Tag Archives: data exfiltration
GemStuffer RubyGems Campaign: Weaponizing Registries for Data Storage
The GemStuffer RubyGems campaign has revealed a mysterious new tactic where threat actors utilize official package registries as covert storage layers for scraped public data. Continue reading
Supply Chain Attack: Checkmarx Confirms Massive Credential Exfiltration
A devastating supply chain attack targeting the KICS project has led to the exfiltration of sensitive API keys and database credentials for MongoDB and MySQL. Continue reading
Trigona Exfiltration Tool: New Proprietary Malware Evades Security Defenses
Ransomware affiliates have transitioned to a custom Trigona exfiltration tool to bypass security systems and accelerate data theft through parallel streaming and connection rotation. Continue reading
Bitwarden CLI Breach: Critical Supply Chain Attack Targets Developers
A critical Bitwarden CLI breach has been identified in version 2026.4.0, involving a malicious GitHub Action that exfiltrates sensitive developer credentials and cloud secrets. Continue reading
FlamingChina Supercomputing Heist: Verifying the 10-Petabyte Data Breach
Technical experts have verified the FlamingChina Supercomputing Heist, a massive 10-petabyte data breach involving the National Supercomputing Center in Tianjin and sophisticated slow-drip botnet techniques. Continue reading
Microsoft Teams Impersonation: New Cross-Tenant Helpdesk Campaign
A sophisticated Microsoft Teams impersonation campaign has emerged, utilizing cross-tenant communication to bypass security filters and deploy remote management tools for data exfiltration. Continue reading
FlamingChina Breach: 10-Petabyte Data Exfiltration from Tianjin NSCC
The FlamingChina breach targets the National Supercomputing Center in Tianjin, involving a massive 10-petabyte data exfiltration that could be the largest digital heist in history. Continue reading