I just published The Fall of a Hacker: Unmasking the Philippines’ Most Wanted Cybercriminal medium.com/p/the-fall-of-a-h…

📷 The Easiest Way to Discover Live Cameras around the World OSINT investigations often involve searching for public cameras manually in a specific area… Different tabs. Different datasets 👀 But combining everything into one view changes how fast you can understand a situation. When I’m doing geospatial OSINT, one of my favorite approaches is using platforms that merge multiple live data sources into a single map 🗺️ Because context matters just as much as raw data. Here’s what this type of tool can show 👇 📹 Live public cameras around the world ✈️ Real-time aircraft tracking 🚢 Maritime vessel movements 🌍 Interactive 3D globe visualization 🧩 Additional intelligence layers through plugins 🎯 Real-life example: Imagine you’re investigating an incident near a coastal city or airport. Instead of checking separate platforms, you: • View nearby live cameras • Check aircraft activity overhead • Monitor vessel traffic in real time 🔗 Tool: demo.worldwideview.dev/ What’s your favorite OSINT tool for geospatial or real-time analysis? P.S. ♻️ Repost if you found this helpful.

🔎 How I Check if an Email is Linked to a PGP Key Most investigators stop after searching breach databases. That's a mistake. Sometimes the most valuable clue isn't in a data leak... It's hiding in a public PGP key 🔐 When I'm investigating an email address, one of my favorite pivots is checking whether it's associated with a PGP key. Why? Because a single PGP key can reveal: 📧 Additional email addresses 👤 Usernames and aliases 🔑 Key fingerprints 📚 Historical activity 🌐 New investigation paths Real-world example 👇 Imagine you're investigating an email address found in a data breach. You search for the email and discover it's linked to a public PGP key. From there, you may find the same key referenced in: • Mailing lists • Code repositories • Archived discussions • Technical forums • Public key servers 🎯 Suddenly, a simple email address becomes a gateway to a much larger digital footprint. Many investigators overlook this step. But sometimes a PGP key is the missing link that connects multiple online identities together. 🔗 Tool: keys.openpgp.org/ Have you ever used PGP keys as part of an OSINT investigation? P.S. ♻️ Repost if you found this helpful.

threatactorusernames.com by @CTI__Updates Input a username and locate active forum accounts, very useful for your OSINT research or finding posts shared on X

Is Nexonwallet.net a scam? Our investigators took a closer look at the platform and uncovered a number of concerning findings. Watch the video to learn more, or read our full investigation here: cybertrace.com.au/is-nexonwa…

🚨 Chicago Teen, 19, Linked to International "Scattered Spider" Hacking Ring, Prosecutors Say A young cybercriminal known online as "Bouquet" allegedly lived a globe-trotting lifestyle, bouncing between Dubai, Thailand, and New York while flaunting designer jewelry, wads of cash, and stays at luxury hotels, according to federal authorities. That run has come to an end, prosecutors say. Court records reviewed by the Tribune identify "Bouquet" as Peter Stokes, a 19-year-old dual citizen of the United States and Estonia. He was taken into custody earlier this month at a Finnish airport as he prepared to board a flight bound for Japan. chicagotribune.com/2026/04/2…

WireTapper is a wireless #OSINT tool that passively detects and maps Wi-Fi, Bluetooth, CCTV cameras, vehicles, headphones, TVs, IoT devices, and cell towers, turning nearby radio signals into clear situational intelligence github.com/h9zdev/WireTapper

What initially appeared as a series of isolated leak posts linked to the name HellCat gradually revealed a more structured pattern when examined through StealthMole. The activity traced back to a shared onion-based infrastructure, supported by multiple communication channels and a recurring set of forum actors operating in close proximity to one another.

175 million Telegram messages. 2 million channels. Not indexed by Google. 🔎 @Deaddrop searches a scraped Telegram archive - surfacing content that normal search engines will never find. Free for recent data. A solid Telegago alternative: deaddrop.theosintconsultants…

‼️ BREAKING: The threat actors behind the recent supply chain attacks are imploding. Nearly every member has been kicked from the group and their operations are severely disrupted. 👀 They're apparently having some kind of rodent infestation problem.

@GangExposed_RU Great work My friend 🚨 Handala Exposed: I have the names, connections, and photos of key participants. Following the recent hack of the FBI Director, I have identified 14 direct participants of the Handala group - including hackers, operators, and a coordinator-curator (in addition to Ali Bermoudeh, Morteza Aftabifar, Yahya Hosseini Panjaki, Mousa Bermoudeh). I have a full dossier on these participants, including real names, connections, and even photos of several of them. I am ready to provide these materials in full. But there is a condition. @FBI, you are required to publicly issue official charges against the key participants of Conti Ransomware and LockBit, the materials for which I already made publicly available many months ago: - Kvitko - Kurashov - Bondarenko - Sergey Khitrov - Kamensky - Dementyev (LockBit leader) The materials were complete and fully documented. During this time, there has not been a single public indictment, a single official statement, or any visible procedural action on these cases. Here is all the evidence: justpaste.it/iw99v justpaste.it/lmbkf justpaste.it/mxfxz justpaste.it/il812 justpaste.it/dz1qv justpaste.it/hsq7e justpaste.it/abwwp justpaste.it/jnmqv justpaste.it/ie84p justpaste.it/dmy4j justpaste.it/huh1t justpaste.it/bz6nt justpaste.it/iipya justpaste.it/ilpg5 justpaste.it/u/gangexposed I demand that you fulfill your direct obligations to American taxpayers, who fund the work of the FBI. A year of inaction despite ready evidence is no longer a question of resources or priorities. It is a question of competence and principled approach to work. I have been publishing exposes for over a year. I am capable of tracking the most hidden hackers in the world; my materials have repeatedly proven accurate. Now it is time to show that the justice system is able to respond to verified facts. I await an official response. #Conti #LockBit #Handala #FBI

Feds sure seem capable of taking down telegram channels and websites fast when it comes to one of their own. I wonder why these rules don't apply to other telegram channels/groups such as the ones run by NVE's/RMVE's/etc. which can stay up for months at a time🤔

What do you think Kash Patel's password was? x.com/1776coldbeers/status/2…

> be iranian threat actors > compromise FBI directors personal email > fast forward like, 5 hours > $10,000,000 bounty on head Opinion: I think Kash Patel is extremely mad

Anatomy of a Supply Chain Breach: How a Pirated Game Exposed Jollibee Food Corporation. by @jaypeelita medium.com/p/anatomy-of-a-su… OSINT BASTION 🤝Soros Services Inc. (ConXIntel)!!! Collaboration again this one hits different!!!🔥🔥

When Hackers Get Fedded

‼️ ShinyHunters leaks BreachForums version 5. They say the following of the leak: "BreachForums has been run by many fakes, but by us, following the FBI seizure on 10 Oct 2025. Maintaining such an ecosystem is a waste of our time. There was an unauthorised leak on 9 Jan 2026. Ever since then, false personas going by “N/A“ and “Indra“ were successfully able to restore a similar-looking “legitimate“ forum. All the current forums are fake [ .sb, .ac, .fi, .bf, .us, ect.]. If they continue to exist, we'll leak all the BF backups, including every private message, emails, IP addresses, posts, ect. We have exploits for all 1.8 versions of MyBB."

‼️ Handala Hack, the hacktivist group behind the mass data Intune wipe of the company Stryker and the data leak of senior employees of Lockheed Martin, is now claiming a security breach of the FBI.

Some beef. Conti Ransomware - jordanconti@protonmail.com LockBit - 3778638546435689276444486582@protonmail.com Beast Ransomware - MNSTR@sector.city Wing Ransomware - blackhuntdev@tuta.io Qilin Ransomware - seemnahelene@gmail.com RTM Locker - mail165@mail.com CryptNet RaaS - abasfedya@tuta.io Bl00dy Ransomware - jeansmoove4@gmail.com Phobos Ransomware - qwertgfdsa123qw@proton.me LummaStealer - work888hard@proton.me UBUD Ransomware - IsEmptyOrNull@protonmail.com Meduza Stealer - MeduzaCod@proton.me CraxsRAT/XWorm - pradarosemerindama@gmail.com Reference: ddanchev.blogspot.com/2026/0…

‼️ Footage of the LeakBase domain administrator getting arrested in Taganrog, Russia. techcrunch.com/2026/03/25/ru…