🚨MAJOR DATA BREACH🚨888 has allegedly leaked data belonging to Accenture. Revenue: $64.5 Billion In June 2024, Accenture suffered a data breach from a third party that exposed 32,826 employees/former employees. The Compromised Data Includes: Email Addresses, Full Names and Broadcast Dates.

🚨Outlook Zero-Click🚨TLDR; Recommended Steps for Microsoft 365 Admins can be seen in this blog post. ironscales.com/blog/zero-cli… The CVE-2024-30103 vulnerability leverages a flaw in how Microsoft Outlook handles specific types of email content. An attacker can embed malicious code within the body of an email, which gets executed as soon as the email is opened. This can lead to unauthorized access, data breaches, and further network compromise.

Automate Your XSS Detection: Top 5 Tools and Unique Commands for Pentesters and Bug Hunters 💻 These top 5 automation tools that can help make your pentesting and bug hunting easier and more efficient. Thread 🧵 : 👇

#OSINT #infosec Get availability status of select services/organizations @Speedtest's DOWNDETECTOR! downdetector.com/companies/

Bug Bounty Cheatsheet m0chan.github.io/2019/12/17/…

Top story: GitHub - pwn0sec/PwnXSS: PwnXSS: Vulnerability (XSS) scanner exploit github.com/pwn0sec/PwnXSS, see more tweetedtimes.com/v/1939?s=tn…

If you want to master hacking JWT tokens, open this thread! JWT tokens are often used to authenticate logged-in users. They do this by signing the data so that the server can verify forged tokens. But in some cases, we can bypass this protection! 🤯 A Thread 🧵👇

🥽 The Anti-Recon Recon Thread 🥽 Recon is important, but some people hate it. I get it. When you're in the zone & ready to pounce on a target, you just want to start hacking. Want the best of both worlds? Quick/complete recon, WITH great coverage? (a long thread) 🧵⬇️

A must check thread from @Jhaddix for #infosec #cybersec && Security Research community!

Total loss of digital assets and compromise of every account is a terrible terrible way to learn. Never click any links (even sponsored links) you are not absolutely sure of. And if you must, do it in a SandBox or such. @nft_god, we can all learn sth from your thread...

Don't get blinded by a new 'innovation' that is proprietary. If it was done inhouse and proprietary, it can also be done FREE, #opensource! The community just needs to work together. "Together we hit harder" like @Hacker0x01 says. There is power in unity! @fsf #infosec

342 million views of "flipper zero" content on TikTok, and millions more on YouTube... apparently it can be used to change prices on gas pump displays... (script) github.com/UberGuidoZ/Flippe… picture src (not me) from reddit. This is going end in tears when someone gets arrested.

GitHub - KingOfBugbounty/Bugbounty-Checklist: Tips and Tutorials for Bug Bounty and also Penetration Tests. github.com/KingOfBugbounty/B…

There's been a lot of chit-chat regarding the "Twitter DB leak". If you're curious how Threat Actors were able to get information on users via the API please see the attached images below. Have a nice day. tl;dr returns information if e-mail or phone number is valid

If you're interested in bluetooth low level hacking take a look at this cool project by Matheus Eduardo Garbelini (@MatheusGarbelin) Active Bluetooth BR/EDR Sniffer/Injector: github.com/Matheus-Garbelini… #bluetooth #esp32 #espressif #hacking #infosec

#informationsecurity community && #bugbounty hunters, take note of the #bugbountytips compiled by @intigriti on SSRF!

To get into #infosec || #CyberSec || #BugBounty you need to start somewhere. Networking and Network Security can be that somewhere @udacity!

Kali Linux 2022.4 is out! * New platforms (Azure, Generic Cloud/OpenStack, QEMU & Vagrant libvirt) * NetHunter Pro - Kali Linux on the @thepine64 PinePhone / PinePhone Pro * New tools * And more Download now! kali.org/blog/kali-linux-202…

Big update! #nuclei just got a major update, adding URL Fuzzing and many new features 🧵 Release Blog –– blog.projectdiscovery.io/nuc… Release CL –– github.com/projectdiscovery/… Fuzzing Templates –– github.com/projectdiscovery/… #hackwithautomation #dast #opensource #cybersecurity #bugbounty