Pwn2Own Berlin 2026, Day Two: $385,750 more, Microsoft Exchange falls, and the running total crosses $900K
https://securityaffairs.com/192209/security/pwn2own-berlin-2026-day-two-385750-more-microsoft-exchange-falls-and-the-running-total-crosses-900k.html
https://securityaffairs.com/192209/security/pwn2own-berlin-2026-day-two-385750-more-microsoft-exchange-falls-and-the-running-total-crosses-900k.html
Security Affairs
Pwn2Own Berlin 2026, Day Two: $385,750 more, Microsoft Exchange falls, and the running total crosses $900K
Day two of Pwn2Own Berlin 2026 saw $385,750 earned for 15 zero-days, bringing the total to $908,750 and 39 vulnerabilities over two days.
🔥3❤1
🚨 Attackers are buying stolen employee credentials every day and try to attack companies, protect yourself from this threat ...
Xleak.io helps companies monitor leaked corporate credentials across dark web and infostealer logs before they turn into breaches.
Find employees combo (email:pass) for verified business domains and prevent attacks against your customers as well!
Bug bounty hunters could also benefit to look for leaked credentials for their targeted programs and earn bounties
Get your company report immediatly and access now at:
xleak.io
Bonus: Dedicated API access for Enterprises is available!
#bugbountytips #bugbounty #hackerone #CyberSecurity #ThreatIntel #Infostealer #DarkWeb
Xleak.io helps companies monitor leaked corporate credentials across dark web and infostealer logs before they turn into breaches.
Find employees combo (email:pass) for verified business domains and prevent attacks against your customers as well!
Bug bounty hunters could also benefit to look for leaked credentials for their targeted programs and earn bounties
Get your company report immediatly and access now at:
xleak.io
Bonus: Dedicated API access for Enterprises is available!
#bugbountytips #bugbounty #hackerone #CyberSecurity #ThreatIntel #Infostealer #DarkWeb
❤3
Forwarded from Yetim dasturchi kundaligi
Kripto kurslar qancha bo'lyapti ekan bolajonlar?)
Menimcha sizlar meni taniysizlar. Nu menam endi sizlarni tanishni boshladim.
P.S: O'sha nosvoydan chekib yaxshilab o'ylab ko'rganinglar durust. Qariya sifatida maslahat beraman: bilimni boshqa yaxshi ishlar uchunam ishlatsa bo'ladi. Hali ham kech emas.
Menimcha sizlar meni taniysizlar. Nu menam endi sizlarni tanishni boshladim.
P.S: O'sha nosvoydan chekib yaxshilab o'ylab ko'rganinglar durust. Qariya sifatida maslahat beraman: bilimni boshqa yaxshi ishlar uchunam ishlatsa bo'ladi. Hali ham kech emas.
❤3🔥1
Forwarded from infosec
• Судя по всему, кто-то нашел github токен сотрудника Grafana, который предоставил доступ к Grafana Labs на GitHub и позволил выгрузить всю кодовую базу. Однако вместо репорта по программе bug bounty, гений решил потребовать выкуп за удаление скачанных исходников. К слову, выкуп никто не заплатил, а вот что будет с исходниками — пока неясно.
➡️ https://www.kucoin.com/
#Новости
#Новости
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
Forwarded from Turan Security
Toshkentda kiberxavfsizlik, sun'iy intellekt va bulutli texnologiyalar bo'yicha xalqaro konferensiya
🗓 21-may | Soat 9:30 da boshlanadi
📍 Uztelecom ofisi, Mo'minov ko'chasi, 4/2
Uztelecom va Code IB ushbu xalqaro konferensiyaga IT va axborot xavfsizligi mutaxassislarini, shuningdek, biznes vakillarini taklif qiladi.
Dastur uchta tematik yo'nalishni o'z ichiga oladi:
🔐 Kiberxavfsizlik
🌐 Sun'iy intellekt
☁️ Bulutli texnologiyalar
📶 Nima uchun ishtirok etish kerak?
— Eng yaxshi amaliyotlar va real hayotdagi holatlar
— Bozor yetakchilari tajribasi
— Biznes barqarorligi va samaradorligi uchun texnologiyalar
— Professionallar bilan aloqalar
🔗 Oldindan ro'yxatdan o'tish bilan ishtirok etish bepul. Joylar cheklangan.
International Conference on Cybersecurity, AI, and Cloud Technologies in Tashkent
🗓 May 21 | Starts at 9:30 AM
📍 Uztelecom Office, 4/2 Muminov Street
Uztelecom and Code IB invite IT and information security specialists, as well as business representatives, to the international conference.
Program includes three thematic tracks:
🔐 Cybersecurity
🌐 Artificial Intelligence
☁️ Cloud Technologies
📶 Why attend?
— Real-world cases
— Experience of market leaders
— Technologies for business sustainability and efficiency
— Networking with professionals
🔗 Free participation with advance registration. Space is limited
@turansecurity | www.turansec.uz | info@turansec.uz
Uztelecom va Code IB ushbu xalqaro konferensiyaga IT va axborot xavfsizligi mutaxassislarini, shuningdek, biznes vakillarini taklif qiladi.
Dastur uchta tematik yo'nalishni o'z ichiga oladi:
— Eng yaxshi amaliyotlar va real hayotdagi holatlar
— Bozor yetakchilari tajribasi
— Biznes barqarorligi va samaradorligi uchun texnologiyalar
— Professionallar bilan aloqalar
International Conference on Cybersecurity, AI, and Cloud Technologies in Tashkent
Uztelecom and Code IB invite IT and information security specialists, as well as business representatives, to the international conference.
Program includes three thematic tracks:
— Real-world cases
— Experience of market leaders
— Technologies for business sustainability and efficiency
— Networking with professionals
@turansecurity | www.turansec.uz | info@turansec.uz
Please open Telegram to view this post
VIEW IN TELEGRAM
🤮4❤🔥3👍2🔥1🤔1
Forwarded from CyberSecurityTechnologies
SOC_Analyst_Career_Guide.pdf
36 MB
#Tech_book
#Cyber_Education
"SOC Analyst Career Guide
Become highly skilled in security tools, tactics, and techniques to jumpstart your SOC analyst career", 2025.
// This book focuses on breaking into cybersecurity the right way, through grit, curiosity, and practical execution. Being a SOC analyst is not glamorous. It involves long hours, messy data, and living on the edge of someone else’s breach. Yet for those who thrive on chaos, who find purpose in connecting dots that others overlook, and who take satisfaction in stopping threats before anyone else even notices, this is where you belong
#Cyber_Education
"SOC Analyst Career Guide
Become highly skilled in security tools, tactics, and techniques to jumpstart your SOC analyst career", 2025.
// This book focuses on breaking into cybersecurity the right way, through grit, curiosity, and practical execution. Being a SOC analyst is not glamorous. It involves long hours, messy data, and living on the edge of someone else’s breach. Yet for those who thrive on chaos, who find purpose in connecting dots that others overlook, and who take satisfaction in stopping threats before anyone else even notices, this is where you belong
Forwarded from NetStalkers
Огромная практическая брошюра (PDF) по подготовке к интервью в Security Operations Center — с фокусом на Junior+ / Middle линий L1 / L2 с разбором практических заданий, реальных вопросов\ответов с боевого интервью, STAR-кейсами (для США\ЕС) и другими ништяками от White2hack
Это авторская переработка и компиляция большого массива открытых материалов, официальных обучающих курсов, вендорской документации, assessment-подходов и практических инженерных паттернов. Документ не претендует на роль полного руководства конкретного вендора; содержание будет со временем обновляться, расширяться и уточняться.
К брошюре идет Starter Kit (ZIP) — собранный набор полезных скриптов, шаблонов, плейбуков, IoC, экспресс-чеклистов и прикладных заготовок, которые можно брать за основу для тренировки, самообучения и повседневной работы SOC-инженера.
#cybersec
Please open Telegram to view this post
VIEW IN TELEGRAM
🔍 RegExr — Regex o‘rganish uchun eng qulay vositalardan biri!
🛠 RegExr orqali:
✅ Regex patternlarini yaratishingiz
✅ Test qilishingiz
✅ Match natijalarini real vaqtda ko‘rishingiz
✅ Regex sintaksisini o‘rganishingiz mumkin
Masalan, log fayllardan:
📌 IP address
📌 URL
📌 Timestamp
📌 HTTP method
kabi ma’lumotlarni ajratib olishda regex juda foydali.
🌐 Try it: https://regexr.com/
#CyberSecurity #Regex #LogAnalysis #SIEM #BlueTeam #SOC #RegExr
🛠 RegExr orqali:
✅ Regex patternlarini yaratishingiz
✅ Test qilishingiz
✅ Match natijalarini real vaqtda ko‘rishingiz
✅ Regex sintaksisini o‘rganishingiz mumkin
Masalan, log fayllardan:
📌 IP address
📌 URL
📌 Timestamp
📌 HTTP method
kabi ma’lumotlarni ajratib olishda regex juda foydali.
🌐 Try it: https://regexr.com/
#CyberSecurity #Regex #LogAnalysis #SIEM #BlueTeam #SOC #RegExr
❤4
GitHub has reportedly been hacked.
A group called TeamPCP claims it gained unauthorized access to GitHub’s internal systems and stole data from around 4,000 private and internal repositories, including source code and company files.
They are now trying to sell this stolen data for more than $50,000 on underground forums and have said they will release it for free if no one buys it.
GitHub is investigating the unauthorized access and says it has found no evidence so far that customer data, organizations, or customer repositories were affected.
#BreachFrorum #DataLeak #Github
A group called TeamPCP claims it gained unauthorized access to GitHub’s internal systems and stole data from around 4,000 private and internal repositories, including source code and company files.
They are now trying to sell this stolen data for more than $50,000 on underground forums and have said they will release it for free if no one buys it.
GitHub is investigating the unauthorized access and says it has found no evidence so far that customer data, organizations, or customer repositories were affected.
#BreachFrorum #DataLeak #Github
Israel Ministry of Justice data breach
Contents
800k emails
700k Images
200k documents including spreadsheets and internal presentations
245gb uncompressed
114gb compressed
#CybserSecurity #DataBreach #Forum #TH
Contents
800k emails
700k Images
200k documents including spreadsheets and internal presentations
245gb uncompressed
114gb compressed
#CybserSecurity #DataBreach #Forum #TH
🤣15👍6❤4🎉1