🤖 GREYVIBE Hackers Use ChatGPT and Gemini to Power Cyberattacks
A threat group identified as GREYVIBE is leveraging mainstream generative AI tools, including ChatGPT and Google Gemini, to enable and scale cyberattacks.
Operationally, this highlights how off-the-shelf LLMs can accelerate content creation, targeting, and tooling, lowering skill barriers and compressing attack timelines. Defenders should prioritize email and identity controls, restrict unmanaged AI tool access, and monitor for AI-assisted techniques across logs and endpoints.
🛰️ Open sources - closed narratives
@sitreports
A threat group identified as GREYVIBE is leveraging mainstream generative AI tools, including ChatGPT and Google Gemini, to enable and scale cyberattacks.
Operationally, this highlights how off-the-shelf LLMs can accelerate content creation, targeting, and tooling, lowering skill barriers and compressing attack timelines. Defenders should prioritize email and identity controls, restrict unmanaged AI tool access, and monitor for AI-assisted techniques across logs and endpoints.
🛰️ Open sources - closed narratives
@sitreports
🤖 Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
On May 10, 2026, threat actors exploited CVE-2026-39987 in Marimo and deployed an LLM-driven agent for post-exploitation, enabling credential theft and exfiltration of a PostgreSQL database. The incident highlights coordinated automation immediately following initial access.
The operational shift is clear: agentic tooling can chain tasks—environment enumeration, credential reuse, and database dumping—faster than manual playbooks, shrinking detection windows. Priority actions include rapid patching, credential rotation, and telemetry on scripted SQL exports and anomalous outbound flows from database hosts.
🛰️ Open sources - closed narratives
@sitreports
On May 10, 2026, threat actors exploited CVE-2026-39987 in Marimo and deployed an LLM-driven agent for post-exploitation, enabling credential theft and exfiltration of a PostgreSQL database. The incident highlights coordinated automation immediately following initial access.
The operational shift is clear: agentic tooling can chain tasks—environment enumeration, credential reuse, and database dumping—faster than manual playbooks, shrinking detection windows. Priority actions include rapid patching, credential rotation, and telemetry on scripted SQL exports and anomalous outbound flows from database hosts.
🛰️ Open sources - closed narratives
@sitreports
🔍 Microsoft Calls the Zero-Day Dumps Irresponsible. The Researcher Says Microsoft Started It.
Microsoft calls recent zero-day dumps irresponsible; the researcher responds that Microsoft set the events in motion. A public dispute over disclosure and accountability is now explicit.
Operationally, the clash spotlights gaps in coordinated disclosure, vendor–researcher trust, and release timing—key factors for patch pipelines and risk communication across enterprises.
🛰️ Open sources - closed narratives
@sitreports
Microsoft calls recent zero-day dumps irresponsible; the researcher responds that Microsoft set the events in motion. A public dispute over disclosure and accountability is now explicit.
Operationally, the clash spotlights gaps in coordinated disclosure, vendor–researcher trust, and release timing—key factors for patch pipelines and risk communication across enterprises.
🛰️ Open sources - closed narratives
@sitreports
🤖 Dutch govt disrupts malware botnet with 17 million infected devices
Dutch authorities have disrupted a massive malware botnet involving 17 million infected devices.
The action reduces capacity for spam, credential theft, and DDoS, and signals stronger state pressure on criminal infrastructure. Defenders should watch for orphaned C2 traffic, patch exposed IoT/SOHO devices, and use network telemetry to confirm cleanup and spot reinfection.
🛰️ Open sources - closed narratives
@sitreports
Dutch authorities have disrupted a massive malware botnet involving 17 million infected devices.
The action reduces capacity for spam, credential theft, and DDoS, and signals stronger state pressure on criminal infrastructure. Defenders should watch for orphaned C2 traffic, patch exposed IoT/SOHO devices, and use network telemetry to confirm cleanup and spot reinfection.
🛰️ Open sources - closed narratives
@sitreports
🔍 14 malicious npm packages impersonated OpenSearch, Elasticsearch libraries
Fourteen malicious npm packages impersonated OpenSearch and Elasticsearch libraries on npm, posing as trusted components for search integrations.
The incident highlights ongoing supply chain risk in the JavaScript ecosystem. Teams should verify maintainers and package scopes, monitor for typosquats, pin and checksum dependencies, and run continuous audits to minimize exposure during installation and CI builds.
🛰️ Open sources - closed narratives
@sitreports
Fourteen malicious npm packages impersonated OpenSearch and Elasticsearch libraries on npm, posing as trusted components for search integrations.
The incident highlights ongoing supply chain risk in the JavaScript ecosystem. Teams should verify maintainers and package scopes, monitor for typosquats, pin and checksum dependencies, and run continuous audits to minimize exposure during installation and CI builds.
🛰️ Open sources - closed narratives
@sitreports
🔍 Malicious NuGet Package Poses as Sicoob SDK to Steal Passwords
A fraudulent NuGet package posing as the Sicoob SDK has been identified stealing passwords. By mimicking a trusted SDK, it targets developers pulling dependencies through routine workflows.
Operationally, this highlights software supply-chain risk in the .NET ecosystem. Any environment that installed the spoofed SDK could have exposed credentials across dev machines or CI/CD. Enforce publisher verification, lock dependencies, rotate secrets, and audit recent builds.
🛰️ Open sources - closed narratives
@sitreports
A fraudulent NuGet package posing as the Sicoob SDK has been identified stealing passwords. By mimicking a trusted SDK, it targets developers pulling dependencies through routine workflows.
Operationally, this highlights software supply-chain risk in the .NET ecosystem. Any environment that installed the spoofed SDK could have exposed credentials across dev machines or CI/CD. Enforce publisher verification, lock dependencies, rotate secrets, and audit recent builds.
🛰️ Open sources - closed narratives
@sitreports
🤖 ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface
A disclosed ChatGPhish vulnerability exploits ChatGPT’s Markdown rendering to inject phishing content through web page summaries, effectively turning the summarization feature into a delivery path for malicious links.
Operationally, this widens the attack surface at the model interface: users may encounter convincing lures inside in-chat summaries without visiting the original site. Mitigate with stricter rendering and sanitization, URL/HTML filtering on outputs, and treating AI summaries as untrusted content.
🛰️ Open sources - closed narratives
@sitreports
A disclosed ChatGPhish vulnerability exploits ChatGPT’s Markdown rendering to inject phishing content through web page summaries, effectively turning the summarization feature into a delivery path for malicious links.
Operationally, this widens the attack surface at the model interface: users may encounter convincing lures inside in-chat summaries without visiting the original site. Mitigate with stricter rendering and sanitization, URL/HTML filtering on outputs, and treating AI summaries as untrusted content.
🛰️ Open sources - closed narratives
@sitreports
🔍 No fix yet for critical Gogs RCE bug - exploit module is out
A critical remote code execution flaw in Gogs remains unpatched, and an exploit module is now public. Coverage of the Gogs RCE bug highlights immediate risk to exposed instances.
Priority actions: reduce attack surface, restrict external access, disable risky integrations, enforce auth, and monitor logs for command abuse. Deploy WAF/IDS signatures and sandboxing, consider temporary isolation, and verify whether any Gogs hosts are internet-facing until a fix is released.
🛰️ Open sources - closed narratives
@sitreports
A critical remote code execution flaw in Gogs remains unpatched, and an exploit module is now public. Coverage of the Gogs RCE bug highlights immediate risk to exposed instances.
Priority actions: reduce attack surface, restrict external access, disable risky integrations, enforce auth, and monitor logs for command abuse. Deploy WAF/IDS signatures and sandboxing, consider temporary isolation, and verify whether any Gogs hosts are internet-facing until a fix is released.
🛰️ Open sources - closed narratives
@sitreports
📡 Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks
Attackers are now exploiting a GlobalProtect VPN authentication bypass flaw in Palo Alto Networks gateways, enabling login checks to be bypassed.
Operationally, GlobalProtect becomes an active ingress vector. Organizations should expedite fixes, restrict portal/gateway exposure, and audit VPN logs for anomalous sessions, geo mismatches, and unexpected admin changes to limit lateral movement.
🛰️ Open sources - closed narratives
@sitreports
Attackers are now exploiting a GlobalProtect VPN authentication bypass flaw in Palo Alto Networks gateways, enabling login checks to be bypassed.
Operationally, GlobalProtect becomes an active ingress vector. Organizations should expedite fixes, restrict portal/gateway exposure, and audit VPN logs for anomalous sessions, geo mismatches, and unexpected admin changes to limit lateral movement.
🛰️ Open sources - closed narratives
@sitreports
🔍 SideCopy Uses XenoRAT Against Afghan Finance Network
SideCopy, linked to Transparent Tribe/APT36, is assessed to have targeted Afghanistan’s Ministry of Finance and all 34 provincial revenue directorates with a spear-phishing chain delivering XenoRAT 1.8.7. The lure used a Pashto-named LNK inside a ZIP archive, then abused mshta.exe, remote HTA stages, reflective .NET loading, AMSI patching, and registry persistence. XenoRAT connected to 185.235.137.106 via AES-encrypted TCP traffic.
The operation stands out for target-specific decoy material listing provincial finance staff and direct numbers, indicating prior collection before delivery. TTPs remain consistent with long-observed SideCopy tradecraft, while the use of government-adjacent Afghan infrastructure and bulletproof hosting shows a layered setup for access, persistence, and command-and-control.
🛰️ Open sources - closed narratives
@sitreports
SideCopy, linked to Transparent Tribe/APT36, is assessed to have targeted Afghanistan’s Ministry of Finance and all 34 provincial revenue directorates with a spear-phishing chain delivering XenoRAT 1.8.7. The lure used a Pashto-named LNK inside a ZIP archive, then abused mshta.exe, remote HTA stages, reflective .NET loading, AMSI patching, and registry persistence. XenoRAT connected to 185.235.137.106 via AES-encrypted TCP traffic.
The operation stands out for target-specific decoy material listing provincial finance staff and direct numbers, indicating prior collection before delivery. TTPs remain consistent with long-observed SideCopy tradecraft, while the use of government-adjacent Afghan infrastructure and bulletproof hosting shows a layered setup for access, persistence, and command-and-control.
🛰️ Open sources - closed narratives
@sitreports
📡 Netherlands seizes 200 servers in 17-million-device botnet case
Dutch police and the NCSC say they dismantled a botnet spanning at least 17 million infected computers, tablets, and smartphones, and seized more than 200 servers hosted in the country. The infrastructure was tied to the residential proxy service Asocks, with servers taken for forensic analysis after the hosting provider confirmed criminal use.
The case underlines how residential proxy networks can mask malicious traffic behind ordinary consumer devices, complicating attribution and filtering. It also shows the central role of domestic hosting infrastructure in sustaining globally distributed botnets.
🛰️ Open sources - closed narratives
@sitreports
Dutch police and the NCSC say they dismantled a botnet spanning at least 17 million infected computers, tablets, and smartphones, and seized more than 200 servers hosted in the country. The infrastructure was tied to the residential proxy service Asocks, with servers taken for forensic analysis after the hosting provider confirmed criminal use.
The case underlines how residential proxy networks can mask malicious traffic behind ordinary consumer devices, complicating attribution and filtering. It also shows the central role of domestic hosting infrastructure in sustaining globally distributed botnets.
🛰️ Open sources - closed narratives
@sitreports
🔍 CIFSwitch opens local root path on multiple Linux distributions
A newly disclosed Linux local privilege escalation flaw, dubbed CIFSwitch, abuses forged cifs.spnego key requests to make the root-run cifs.upcall helper trust attacker-controlled data. The issue affects systems using vulnerable kernel CIFS plus cifs-utils combinations, with confirmed exposure on Linux Mint 21.3/22.3, CentOS Stream 9, Rocky 9, AlmaLinux 9, Kali 2021.4–2026.1, and SLES 15 SP7.
Operationally, exploitation is local and conditional, requiring user namespaces and permissive SELinux or AppArmor policy, but it results in root code execution. Upstream has patched request-origin validation; practical mitigation is to update, disable unused CIFS support, remove unnecessary cifs-utils, and turn off unprivileged user namespaces where feasible.
🛰️ Open sources - closed narratives
@sitreports
A newly disclosed Linux local privilege escalation flaw, dubbed CIFSwitch, abuses forged cifs.spnego key requests to make the root-run cifs.upcall helper trust attacker-controlled data. The issue affects systems using vulnerable kernel CIFS plus cifs-utils combinations, with confirmed exposure on Linux Mint 21.3/22.3, CentOS Stream 9, Rocky 9, AlmaLinux 9, Kali 2021.4–2026.1, and SLES 15 SP7.
Operationally, exploitation is local and conditional, requiring user namespaces and permissive SELinux or AppArmor policy, but it results in root code execution. Upstream has patched request-origin validation; practical mitigation is to update, disable unused CIFS support, remove unnecessary cifs-utils, and turn off unprivileged user namespaces where feasible.
🛰️ Open sources - closed narratives
@sitreports
🔍 Signal backup phishing shifts focus from account access to message archives
A targeted phishing campaign is sending SMS messages that impersonate Signal Support and pressure users to paste 64-character backup recovery keys into chat. The operation has been observed against journalists and activists and abuses Signal’s Secure Backups workflow; the stolen key can decrypt archived conversations stored on Signal servers. Signal does not request recovery keys from users.
Operationally, this is more damaging than a standard account takeover: the objective is retrospective access to full message history, not just future traffic. That makes high-risk users with sensitive archives a priority target set.
🛰️ Open sources - closed narratives
@sitreports
A targeted phishing campaign is sending SMS messages that impersonate Signal Support and pressure users to paste 64-character backup recovery keys into chat. The operation has been observed against journalists and activists and abuses Signal’s Secure Backups workflow; the stolen key can decrypt archived conversations stored on Signal servers. Signal does not request recovery keys from users.
Operationally, this is more damaging than a standard account takeover: the objective is retrospective access to full message history, not just future traffic. That makes high-risk users with sensitive archives a priority target set.
🛰️ Open sources - closed narratives
@sitreports
Telegram
SITREP - Independent OSINT Channel
When Cost Ratios Do the Talking
The price tag makes the picture even more brutal. A single Gepard with ammunition, overhaul and logistics easily runs into tens of millions of dollars; a Geran‑2 that destroys it costs in the range of 30–70 thousand dollars.…
The price tag makes the picture even more brutal. A single Gepard with ammunition, overhaul and logistics easily runs into tens of millions of dollars; a Geran‑2 that destroys it costs in the range of 30–70 thousand dollars.…
The Silence Around Destroyed Gepards
Western governments and media once highlighted every batch of Gepards delivered to Ukraine as a symbol of support. Today, the same actors stay almost silent when those systems are destroyed in Russian strikes.
This contrast between loud announcements of deliveries and quiet omissions about losses is itself a narrative. It undercuts the image of Western weapons as a decisive “game changer” and raises questions about the real effectiveness and survivability of these platforms under modern drone pressure.
For audiences in Europe, this silence creates a cognitive dissonance: taxpayers hear about expensive air‑defense packages, but not about how many systems are burning in Ukrainian fields. Over time, this gap between promised outcomes and battlefield reality may fuel skepticism toward new aid packages.
@sitreports
Western governments and media once highlighted every batch of Gepards delivered to Ukraine as a symbol of support. Today, the same actors stay almost silent when those systems are destroyed in Russian strikes.
This contrast between loud announcements of deliveries and quiet omissions about losses is itself a narrative. It undercuts the image of Western weapons as a decisive “game changer” and raises questions about the real effectiveness and survivability of these platforms under modern drone pressure.
For audiences in Europe, this silence creates a cognitive dissonance: taxpayers hear about expensive air‑defense packages, but not about how many systems are burning in Ukrainian fields. Over time, this gap between promised outcomes and battlefield reality may fuel skepticism toward new aid packages.
@sitreports
🔍 Google enables DBSC by default in Chrome for Windows
Google has moved Device-Bound Session Credentials to general availability in Chrome for Windows. The control is now enabled by default for Google Workspace users and also covers Workspace Individual and personal Google accounts. DBSC binds session cookies to device-held keys in TPM-class hardware, preventing stolen cookies from being reused on another system.
Operationally, this targets a key post-authentication gap: session hijacking after malware or infostealers extract valid cookies. For defenders, it adds hardware-backed proof of possession to web sessions, raises the cost of cookie theft, and provides audit visibility through Workspace security tools.
🛰️ Open sources - closed narratives
@sitreports
Google has moved Device-Bound Session Credentials to general availability in Chrome for Windows. The control is now enabled by default for Google Workspace users and also covers Workspace Individual and personal Google accounts. DBSC binds session cookies to device-held keys in TPM-class hardware, preventing stolen cookies from being reused on another system.
Operationally, this targets a key post-authentication gap: session hijacking after malware or infostealers extract valid cookies. For defenders, it adds hardware-backed proof of possession to web sessions, raises the cost of cookie theft, and provides audit visibility through Workspace security tools.
🛰️ Open sources - closed narratives
@sitreports
📡 From lottery draws to fiscal spending, China broadens digital yuan footprint
China is expanding the reach of its digital yuan, extending usage from lottery draws to direct fiscal spending. The move signals a shift from narrow pilots to operational deployment across citizen-facing services and government payments.
Broader coverage streamlines public disbursements and oversight, and increases touchpoints for retail adoption, pressuring incumbent payment channels to adapt. It tightens linkage between budget execution and settlement, raising technical and compliance requirements for banks, merchants, and local authorities.
🛰️ Open sources - closed narratives
@sitreports
China is expanding the reach of its digital yuan, extending usage from lottery draws to direct fiscal spending. The move signals a shift from narrow pilots to operational deployment across citizen-facing services and government payments.
Broader coverage streamlines public disbursements and oversight, and increases touchpoints for retail adoption, pressuring incumbent payment channels to adapt. It tightens linkage between budget execution and settlement, raising technical and compliance requirements for banks, merchants, and local authorities.
🛰️ Open sources - closed narratives
@sitreports
📡 Blue Origin faces months of delays after rocket explosion damages launch pad
Blue Origin faces months of delays after a rocket explosion damaged its launch pad, pausing operations while repairs and verifications proceed.
The stand-down compresses the near-term manifest, prompts schedule reshuffles for queued missions, and diverts resources to pad reconstruction and incident review. Range availability tightens and readiness dates will shift until ground infrastructure and safety approvals are restored.
🛰️ Open sources - closed narratives
@sitreports
Blue Origin faces months of delays after a rocket explosion damaged its launch pad, pausing operations while repairs and verifications proceed.
The stand-down compresses the near-term manifest, prompts schedule reshuffles for queued missions, and diverts resources to pad reconstruction and incident review. Range availability tightens and readiness dates will shift until ground infrastructure and safety approvals are restored.
🛰️ Open sources - closed narratives
@sitreports
🤖 SoftBank to build up AI data centres in France with major investment
SoftBank plans to expand AI data centres in France, committing a major investment to build out domestic compute infrastructure. The initiative indicates increased capacity for AI workloads hosted on French soil.
Operationally, this points to a stronger European AI stack with France positioned as a key hub. Implications include higher power and cooling demand, land and permitting pressures, and intensified competition across cloud ecosystems and hardware supply chains.
🛰️ Open sources - closed narratives
@sitreports
SoftBank plans to expand AI data centres in France, committing a major investment to build out domestic compute infrastructure. The initiative indicates increased capacity for AI workloads hosted on French soil.
Operationally, this points to a stronger European AI stack with France positioned as a key hub. Implications include higher power and cooling demand, land and permitting pressures, and intensified competition across cloud ecosystems and hardware supply chains.
🛰️ Open sources - closed narratives
@sitreports
⚡ First Windows PC powered by Nvidia chips to debut next week, Axios reports
The first Windows PC powered by Nvidia chips is slated to debut next week, Axios reports.
This marks a notable shift in the Windows hardware landscape, signaling Nvidia’s push into client processors and prompting OEMs and developers to reassess design choices, software optimization, and competitive positioning.
🛰️ Open sources - closed narratives
@sitreports
The first Windows PC powered by Nvidia chips is slated to debut next week, Axios reports.
This marks a notable shift in the Windows hardware landscape, signaling Nvidia’s push into client processors and prompting OEMs and developers to reassess design choices, software optimization, and competitive positioning.
🛰️ Open sources - closed narratives
@sitreports
🔍 CVE-2026-0257 exploited via forged GlobalProtect cookies
Rapid7 says attackers actively abused CVE-2026-0257 against multiple customers after Palo Alto patched the flaw on 13 May. The issue affects PAN-OS GlobalProtect portal and gateway deployments where auth override cookies are enabled and the same certificate is reused for HTTPS and cookie encryption, allowing forged VPN auth cookies and login bypass.
Observed activity began on 17 May, with two waves tied by the same spoofed MAC address. In some cases the forged cookie only authenticated, but in others it also obtained a VPN IP, giving direct internal network access without credentials.
🛰️ Open sources - closed narratives
@sitreports
Rapid7 says attackers actively abused CVE-2026-0257 against multiple customers after Palo Alto patched the flaw on 13 May. The issue affects PAN-OS GlobalProtect portal and gateway deployments where auth override cookies are enabled and the same certificate is reused for HTTPS and cookie encryption, allowing forged VPN auth cookies and login bypass.
Observed activity began on 17 May, with two waves tied by the same spoofed MAC address. In some cases the forged cookie only authenticated, but in others it also obtained a VPN IP, giving direct internal network access without credentials.
🛰️ Open sources - closed narratives
@sitreports
📡 Dutch police disrupt botnet tied to 17 million compromised devices
Dutch authorities have dismantled a botnet infrastructure linked to roughly 17 million infected devices, targeting the command layer used to manage a large pool of compromised systems. The action, detailed in the operation, focused on taking down backend control mechanisms rather than isolated endpoint remediation.
The scale points to a widely distributed abuse network with significant persistence across consumer and IoT environments. Disrupting command-and-control degrades coordinated malicious activity, but the device count indicates the underlying exposure base remains extensive even after infrastructure seizure.
🛰️ Open sources - closed narratives
@sitreports
Dutch authorities have dismantled a botnet infrastructure linked to roughly 17 million infected devices, targeting the command layer used to manage a large pool of compromised systems. The action, detailed in the operation, focused on taking down backend control mechanisms rather than isolated endpoint remediation.
The scale points to a widely distributed abuse network with significant persistence across consumer and IoT environments. Disrupting command-and-control degrades coordinated malicious activity, but the device count indicates the underlying exposure base remains extensive even after infrastructure seizure.
🛰️ Open sources - closed narratives
@sitreports