VS Code zero-day enables one-click theft of GitHub OAuth tokens via malicious extensions and github.dev webview abuse. 🔐
The flaw can expose broad repo access through token reuse, with Microsoft saying mitigations are in place while a public exploit is already released. 🧩

🔗 https://www.bleepingcomputer.com/news/security/vs-code-zero-day-lets-hackers-steal-github-tokens-in-one-click/

#TechNews #Cybersecurity #VisualStudio #Coding #VSCode #GitHub #Microsoft #ZeroDay #OAuth #Infosec #Hacking #Malware #DevTools #Security #Exploit #DataTheft #ThreatIntel #Tokens

Oracle Discloses Zero-Day Flaw in PeopleSoft Exploited in Data Theft Attacks

A critical zero-day flaw in Oracle PeopleSoft, known as CVE-2026-35273, has been exploited by hackers to steal sensitive data from over 100 organizations, with a staggering 300 instances affected. Oracle has issued emergency mitigations and is working on a patch to address this highly vulnerable issue.

https://osintsights.com/oracle-discloses-zero-day-flaw-in-peoplesoft-exploited-in-data-theft-attacks?utm_source=mastodon&utm_medium=social

#ZeroDay #Cve202635273 #Peoplesoft #Shinyhunters #DataTheft

Ransomware Attacks Shift to Data Theft Tactics

Ransomware attacks have taken a sinister turn, with a growing number of hackers ditching decryption keys and instead using stolen data to extort their victims. In fact, a recent report found that a whopping 87% of ransomware claims now involve data theft, with encryption becoming a thing of the past.

https://osintsights.com/ransomware-attacks-shift-to-data-theft-tactics?utm_source=mastodon&utm_medium=social

#RansomwareAttacks #DataTheft #Extortion #EmergingThreats #CyberInsurance

ShinyHunters Targets Oracle PeopleSoft Servers in Widespread Data Theft Attacks

ShinyHunters, a notorious extortion group, has launched a massive data theft campaign targeting Oracle PeopleSoft servers, compromising over 300 instances across 100+ organizations, with a significant impact on the education sector. The attackers have brazenly claimed responsibility, boasting of their exploits in a…

https://osintsights.com/shinyhunters-targets-oracle-peoplesoft-servers-in-widespread-data-theft-attacks?utm_source=mastodon&utm_medium=social

#Shinyhunters #OraclePeoplesoft #DataTheft #Extortion #EducationSector

Seeking Counsel: Ongoing Targeted Campaign Against US Law Firms

From January through May 2026, a financially motivated data theft extortion campaign executed by threat cluster UNC3753 targeted dozens of organizations across professional, legal, and financial services in the United States. The threat actors leverage voice phishing and social engineering techniques, posing as IT support to convince targets to host screen-sharing sessions and download remote monitoring and management utilities. Once inside environments, they conduct searches to locate and exfiltrate highly sensitive data including proprietary legal agreements, personally identifiable information, and financial records for subsequent extortion demands. The entire attack sequence often occurs within a single business day, with recent incidents showing data theft initiated in under an hour. Notably, threat actors have also accessed victims' systems in person, with individuals posing as IT technicians entering corporate offices to attempt direct exfiltration using USB storage media.

Pulse ID: 6a231076a2659c774fa84285
Pulse Link: https://otx.alienvault.com/pulse/6a231076a2659c774fa84285
Pulse Author: AlienVault
Created: 2026-06-05 18:07:50

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #DataTheft #Extortion #InfoSec #OTX #Office #OpenThreatExchange #Phishing #RAT #SocialEngineering #USB #UnitedStates #bot #AlienVault

RE: https://social.data.coop/@cryptohagen/116709476177049117

Is your smart TV or Phone used as a tool for AI companies to steal other people's data?

Better check your apps.

#TV #smartphone #AI #AIscrapping #DataTheft #AITraining #SmartTV #AntiAI

Mandiant Exposes UNC3753's US Law Firm Data Heist Tactics

Beware of UNC3753, a notorious group that's been stealing sensitive data from US law firms and other professional services, using clever vishing tactics and lightning-fast intrusions to extort their victims. In some cases, they can go from initial contact to data theft in under an hour.

https://osintsights.com/mandiant-exposes-unc3753s-us-law-firm-data-heist-tactics?utm_source=mastodon&utm_medium=social

#DataTheft #Extortion #Vishing #SocialEngineering #Unc3753

DATE: June 4, 2026 at 05:17PM
SOURCE: HEALTHCARE INFO SECURITY

Direct article link at end of text block below.

#ShinyHunters Leaks 234GB @DentaQuest Data Trove: Gang Claims 2.6M People Affected in #Cybercrime Group's Latest #DataTheft Attack https://t.co/qnlaBAnVPB

Here are any URLs found in the article text:

https://t.co/qnlaBAnVPB

Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"

-------------------------------------------------

Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org

Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.

-------------------------------------------------

#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering

TA4922: The Suspected Chinese Crime Group is Going Global

TA4922 is a highly sophisticated Chinese-speaking threat actor demonstrating rapid operational tempo and continually evolving malware capabilities. Initially targeting East Asia, particularly Japan, the group has expanded globally to Europe and Africa. The actor deploys multiple malware families including Atlas RAT, RomulusLoader, SilentRunLoader, and ValleyRAT (Winos4.0), alongside legitimate remote management tools like AnyDesk and SyncFuture. Campaigns use localized lures themed around HR, payroll, tax, and invoicing, targeting hundreds to thousands of recipients per campaign. TA4922 conducts credential phishing, fraud operations including credit card theft, and attempts to shift communications to out-of-band channels like LINE, WhatsApp, and Microsoft Teams. The group leverages legitimate cloud hosting services and trusted software for delivery and persistence, combining advanced tradecraft with financially motivated objectives such as data theft, fraud, access resale, and persistent remote access.

Pulse ID: 6a20244bdece9b50eee824aa
Pulse Link: https://otx.alienvault.com/pulse/6a20244bdece9b50eee824aa
Pulse Author: AlienVault
Created: 2026-06-03 12:55:39

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Africa #AnyDesk #Asia #Chinese #Cloud #CreditCard #CyberSecurity #DataTheft #Europe #InfoSec #Japan #Malware #Microsoft #MicrosoftTeams #OTX #OpenThreatExchange #Phishing #RAT #Rust #WhatsApp #bot #AlienVault