Securityish's Avatar

Securityish

@securityish.bsky.social

πŸ”’ Cybersecurity news made simple. βœ‰οΈ newsletter.securityish.com 🌎 securityish.com

7 Followers  |  28 Following  |  186 Posts  |  Joined: 10.12.2025  |  1.5164

Latest posts by securityish.bsky.social on Bluesky

Preview
AWS CodeBuild Misconfiguration Exposes GitHub Repositories to Supply Chain Risks A misconfiguration in AWS CodeBuild, identified as CodeBreach, allowed potential attackers to take over AWS's GitHub repositories, including the AWS JavaScript SDK. This vulnerability, discovered on August 25, 2025, was fixed by AWS in September 2025

A misconfiguration in AWS CodeBuild, identified as CodeBreach, allowed potential attackers to take over AWS’s GitHub repositories, including the AWS JavaScript SDK.

securityish.com/security_br...

16.01.2026 18:10 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ“š DDoS (Distributed Denial of Service): An attack that floods a target with excessive traffic from many devices, overwhelming systems and making services slow or unavailable.

16.01.2026 13:01 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ”’ Enable purchase alerts. Fraud hates speed.

13.01.2026 22:57 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ“š Defense-in-Depth: A security strategy that layers multiple protective controls so if one fails, others still reduce risk or block the attack.

13.01.2026 16:57 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Dutch Court Upholds Seven-Year Sentence for Port Hacker Involved in Cocaine Smuggling A Dutch appeals court confirmed a seven-year prison sentence for a man who hacked port IT systems to assist cocaine smugglers. The defendant was convicted of computer hacking, cocaine importation, and attempted extortion after using malware-laden USB

A Dutch appeals court confirmed a seven-year prison sentence for a man who hacked port IT systems to assist cocaine smugglers.

securityish.com/security_br...

13.01.2026 12:58 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Botnet Command and Control Activity Increased 24% in Late 2025 From July to December 2025, botnet Command & Controller (C&C) activity rose by 24%, with Remote Access Trojans (RATs) making up 42% of the top 20 malware linked to botnets. A Russia-based registrar ex...

securityish.com/security_bri...

#cybersecurity #botnet #security

13.01.2026 02:07 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

A Russia-based registrar experienced a staggering 9,608% increase in botnet C&C domains during this period. Major cloud providers are responding to this surge, highlighting the growing threat posed by botnets to cybersecurity.

13.01.2026 02:07 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

From July to December 2025, botnet Command & Controller (C&C) activity rose by 24%, with Remote Access Trojans (RATs) making up 42% of the top 20 malware linked to botnets.

13.01.2026 02:07 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

πŸ”’ Set up account recovery now. Future-you will be locked out without it.

12.01.2026 22:41 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

πŸ”’πŸ“° Our weekly cybersecurity news briefing is free and takes five minutes to read. It keeps you ahead of scams, breaches, and privacy risks. Subscribe here: newsletter.securityish.com

12.01.2026 20:00 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Target's Git Server Taken Offline After Alleged Source Code Theft Hackers claim to have stolen internal source code from Target Corporation, posting samples on Gitea. The repositories included over 57,000 lines of code and were advertised as part of an 860 GB dataset for sale. Following inquiries from BleepingCompu

🚨 Hackers claim to have stolen internal source code from Target Corporation.

#cybersecurity #target #infosec

securityish.com/security_br...

12.01.2026 18:58 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ“š Code Injection: An attack where malicious code is inserted into a legitimate program or system so it executes unintended commands or actions.

12.01.2026 18:27 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Anthropic Launches Claude AI for Healthcare with Secure Record Access On January 12, 2026, Anthropic introduced Claude for Healthcare, enabling U.S. subscribers to connect their health records securely. This feature allows Claude to summarize medical histories, explain test results, and prepare questions for doctor vis

As AI tools like Claude and ChatGPT Health become integrated into healthcare, users should remain vigilant about the accuracy of the information provided. Both platforms acknowledge their limitations and advise users to consult healthcare professionals for personalized guidance. #health #security

12.01.2026 14:07 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

🚨 BREAKING: Malaysia and Indonesia have suspended access to the social network X due to its failure to prevent the creation of non-consensual sexual deepfakes. securityish.com/security_br...

12.01.2026 03:29 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

In 2025, the number of active Phishing-as-a-Service (PhaaS) kits doubled, allowing less-skilled attackers to conduct sophisticated phishing campaigns.

#cybersecurity #security #phishing #saas

11.01.2026 22:37 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Instagram Denies Data Breach Amid Claims of 17 Million Accounts Leaked Instagram has addressed claims of a data leak affecting over 17 million accounts, stating that a bug allowed external parties to request password reset emails. Meta, Instagram's parent company, insists there was no breach of their systems and that us

Instagram has addressed claims of a data leak affecting over 17 million accounts, stating that a bug allowed external parties to request password reset emails.

securityish.com/security_br...

11.01.2026 20:17 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Don’t click unknown links. Curiosity is expensive on the internet.

11.01.2026 18:11 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Europol Arrests 34 Black Axe Members in Major Fraud Operation Europol announced the arrest of 34 individuals in Spain linked to the Black Axe criminal organization, known for various crimes including cyber fraud. The operation, conducted with the Spanish National Police, resulted in damages exceeding €5.93 mill

Europol announced the arrest of 34 individuals in Spain linked to the Black Axe criminal organization, known for various crimes including cyber fraud.

#cybercrime #fraud #cybersecurity

securityish.com/security_br...

11.01.2026 16:06 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ“š Session Hijacking: An attack where someone takes over a user’s active login session, often by stealing cookies or tokens, to access accounts without needing the password.

11.01.2026 12:42 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
BreachForums Hacking Forum Exposes 324,000 User Accounts in Data Leak BreachForums, a hacking forum for trading stolen data, has experienced a significant data breach, leaking a user database containing 323,988 accounts. The leak includes sensitive information such as member display names, registration dates, and IP ad

Poetic justice? securityish.com/security_br...

10.01.2026 23:48 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ”’ Check your privacy settings. You’re sharing more than you think.

10.01.2026 20:46 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
17.5 Million Instagram Accounts Exposed in Data Breach A significant data breach has exposed the personal information of approximately 17.5 million Instagram users, with sensitive details now circulating on dark web forums. The breach, identified by Malwarebytes, involved an API leak that allowed unautho

A significant data breach has exposed the personal information of approximately 17.5 million Instagram users, with sensitive details now circulating on dark web forums.

#cybersecurity #databreach #infosec

securityish.com/security_br...

10.01.2026 16:05 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ“š Supply Chain Attack: A tactic where attackers compromise a third-party provider, vendor, or software dependency to infiltrate downstream organizations or users.

10.01.2026 14:48 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Europol Arrests 34 Black Axe Members in Major Fraud Operation Europol announced the arrest of 34 individuals in Spain linked to the Black Axe criminal organization, known for various crimes including cyber fraud. The operation, conducted with the Spanish National Police, resulted in damages exceeding €5.93 mill

Europol announced the arrest of 34 individuals in Spain linked to the Black Axe criminal organization, known for various crimes including cyber fraud.

securityish.com/security_br...

10.01.2026 13:08 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ”’ Don’t reuse passwords. One breach shouldn’t become ten.

09.01.2026 23:50 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
FBI Alerts to North Korean Hackers Using QR Codes in Phishing Attacks The FBI has issued a warning about North Korean hackers, specifically the Kimsuky group, using malicious QR codes in spear-phishing campaigns targeting U.S. think tanks, academic institutions, and government entities. This tactic, known as 'quishing,

⚠️ The FBI has issued a warning about North Korean hackers, specifically the Kimsuky group, using malicious QR codes in spear-phishing campaigns targeting U.S. think tanks, academic institutions, and government entities.

#cybersecurity #phishing #cyberattacks

securityish.com/security_br...

09.01.2026 15:47 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Palo Alto Crosswalk Signals Compromised Due to Default Passwords Palo Alto's crosswalk signals were hacked last year because the city did not change the default passwords. This oversight raises significant cybersecurity concerns as it highlights vulnerabilities in public infrastructure. Such incidents can lead to

Palo Alto’s crosswalk signals were hacked last year because the city did not change the default passwords.

securityish.com/security_br...

#cybersecurity #security #paloalto

09.01.2026 13:37 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Securityish Cybersecurity news made simple.

Did you know we have a weekly newsletter? It is a 5 minute brief that covers breaches, scams, privacy tips, and emerging threats. Simplified so anyone can understand what matters and why. Subscribe: newsletter.securityish.com/

09.01.2026 12:48 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ“š Credential Stuffing: An attack where stolen usernames and passwords are automatically tested across many websites in hopes that people reused the same login.

09.01.2026 11:07 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ”’ Use a password manager. Your brain wasn’t built for 200 logins.

09.01.2026 02:21 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@securityish is following 20 prominent accounts