Chum1ng0 - Security Research 

@chum1ng0@infosec.exchange
107 Followers
113 Following
605 Posts

#Chile-, Independent Researcher covering #hacktivism, #ransomware, #cybersecurity, #leaks, and data breaches in Latin America. #LATAM

You can subscribe to my newsletter dedicated to #cybersecurity, data breaches, misconfigurations, and #hacktivism in Latin America, created & edited by @chum1ng0

Newsletter: https://newschu.substack.com

#misconfigurations #leak #cybersecurity #dataleak #databreach #privacy

Newsletterhttp://newschu.substack.com
correochum1ng0@tutanota.com
X(ex-Twitter)https://twitter.com/chum1ng0
Can you buy me a coffee?https://buymeacoffee.com/chum1ng0
Mediumhttps://medium.com/@newschu.substack.com/
##Bloghttps://www.security-chu.com
Convo.casa/infosec.space/infosec.exchange upgrades complete. That took longer than normal due to a lot more changes that I had to orchestrate. Fedia.io is still down while it replicates 1TB of data to another server.

⚠️ If you see a post or DM saying "your account is currently suspended for verification purposes", do NOT click on the link. It is a scam.

Fediverse servers do not ask people to verify their identity. There is an optional self-verification system, but that's just for those who want to use it. No one is ever asked to do it.

If you are in ANY doubt about ANY official-looking message, contact your own server's admin directly using their public email address on your server's website's "About" page.

In August 2020, @SchizoDuckie and I published what was to become the first of a series of articles or posts called "No Need to Hack When It's Leaking."

In today's installment, I bring you "No Need to Hack When It's Leaking: Brandt Kettwick Defense Edition." It chronicles efforts by @JayeLTee, @masek, and I to alert a Minnesota law firm to lock down their exposed files, some of which were quite sensitive.

Read the post and see how even the state's Bureau of Criminal Apprehension had trouble getting this law firm to respond appropriately.

https://databreaches.net/2025/07/04/no-need-to-hack-when-its-leaking-brandt-kettwick-defense-edition/

Great thanks to the Minnesota Bureau of Criminal Apprehension for their help on this one, and to @TonyYarusso and @bkoehn for their efforts.

#dataleak #misconfiguration #incidentresponse #incidentmanagement #responsibledisclosure #securityalert #infosec

Here is my note on Hunters International with 307 victims and 14 times in Latin America.

https://www.security-chu.com/2025/07/cierra-operaciones-Hunters-International-ransomware.html

Source: ransomware.live

#ransomware #Cybersecurity #LATAM #cybercrime

El grupo cibercriminal de ransomware Hunters International cierra sus "operaciones" y en 14 oportunidades latinoamérica fue víctima de sus ataques.

Ciberseguridad-Noticias- Latinoamérica: Ahora son conocidos con el nombre de World Leaks en la DarkWeb

#Paraguay: Initial Access Brokers Abusing Paraguayan Gov Site to Distribute RustDesk

domain: https://jmcov.gov.py

https://otx.alienvault.com/pulse/6863e93392aed6819962ec92

#Cybersecurity #threatintel

Cybernews made a post about a "record-breaking data breach", one they created themselves in their head.

They seem to keep updating their post with more information, and it's now a mix of false claims and contradictions.

I called @Scary and we went digging through our logs to show you just how much effort they put into researching for that article and how much of it is overblown.

https://jltee.substack.com/p/fact-checking-claims-by-cybernews

#cybersecurity #infosec #infostealer #cybernews #data #databreach #news

Fact-Checking Claims By Cybernews: The 16 Billion Record Data Breach That Wasn't

From dumps with no login credentials at all, to direct connections to txtbase leaks from Telegram and old breaches, Cybernews tried to pass this as new and unseen, but data says otherwise.

The Hub of Stupi.. *misconfigs
El grupo cibercriminal de ransomware Hunters International cierra sus "operaciones" y en 14 oportunidades latinoamérica fue víctima de sus ataques.

Ciberseguridad-Noticias- Latinoamérica: Ahora son conocidos con el nombre de World Leaks en la DarkWeb

Update: The group leaks stolen FONPER data.

The total amount of stolen data is unknown, but the files include items labeled as payrolls, account statements, notifications, emails, and backups made via OneDrive.

Interestingly, the latter file is dated June 17, 2025.

https://www.security-chu.com/2025/06/ciberataque-al-FONPER-RD.html

#government #databreach #infosec #Cybersecurity

El grupo cibercriminal de ransomware Hunters International cierra sus "operaciones" y en 14 oportunidades latinoamérica fue víctima de sus ataques.

Ciberseguridad-Noticias- Latinoamérica: Ahora son conocidos con el nombre de World Leaks en la DarkWeb

Update: The group leaks stolen FONPER data.

The total amount of stolen data is unknown, but the files include items labeled as payrolls, account statements, notifications, emails, and backups made via OneDrive.

Interestingly, the latter file is dated June 17, 2025.

https://www.security-chu.com/2025/06/ciberataque-al-FONPER-RD.html

#government #databreach #infosec #Cybersecurity

El grupo cibercriminal de ransomware Hunters International cierra sus "operaciones" y en 14 oportunidades latinoamérica fue víctima de sus ataques.

Ciberseguridad-Noticias- Latinoamérica: Ahora son conocidos con el nombre de World Leaks en la DarkWeb

El grupo cibercriminal de ransomware Hunters International cierra sus "operaciones" y en 14 oportunidades latinoamérica fue víctima de sus ataques.

Ciberseguridad-Noticias- Latinoamérica: Ahora son conocidos con el nombre de World Leaks en la DarkWeb