Few European countries, notably France, Spain, and Portugal, experienced major power outages that impacted millions. Although the exact cause is still being investigated by authorities, there are reports and speculation pointing to possible involvement by cybercriminals.

https://www.politico.eu/article/spain-portugal-power-blackouts-energy-electricity/

OSINT-driven Popularity Scoring of Global Vulnerability Identifiers - A valuable metric for tracking trending vulnerabilities and public exploits for CVE, CNNVD & BDU.

https://github.com/ARPSyndicate/cnnvd-scores
https://github.com/ARPSyndicate/bdu-scores
https://github.com/ARPSyndicate/cve-scores

A red team exercise simulating cyberattacks on critical infrastructure by reversing SCADA.

https://vrls.ws/posts/2025/04/red-team-compromising-critical-infrastructure-by-reversing-scada-software/

Docker remains the top target among services trapped by Darktrace honeypots, consistently drawing attacks from emerging malware strains. This blog delves into a recent campaign with an unusual obfuscation method and an innovative cryptojacking technique.

https://www.darktrace.com/blog/obfuscation-overdrive-next-gen-cryptojacking-with-layers

Awesome Intelligence got stargazed by 2000+ OSINT enthusiasts 😍

https://www.github.com/ARPSyndicate/awesome-intelligence

Stealing Telegram OTPs Using SMS Relays

https://medium.com/@cyberletmewin/how-i-could-steal-telegram-otps-using-sms-relays-4672769c98e3

Puncia v0.32 is out! 🎉
Boost your cyber intelligence game with:

🌐 Attack surface mapping
🔍 Exploit discovery
⚙️ CVE/GHSA enrichment
🤖 Summarization & code gen
✍️ Auto advisory creation
🧾 SBOM analysis
🔄 CI/CD & threat intel integration
🛰️ Nation-state threat tracking
🛡️ Brand protection
📦 Bulk threat intel processing
🕵️ Passive recon & OSINT
📰 Auto-summarized security blogs
🌍 Multilingual intel delivery

https://github.com/ARPSyndicate/puncia

Paying for your VPS with Monero doesn’t mean you’re anonymous. This video explains why financial privacy isn’t the same as operational security and how assuming otherwise can expose you.

https://youtube.com/watch?v=OqzMrhcMcUM

A hacker has stolen customer data from TeleMessage, an obscure Israeli company that sells modified messaging apps to the U.S. government. The breach includes messages from its versions of Signal, WhatsApp, Telegram, and WeChat. TeleMessage recently gained attention after Mike Waltz revealed he used it in a meeting with Trump.

https://www.404media.co/the-signal-clone-the-trump-admin-uses-was-hacked/

This bug is one of the most dangerous types of bugs that exist, a wormable RCE in the apple airplay protocol. This video explains what a UAF is, what a Type Confusion is, and how Rust may have fixed it.

https://www.youtube.com/watch?v=AZ0WM6U48lI

Micah Lee analyses the source code for the unofficial Signal app used by Trump officials.

https://micahflee.com/heres-the-source-code-for-the-unofficial-signal-app-used-by-trump-officials/

Eddie Zhang leverages AI to uncover an authentication bypass and remote code execution in OpenGamePanel.

https://projectblack.io/blog/vibe-hacking-open-game-panel-rce/

India's sovereign platform for aggregating and disseminating cyber threat intelligence.

https://ctigrid.arpsyndicate.io

SlowMist Researchers dive deep into the Lockbit Breach.

https://slowmist.medium.com/when-hackers-get-hacked-analyzing-the-breach-of-lockbit-23b8f553747d

Ben Folland explores how defenders can exploit flaws in Telegram-based malware to disrupt C2 communications subsequently revealing insights into their backend infrastructure and other cybercrime activities.

https://polygonben.github.io/malware%20analysis/Compromising-Threat-Actor-Communications/

U.S. is investigating hidden communication tech in Chinese solar and battery equipment while pushing for trusted gear in its power grid.

https://www.reuters.com/sustainability/climate-energy/ghost-machine-rogue-communication-devices-found-chinese-inverters-2025-05-14/

OpenBullet 2 is a popular tool among attackers for credential-stuffing attacks, offering features like proxy support and CAPTCHA farm integration. Its user-friendly interface and availability of pre-made LoliScript configurations make it accessible even to non-developers.

https://blog.castle.io/open-bullet-2-fraudsters-preferred-credential-stuffing-tool-2/

In 2017, Qihoo 360 founder Zhou Hongyi criticized Chinese experts joining foreign hackathons, urging that discovered vulnerabilities stay within China. His stance aligned with national policy, as domestic competitions now require reporting all findings to the government.

https://youtu.be/8kpnSb4yGR0

https://www.bloomberg.com/news/articles/2025-04-30/chinese-hacking-competitions-fuel-the-country-s-broad-cyber-ambitions