MSSqlPwner: An advanced and versatile pentesting tool designed to seamlessly interact and pwn MSSQL servers.

Link: https://github.com/ScorpionesLabs/MSSqlPwner

Medical device company that was hacked between November 20 and November 21, 2024, notifies impacted employees 8 months later

Source: https://www.claimdepot.com/data-breach/atricure

FBI Atlanta, USA Seizes Major Video Game Piracy Websites

The FBI's Atlanta Field Office announced today the seizure of several online criminal marketplaces providing pirated versions of popular video games.

In addition to the seizure, the FBI has dismantled the infrastructure of these websites.

For more than four years, the websites contained pirated copies of highly anticipated video games days or weeks before their official release date.

Between February 28, 2025, and May 28, 2025, records indicate a total of 3.2 million downloads occurred on these sites from the most used download service. These actions resulting in an estimated loss of $170 million.

As part of the actions announced today, the FBI has obtained authorization to seize the domain of multiple sites, to include nsw2u.com, nswdl.com, game-2u.com, bigngame.com, ps4pkg.com, ps4pkg.net, and mgnetu.com. These domains hosted and facilitated access to the pirated video games. Anyone visiting these sites will now view a seizure banner that notifies them the domain has been seized by federal authorities.
The FBI would like to thank the Dutch FIOD for their assistance in this investigation.

Source: https://www.fbi.gov/contact-us/field-offices/atlanta/news/fbi-atlanta-seizes-major-video-game-piracy-websites

🚨CVE-2025-25257: Pre-Auth SQL Injection to RCE - Fortinet FortiWeb Fabric Connector

PoC: https://github.com/watchtowrlabs/watchTowr-vs-FortiWeb-CVE-2025-25257

Write-up: https://labs.watchtowr.com/pre-auth-sql-injection-to-rce-fortinet-fortiweb-fabric-connector-cve-2025-25257/

⚠️Skout which has been offline for months now, is back online.

Skout is a service that allows you to verify the authenticity of a vendor account. It does this by collecting data from other markets.

Onion: http://skoutchtiq6i473shdg2ycebalkqherg2ham2suvcoto6wtns5fpjvid[.onion/

Dread: http://dreadytofatroptsdj6io7l3xptbet6onoyno2yv7jicoxknyazubrad[.onion/post/e7c3624e04580bb27711

RAWorld 2 and Sinobi Ransom Notes have been added

https://darkwebinformer.com/ransom-notes/

Security lists for SOC/CERT/CTI

https://github.com/mthcht/awesome-lists

Awesome-LLM: A curated list of Large Language Model

Link: https://github.com/Hannibal046/Awesome-LLM