leak Archives - Security Pulse

ChatGPT browsing window with a blurred results pane, a visible MFA prompt, and a warning about “q=” links and allowlisted redirects

ChatGPT Data Leaks: Seven New Prompt Injection Paths and Real

yohanmanuja6 days ago6 days ago06 mins

Seven fresh techniques let attackers leak ChatGPT data through everyday workflows: poisoned search, “q=” one-click links, allowlisted ad redirects, conversation injection, markdown hiding, and memory poisoning. Because exposure rides on normal browsing and memory behavior, prevention requires policy plus proof: sanitize URLs, block bing.com/ck/a, disable Saved Memory for high-risk roles, and validate controls continuously with OWASP LLM Top 10 and MITRE ATLAS as your benchmarks.

FBI and French law enforcement cyber team seizing a ransomware leak site

Leak Site Tied to Scattered Spider Seized by FBI and French Police

yohanmanuja2 weeks ago2 weeks ago13 mins

Global law enforcement has seized a dark web leak site allegedly operated by Scattered Spider, halting a notorious pipeline of stolen corporate data. Here’s what cybersecurity experts need to know about the takedown.

MonoLock ransomware toolkit for sale on dark web forum screen capture

MonoLock Ransomware: What Security Teams Must Know Today

yohanmanuja3 weeks ago3 weeks ago15 mins

Actors on underground forums are now selling a turnkey ransomware toolkit named MonoLock v1.0 designed to target small and medium organisations, disable backups, encrypt data at scale via AES-256/RSA-2048, and demand payment through an automated Tor portal. Security teams must recognise this shift in the ransomware-as-a-service (RaaS) business model and reinforce detection, defence and incident response accordingly.

China National Time Service Centre Shaanxi with cyber-attack visual overlay

China’s National Time Agency Targeted by U.S. Cyber Espionage

yohanmanuja3 weeks ago3 weeks ago03 mins

China’s Ministry of State Security alleges that the U.S. National Security Agency breached its National Time Service Centre over multiple years. The event signals new exposure for timing infrastructure and escalates global cyber conflict.

Global visualization showing Silver Fox Winos 4.0 expansion into Japan and Malaysia

Silver Fox Winos 4.0 Malware Now Strikes in Japan and Malaysia

yohanmanuja4 weeks ago4 weeks ago24 mins

The Silver Fox group, long known for precision-targeted malware operations, has extended its Winos 4.0 campaign into Japan and Malaysia. Security experts now observe the deployment of HoldingHands RAT through malicious PDF attachments and deceptive software installers.

Envoy Air Oracle Data Theft Attack Diagram

Oracle EBS Data Theft at Envoy Air Clop Campaign Overview

yohanmanuja4 weeks ago4 weeks ago24 mins

Envoy Air confirmed it was targeted in a Clop-linked campaign exploiting vulnerabilities in Oracle E-Business Suite. While the airline asserts no passenger data was affected, business records may have been stolen. This write-up breaks down the tactics, likely exploited CVEs, impacts, and what organizations must do next.

Map showing global distribution of exposed F5 BIG-IP devices tracked by Shadowserver

F5 BIG-IP Exposure: 266,000 Devices Still Open to Remote Attacks

yohanmanuja4 weeks ago4 weeks ago33 mins

Shadowserver has identified over 266,000 F5 BIG-IP devices exposed to remote attack after a breach revealed undisclosed vulnerabilities. Organizations must act now to mitigate potential exploitation.

Diagram illustrating Windows BitLocker vulnerability exploit paths

New BitLocker Vulnerabilities Threaten Windows Data Protection

yohanmanuja4 weeks ago4 weeks ago26 mins

Security researchers uncovered multiple vulnerabilities in Microsoft’s BitLocker encryption, exposing Windows systems to data theft, privilege escalation, and bypass attacks. This article analyzes the flaws, their potential impact, and how organizations can secure encrypted drives against exploitation.

Cl0p ransomware breach targeting global organizations in 2025 data-leak campaign

Cl0p-Linked Hackers Launch New Data-Leak Campaign

yohanmanuja1 month ago1 month ago04 mins

A new Cl0p ransomware breach has hit dozens of organizations across finance, energy, and logistics sectors. Analysts warn the campaign marks a resurgence of the group’s dark-web leak operations, signaling a return to large-scale, supply-chain-style extortion attacks.

Data-leak sites hit an all-time high as ransomware groups expand dark web leak platforms

Massive Spike in Data-Leak Platforms Marks Cybercrime Shift

yohanmanuja1 month ago1 month ago04 mins

The number of data-leak sites hit an all-time high in 2025, marking a major escalation in the ransomware ecosystem. Threat groups expanded their leak operations across the dark web, with some running multiple extortion portals at once. Analysts say this surge reflects a fundamental shift in how ransomware crews monetize stolen data.

Zoom for Enterprise: close DLL path attacks, move to 6.3.10 today

KONNI abuses Google Find Hub for Android remote wipes

APT37 exploits Google Find Hub to wipe Android phones

Firefox hardens privacy: expanded fingerprint protections

Ludwigshafen Shuts Down City IT After Cyberattack

AI-Powered Phishing and Cloud Malware Push Threats

Tag: leak

ChatGPT Data Leaks: Seven New Prompt Injection Paths and Real

Leak Site Tied to Scattered Spider Seized by FBI and French Police

MonoLock Ransomware: What Security Teams Must Know Today

China’s National Time Agency Targeted by U.S. Cyber Espionage

Silver Fox Winos 4.0 Malware Now Strikes in Japan and Malaysia

Oracle EBS Data Theft at Envoy Air Clop Campaign Overview

F5 BIG-IP Exposure: 266,000 Devices Still Open to Remote Attacks

New BitLocker Vulnerabilities Threaten Windows Data Protection

Cl0p-Linked Hackers Launch New Data-Leak Campaign

Massive Spike in Data-Leak Platforms Marks Cybercrime Shift