#credential — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #credential, aggregated by home.social.
-
CVE-2026-34474: Pre-auth #credential disclosure in #ZTE #H298A / #H108N via #ETHCheat...The short version: an ETHCheat branch returns credential-bearing #HTML before #authentication. The captured fields include the #admin #password, WLAN PSK, and ESSID, and a companion wizard #endpoint #exposes serial data.
-
CVE-2026-34474: Pre-auth #credential disclosure in #ZTE #H298A / #H108N via #ETHCheat...The short version: an ETHCheat branch returns credential-bearing #HTML before #authentication. The captured fields include the #admin #password, WLAN PSK, and ESSID, and a companion wizard #endpoint #exposes serial data.
-
CVE-2026-34474: Pre-auth #credential disclosure in #ZTE #H298A / #H108N via #ETHCheat...The short version: an ETHCheat branch returns credential-bearing #HTML before #authentication. The captured fields include the admin password, WLAN PSK, and ESSID, and a companion wizard #endpoint #exposes serial data.
-
CVE-2026-34474: Pre-auth #credential disclosure in #ZTE #H298A / #H108N via #ETHCheat...The short version: an ETHCheat branch returns credential-bearing #HTML before #authentication. The captured fields include the #admin #password, WLAN PSK, and ESSID, and a companion wizard #endpoint #exposes serial data.
-
From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5and Confluence - https://www.redpacketsecurity.com/from-edge-appliance-to-enterprise-compromise-multi-stage-linux-intrusion-via-f5and-confluence/
#threatintel
#edge-appliances
#linux-intrusion
#confluence
#credential-relay
#mitre-attack-techniques -
From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5and Confluence - https://www.redpacketsecurity.com/from-edge-appliance-to-enterprise-compromise-multi-stage-linux-intrusion-via-f5and-confluence/
#threatintel
#edge-appliances
#linux-intrusion
#confluence
#credential-relay
#mitre-attack-techniques -
From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5and Confluence - https://www.redpacketsecurity.com/from-edge-appliance-to-enterprise-compromise-multi-stage-linux-intrusion-via-f5and-confluence/
#threatintel
#edge-appliances
#linux-intrusion
#confluence
#credential-relay
#mitre-attack-techniques -
From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5and Confluence - https://www.redpacketsecurity.com/from-edge-appliance-to-enterprise-compromise-multi-stage-linux-intrusion-via-f5and-confluence/
#threatintel
#edge-appliances
#linux-intrusion
#confluence
#credential-relay
#mitre-attack-techniques -
From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5and Confluence - https://www.redpacketsecurity.com/from-edge-appliance-to-enterprise-compromise-multi-stage-linux-intrusion-via-f5and-confluence/
#threatintel
#edge-appliances
#linux-intrusion
#confluence
#credential-relay
#mitre-attack-techniques -
Undermining the trust boundary: Investigating a stealthy intrusion throughthird-party compromise - https://www.redpacketsecurity.com/undermining-the-trust-boundary-investigating-a-stealthy-intrusion-throughthird-party-compromise/
#threatintel
#trusted-relationships
#third-party-risk
#credential-theft
#persistence
#intrusion-detection -
Undermining the trust boundary: Investigating a stealthy intrusion throughthird-party compromise - https://www.redpacketsecurity.com/undermining-the-trust-boundary-investigating-a-stealthy-intrusion-throughthird-party-compromise/
#threatintel
#trusted-relationships
#third-party-risk
#credential-theft
#persistence
#intrusion-detection -
Undermining the trust boundary: Investigating a stealthy intrusion throughthird-party compromise - https://www.redpacketsecurity.com/undermining-the-trust-boundary-investigating-a-stealthy-intrusion-throughthird-party-compromise/
#threatintel
#trusted-relationships
#third-party-risk
#credential-theft
#persistence
#intrusion-detection -
Undermining the trust boundary: Investigating a stealthy intrusion throughthird-party compromise - https://www.redpacketsecurity.com/undermining-the-trust-boundary-investigating-a-stealthy-intrusion-throughthird-party-compromise/
#threatintel
#trusted-relationships
#third-party-risk
#credential-theft
#persistence
#intrusion-detection -
Undermining the trust boundary: Investigating a stealthy intrusion throughthird-party compromise - https://www.redpacketsecurity.com/undermining-the-trust-boundary-investigating-a-stealthy-intrusion-throughthird-party-compromise/
#threatintel
#trusted-relationships
#third-party-risk
#credential-theft
#persistence
#intrusion-detection -
In my opinion, this was only a matter of time and not whether this would happen.
«OpenClaw Malware Targets Crypto Wallets and Bitwarden Credentials:
OpenClaw users are being targeted in a fresh malware campaign that abuses a fake installer to steal credentials from popular crypto wallets and password managers, including MetaMask, Phantom, and Bitwarden.»🦞 https://gbhackers.com/openclaw-malware/
#bitwarden #metamask #phantom #ai #crypto #malware #openclaw #credential #passwords #cryptowallet #fakeinstaller
-
In my opinion, this was only a matter of time and not whether this would happen.
«OpenClaw Malware Targets Crypto Wallets and Bitwarden Credentials:
OpenClaw users are being targeted in a fresh malware campaign that abuses a fake installer to steal credentials from popular crypto wallets and password managers, including MetaMask, Phantom, and Bitwarden.»🦞 https://gbhackers.com/openclaw-malware/
#bitwarden #metamask #phantom #ai #crypto #malware #openclaw #credential #passwords #cryptowallet #fakeinstaller
-
In my opinion, this was only a matter of time and not whether this would happen.
«OpenClaw Malware Targets Crypto Wallets and Bitwarden Credentials:
OpenClaw users are being targeted in a fresh malware campaign that abuses a fake installer to steal credentials from popular crypto wallets and password managers, including MetaMask, Phantom, and Bitwarden.»🦞 https://gbhackers.com/openclaw-malware/
#bitwarden #metamask #phantom #ai #crypto #malware #openclaw #credential #passwords #cryptowallet #fakeinstaller
-
In my opinion, this was only a matter of time and not whether this would happen.
«OpenClaw Malware Targets Crypto Wallets and Bitwarden Credentials:
OpenClaw users are being targeted in a fresh malware campaign that abuses a fake installer to steal credentials from popular crypto wallets and password managers, including MetaMask, Phantom, and Bitwarden.»🦞 https://gbhackers.com/openclaw-malware/
#bitwarden #metamask #phantom #ai #crypto #malware #openclaw #credential #passwords #cryptowallet #fakeinstaller
-
In my opinion, this was only a matter of time and not whether this would happen.
«OpenClaw Malware Targets Crypto Wallets and Bitwarden Credentials:
OpenClaw users are being targeted in a fresh malware campaign that abuses a fake installer to steal credentials from popular crypto wallets and password managers, including MetaMask, Phantom, and Bitwarden.»🦞 https://gbhackers.com/openclaw-malware/
#bitwarden #metamask #phantom #ai #crypto #malware #openclaw #credential #passwords #cryptowallet #fakeinstaller
-
Breaking the code: Multi-stage ‘code of conduct’ phishing campaign leads to AiTMtoken compromise - https://www.redpacketsecurity.com/breaking-the-code-multi-stage-code-of-conduct-phishing-campaign-leads-to-aitmtoken-compromise/
#threatintel
#aiTM-phishing
#credential-theft
#phishing-attack
#adversary-in-the-middle
#cybersecurity-awareness -
Breaking the code: Multi-stage ‘code of conduct’ phishing campaign leads to AiTMtoken compromise - https://www.redpacketsecurity.com/breaking-the-code-multi-stage-code-of-conduct-phishing-campaign-leads-to-aitmtoken-compromise/
#threatintel
#aiTM-phishing
#credential-theft
#phishing-attack
#adversary-in-the-middle
#cybersecurity-awareness -
Breaking the code: Multi-stage ‘code of conduct’ phishing campaign leads to AiTMtoken compromise - https://www.redpacketsecurity.com/breaking-the-code-multi-stage-code-of-conduct-phishing-campaign-leads-to-aitmtoken-compromise/
#threatintel
#aiTM-phishing
#credential-theft
#phishing-attack
#adversary-in-the-middle
#cybersecurity-awareness -
Breaking the code: Multi-stage ‘code of conduct’ phishing campaign leads to AiTMtoken compromise - https://www.redpacketsecurity.com/breaking-the-code-multi-stage-code-of-conduct-phishing-campaign-leads-to-aitmtoken-compromise/
#threatintel
#aiTM-phishing
#credential-theft
#phishing-attack
#adversary-in-the-middle
#cybersecurity-awareness -
Breaking the code: Multi-stage ‘code of conduct’ phishing campaign leads to AiTMtoken compromise - https://www.redpacketsecurity.com/breaking-the-code-multi-stage-code-of-conduct-phishing-campaign-leads-to-aitmtoken-compromise/
#threatintel
#aiTM-phishing
#credential-theft
#phishing-attack
#adversary-in-the-middle
#cybersecurity-awareness -
Containing a domain compromise: How predictive shielding shut down lateralmovement - https://www.redpacketsecurity.com/containing-a-domain-compromise-how-predictive-shielding-shut-down-lateralmovement/
#threatintel
#Predictive Shielding
#Domain Compromise
#Credential-Based Attacks
#Active Directory Security
#Incident Response -
Containing a domain compromise: How predictive shielding shut down lateralmovement - https://www.redpacketsecurity.com/containing-a-domain-compromise-how-predictive-shielding-shut-down-lateralmovement/
#threatintel
#Predictive Shielding
#Domain Compromise
#Credential-Based Attacks
#Active Directory Security
#Incident Response -
Containing a domain compromise: How predictive shielding shut down lateralmovement - https://www.redpacketsecurity.com/containing-a-domain-compromise-how-predictive-shielding-shut-down-lateralmovement/
#threatintel
#Predictive Shielding
#Domain Compromise
#Credential-Based Attacks
#Active Directory Security
#Incident Response -
Containing a domain compromise: How predictive shielding shut down lateralmovement - https://www.redpacketsecurity.com/containing-a-domain-compromise-how-predictive-shielding-shut-down-lateralmovement/
#threatintel
#Predictive Shielding
#Domain Compromise
#Credential-Based Attacks
#Active Directory Security
#Incident Response -
Containing a domain compromise: How predictive shielding shut down lateralmovement - https://www.redpacketsecurity.com/containing-a-domain-compromise-how-predictive-shielding-shut-down-lateralmovement/
#threatintel
#Predictive Shielding
#Domain Compromise
#Credential-Based Attacks
#Active Directory Security
#Incident Response -
Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise - https://www.redpacketsecurity.com/dissecting-sapphire-sleet-s-macos-intrusion-from-lure-to-compromise/
#threatintel
#sapphire-sleet
#macos
#social-engineering
#credential-harvest
#exfiltration -
Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise - https://www.redpacketsecurity.com/dissecting-sapphire-sleet-s-macos-intrusion-from-lure-to-compromise/
#threatintel
#sapphire-sleet
#macos
#social-engineering
#credential-harvest
#exfiltration -
Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise - https://www.redpacketsecurity.com/dissecting-sapphire-sleet-s-macos-intrusion-from-lure-to-compromise/
#threatintel
#sapphire-sleet
#macos
#social-engineering
#credential-harvest
#exfiltration -
Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise - https://www.redpacketsecurity.com/dissecting-sapphire-sleet-s-macos-intrusion-from-lure-to-compromise/
#threatintel
#sapphire-sleet
#macos
#social-engineering
#credential-harvest
#exfiltration -
Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise - https://www.redpacketsecurity.com/dissecting-sapphire-sleet-s-macos-intrusion-from-lure-to-compromise/
#threatintel
#sapphire-sleet
#macos
#social-engineering
#credential-harvest
#exfiltration -
Thousands of consumer #routers hacked by Russia's #military
The Russian military is once again #hacking home and small office routers in widespread operations that send unwitting users to sites that harvest #passwords and #credential tokens for use in #espionage campaigns, researchers said Tuesday.
#russia #security #privacy #gru -
Thousands of consumer #routers hacked by Russia's #military
The Russian military is once again #hacking home and small office routers in widespread operations that send unwitting users to sites that harvest #passwords and #credential tokens for use in #espionage campaigns, researchers said Tuesday.
#russia #security #privacy #gru -
Thousands of consumer #routers hacked by Russia's #military
The Russian military is once again #hacking home and small office routers in widespread operations that send unwitting users to sites that harvest #passwords and #credential tokens for use in #espionage campaigns, researchers said Tuesday.
#russia #security #privacy #gru -
Thousands of consumer #routers hacked by Russia's #military
The Russian military is once again #hacking home and small office routers in widespread operations that send unwitting users to sites that harvest #passwords and #credential tokens for use in #espionage campaigns, researchers said Tuesday.
#russia #security #privacy #gru -
Thousands of consumer #routers hacked by Russia's #military
The Russian military is once again #hacking home and small office routers in widespread operations that send unwitting users to sites that harvest #passwords and #credential tokens for use in #espionage campaigns, researchers said Tuesday.
#russia #security #privacy #gru -
Guidance for detecting, investigating, and defending against the Trivy supplychain compromise - https://www.redpacketsecurity.com/guidance-for-detecting-investigating-and-defending-against-the-trivy-supplychain-compromise/
#threatintel
#trivy
#supply chain attack
#github actions
#ci/cd security
#credential theft -
🚨 Oh look, another day, another #PyPI disaster! 🎉 This time it's 'litellm', because who doesn't love their credentials being "borrowed"? 🤦♂️ Maybe they should've named it litell-uh-oh instead. 🙄
https://github.com/BerriAI/litellm/issues/24512 #Litellm #Security #Disaster #Credential #Theft #OpenSource #Drama #HackerNews #ngated -
Storm-2561 uses SEO poisoning to distribute fake VPN clients for credentialtheft - https://www.redpacketsecurity.com/storm-2561-uses-seo-poisoning-to-distribute-fake-vpn-clients-for-credentialtheft/
#threatintel
#storm-2561
#credential-theft
#seo-poisoning
#fake-vpn-client
#vpn-security -
Infostealers without borders: macOS, Python stealers, and platform abuse - https://www.redpacketsecurity.com/infostealers-without-borders-macos-python-stealers-and-platform-abuse/
#threatintel
#macOS
#Infostealer
#Python
#Cross-platform
#Credential-theft -
🚨🚀 Breaking News: #Microsoft can't tell a #fake domain from a real one, so they've been sending your imaginary emails to Japan! 🎌🤖 Apparently, Outlook's idea of "autodiscover" is to discover how to #leak your credentials like a sieve. 🤦♂️
https://tinyapps.org/blog/microsoft-mishandling-example-com.html #Outlook #Security #Issues #Domains #Credential #Japan #HackerNews #ngated -
Shai-Hulud 2.0: Guidance for detecting, investigating, and defending against thesupply chain attack - https://www.redpacketsecurity.com/shai-hulud-2-0-guidance-for-detecting-investigating-and-defending-against-thesupply-chain-attack/
#threatintel
#supply-chain-security
#npm-security
#CI/CD-security
#credential-management
#defender-for-cloud -
Alireza Heidari presented 'Simple and Secure Credential Handling for Tools' in Galaxy on Day 2 of European Galaxy Days.
@galaxyfreiburg
#credential #EGD2025 #credential_handling #galaxyproject #secure_credential #eosc #fair #open_science
