Minab's Shajareh Taybeh school—dozens of civilians martyred—questions mount on AI accuracy & human cost.
Tech accelerates death; where's the oversight?
#TGITM @TheGhostITM
Global cybersecurity on high alert: ZDI uncovers Telegram's critical ZDI-CAN-30207 vuln (CVSS 9.8)—a zero-click remote exploit bypassing auth & user interaction.
"Worst-case" for privacy: attackers seize full control remotely, risking 1B+ users—no account or clicks needed. Telegram denies; patch deadline July 24.
Details held back to block exploits. Stay vigilant!
"Worst-case" for privacy: attackers seize full control remotely, risking 1B+ users—no account or clicks needed. Telegram denies; patch deadline July 24.
Details held back to block exploits. Stay vigilant!
AI isn’t making code safer. It’s expanding the attack surface.
As Eric Fourrier, GitGuardian CEO, notes, 28.65M secrets were exposed in 2025 as AI workflows expanded tokens, APIs, and machine identities.
As Eric Fourrier, GitGuardian CEO, notes, 28.65M secrets were exposed in 2025 as AI workflows expanded tokens, APIs, and machine identities.
More than 50 Israeli security cameras have reportedly been compromised, marking a new phase in the expanding cyber front. Beyond data breaches, this signals a shift toward real-time surveillance disruption and psychological impact. The line between cyber ops and physical security keeps blurring.
(Israel’s National Cyber Directorate, WSJ)
#TGITM @TheGhostITM
(Israel’s National Cyber Directorate, WSJ)
#TGITM @TheGhostITM
Cyber Dispatch™️
More than 50 Israeli security cameras have reportedly been compromised, marking a new phase in the expanding cyber front. Beyond data breaches, this signals a shift toward real-time surveillance disruption and psychological impact. The line between cyber ops…
The developments come as cyber operations intensify, with hacktivists expanding their reach across the region.
#TGITM @TheGhostITM
#TGITM @TheGhostITM
A dataset claiming to contain Israeli citizen records is being sold on a popular cybercrime forum.
Records: 842,387 lines
Size: 74.4MB
Format: CSV
Data Fields: ID number, last name, first name, city, street, house number, apartment, date of birth, phone number, mobile phone, additional phone, email.
Records: 842,387 lines
Size: 74.4MB
Format: CSV
Data Fields: ID number, last name, first name, city, street, house number, apartment, date of birth, phone number, mobile phone, additional phone, email.
Forwarded from 𓂆 Palestine
Donald Trump's threats to target energy facilities have led a group of hackers to consider targeting the energy facilities of their rivals.
A new malware loader is using fake “fix” prompts to trick users into running PowerShell commands.
DeepLoad runs inside legitimate Windows processes and begins stealing browser credentials and sessions early in the attack.
DeepLoad runs inside legitimate Windows processes and begins stealing browser credentials and sessions early in the attack.