a Threat Actor called "quellostanco" claims that he has stolen a full EgyptAir database.

The database mentioned has 104K records related to HR section including sensitive employees data as he say

@reverseengineer101

Ramadan Kaream all ❤️

Intigriti Challenge 0226

CTF solved ✓

The write up will be disclosed ASAP the challenge finishes 🏁

@reverseengineer101

Now The Challenge Is Finished ! 🔥

You Can Watch The Full Walkthrough Video on YouTube
https://youtu.be/fDLTvOayNEk

Or You Can Read The Writeup On Medium
https://medium.com/@mohamedabozaid961/intigriti-challenge-0226-write-up-dbf9146dc1f4

#CTF #Cybersecurity #intigriti

@reverseengineer101

SaveAny-Bot 🗃️

Save Any Telegram File to Anywhere 📂 (Alist, Disk, Webdav, S3, Rclone...) . Support restrict saving content and files beyond telegram.

🎯 Features

1- Support documents / videos / photos / stickers… and even Telegraph

2- Bypass "restrict saving content" media

3- Batch download

4- Streaming transfer

5- Multi-user support

6- Auto organize files based on storage rules

7- Watch specified chats and auto-save messages, with filters

8- Transfer files between different storage backends

9- Integrate with yt-dlp to download and save media from 1000+ websites

10- Aria2 integration to download files from URLs/magnets and save to storages

11- Write JS parser plugins to save files from almost any website

12- Storage backends:
- Alist
- S3
- WebDAV
- Local filesystem
- Rclone (via command line)
- Telegram (re-upload to specified chats)

https://github.com/krau/SaveAny-Bot

Shared by @reverseengineer101

Today one of the Biggest Critical Security Breaches happened, anthropic claude code CLI source code has been breached by someone who says it was a security research (I don't think that was a legit one)

How the breach happened:

- who has leaked the source code says it was publicly noted that Claude Code source material was reachable through a .map file exposed in the npm package:

"Claude code source code has been leaked via a map file in their npm registry!"

- who is involved in the leak Chaofan Shou (@Fried_rice)

The scary part:

- anthropic knows that claude hallucinates and not giving you accurate answers while it has the capability to do

- claude has massive power but it's restricted to you but not to the employees in anthropic

- they are trying to keep you consuming and paying for tokens that runs out quickly due to the stupid answers you get

- anthropic is developing more powerful agents but keeps everything undercover

- claude has modes that can be switched to, to do specific tasks based on the job/task type but that's not for you as well

The funny part:

- I have found the same vulnerability not too far from now in some service provider, where I found source maps also exposed logs that contains data about the databases and administrators

- days before I heard some security professional says that the AI bubble is near to burst or vanish


The leak repository:

- Can be found on github

That's why I am always warning about these security vulnerabilities specially for developers

Thank you for reading ♥️

@reverseengineer101

Telegram's latest update added AI to their chat app, which can fix, summarize, and make text context-based. Additionally, in channels, you can get a summary of long posts using the AI.

I see this as a good step that offers more flexibility and time-saving features, although adding new features could introduce new vulnerabilities, especially nowadays with AI. 😂

Qwen3.6-plus is released 🔥


◉ a 1M context window by default

◉ significantly improved agentic coding capability

◉ better multimodal perception and reasoning ability

Official release article:
https://qwen.ai/blog?id=qwen3.6

Note: you can use Qwen3.6-plus on the android chat app now

@reverseengineer101