Profile avatar
royans.bsky.social
https://flagthis.com/ is a CyberSecurity/Malware news/trend detector. And I mostly post topics which are being widely discussed in the Security industry. Personal info at https://royans.net/
243 posts 76 followers 207 following
Prolific Poster
Posts 50 Comments 0

DragonForce ransomware hits Saudi construction firm, exposing critical infrastructure data. #Cybersecurity #Ransomware #SaudiArabia

submitted 2 minutes ago • 0 comments

OpenSSF launches tiered security framework for open source projects. #OpenSourceSecurity #OpenSSF #Cybersecurity

submitted 17 hours ago • 0 comments

Cellebrite suspends Serbian customer after zero-day exploit unlocked Android phones, allegedly misused on student activists. #Cellebrite #AndroidSecurity #Cybersecurity

submitted 1 day ago • 0 comments

North Korea's Lazarus Group stole $1.4B in crypto from Bybit via Safe{Wallet} exploit. #NorthKorea #CryptoHack #LazarusGroup

submitted 1 day ago • 0 comments

Chinese hackers stole 10% of Belgian security service emails via a Barracuda vulnerability (2021-2023). #Cybersecurity #ChinaHacking #Belgium

submitted 1 day ago • 0 comments

Chinese-linked APT group deploys Squidoor malware targeting Southeast Asia & South America. #APT #Cybersecurity #MaliciousSoftware

submitted 1 day ago • 0 comments

Over 1.6M Android TVs infected by Vo1d botnet, used for cybercrime. #AndroidTV #Botnet #Cybersecurity

submitted 1 day ago • 0 comments

BlackBasta ransomware attack on Ascension Health leaked 1.4TB of data & encrypted 12,000+ servers. #Cybersecurity #Ransomware #DataBreach

submitted 1 day ago • 0 comments

Malicious code found in popular VSCode extensions & a PyPI package; millions affected. #VSCodeSecurity #PyPISecurity #OpenSourceSecurity

submitted 1 day ago • 0 comments

HIBP adds 284M stolen credentials from malware logs, expanding its breach notification database. #HIBP #DataBreach #Cybersecurity

submitted 2 days ago • 0 comments

Thousands of websites hit by malware injecting gambling redirects. #WebsiteSecurity #Cybersecurity #MalwareAttack

submitted 2 days ago • 0 comments

flagthis.com/latest is a new undocumented layout which I've been building over the last few weekends. If you have tried it and have feedback, drop in a note.

submitted 3 days ago • 0 comments

2500+ Truesight.sys driver variants bypass EDRs, deploying HiddenGh0st RAT via Windows driver signing loophole. #cybersecurity #malware #threatintel

submitted 3 days ago • 0 comments

Critical RCE vulnerability (CVE-2025-27364) found in MITRE Caldera; update immediately. #MITRECaldera #RCE #Cybersecurity

submitted 4 days ago • 0 comments

Ghostwriter group uses malware to target Ukraine & Belarus, linked to Russia. #CyberEspionage #Ghostwriter #Ukraine

submitted 4 days ago • 0 comments

Orange Group confirms data breach impacting 380,000+ in Romania due to ransomware attack. #OrangeDataBreach #RansomwareAttack #Cybersecurity

submitted 4 days ago • 0 comments

DISA Global Solutions data breach exposes personal info of 3.3M. #DataBreach #Privacy #Cybersecurity

submitted 4 days ago • 0 comments

GitVenom campaign uses fake GitHub repos to spread malware; exercise caution. #GitVenom #GitHubSecurity #Cybersecurity

submitted 4 days ago • 0 comments

New PayPal phishing scam uses fake address change emails to steal user data. #PayPalScam #Phishing #Cybersecurity

submitted 4 days ago • 0 comments

Google Cloud KMS now offers quantum-safe digital signatures, bolstering data security against future quantum computing threats. #QuantumSecurity #CloudSecurity #PostQuantumCryptography

submitted 5 days ago • 0 comments

Millions exposed: Bug in Cocospy and Spyic spyware apps leaks user data; email addresses now in Have I Been Pwned. #DataBreach #Spyware #Cybersecurity

submitted 6 days ago • 0 comments

North Korean hackers use fake job interviews to steal crypto & data from freelance developers. #NorthKorea #Cybersecurity #Hacking

submitted 7 days ago • 0 comments

Urgent: CISA warns of Ghost (Cring) ransomware attacks targeting critical infrastructure. #Cybersecurity #Ransomware #CISA

submitted 7 days ago • 0 comments

Darcula 3.0 PhaaS now targets any brand globally with easy-to-use phishing kits. #Cybersecurity #Phishing #Infosec

submitted 8 days ago • 0 comments

macOS malware FrigidStealer spreads through fake browser updates; beware of fraudulent update pages. #macOSsecurity #malware #cybersecurity

submitted 8 days ago • 0 comments

Over 1 million credit cards leaked from B1ack's Stash; experts warn of increased cybercrime. #Cybersecurity #DataBreach #CreditCards

submitted 8 days ago • 0 comments

Bybit exchange confirms $1.4B ETH hack in largest crypto heist ever. #CryptoHack #Bybit #SecurityBreach

submitted 8 days ago • 0 comments

Medusa ransomware attacks UK healthcare provider HCRG, demanding $2M ransom for 2.3TB of stolen data. #Cybersecurity #Ransomware #Healthcare

submitted 8 days ago • 0 comments

Salt Typhoon APT uses JumbledPath malware to spy on US telecom networks. #cybersecurity #APT #nationstatehackers

submitted 9 days ago • 0 comments

Trojanized game installers secretly mine cryptocurrency; impacting users globally. #Cybersecurity #Malware #CryptocurrencyMining

submitted 9 days ago • 0 comments

XLoader malware is being deployed via a DLL side-loading technique using the legitimate jarsigner.exe tool. #XLoader #malware #cybersecurity

submitted 9 days ago • 0 comments

NailaoLocker ransomware attacks European healthcare, exploiting VPN vulnerabilities. #Cybersecurity #Ransomware #Healthcare

submitted 9 days ago • 0 comments

Citrix releases urgent security update for NetScaler vulnerability; update immediately. #NetScaler #CitrixSecurity #CVE202412284

submitted 9 days ago • 0 comments

Lee Enterprises confirms ransomware attack impacting newspaper operations nationwide. #Ransomware #Cybersecurity #LeeEnterprises

submitted 10 days ago • 0 comments

Insight Partners confirms January 2025 cyberattack via social engineering, impacting internal systems. #Cybersecurity #DataBreach #VentureCapital

submitted 10 days ago • 0 comments

Juniper Networks routers face critical authentication bypass flaw (CVE-2025-21589), allowing attackers admin access. #Juniper #NetworkSecurity #CVE202521589

submitted 11 days ago • 0 comments

Xerox VersaLink C7025 printer flaws expose Active Directory credentials, enabling credential theft. #XeroxVulnerability #PrintSecurity #Cybersecurity

submitted 11 days ago • 0 comments

X blocks Signal links citing security concerns. #X #Signal #Privacy

submitted 11 days ago • 0 comments

Urgent: OpenSSH vulnerabilities (CVE-2025-26465 & CVE-2025-26466) allow MitM and DoS attacks; update immediately! #OpenSSH #Cybersecurity #Vulnerability

submitted 11 days ago • 0 comments

Ransomware attack timelines plummet to 17 hours, demanding faster incident response. #Cybersecurity #Ransomware #DataExtortion

submitted 12 days ago • 0 comments

DeepSeek AI app downloads temporarily suspended in South Korea pending data protection compliance updates. #DeepSeekAI #SouthKorea #DataPrivacy

submitted 12 days ago • 0 comments

RedCurl/EarthKapre APT targets legal sector with Adobe-based malware. #Cybersecurity #APT #LegalTech

submitted 12 days ago • 0 comments

New Golang backdoor uses Telegram API for malicious C2, evading detection via cloud apps. #GolangBackdoor #TelegramMalware #Cybersecurity

submitted 12 days ago • 0 comments

Italian spyware firm SIO distributes malicious Android apps stealing user data. #Spyware #AndroidSecurity #Cybersecurity

submitted 12 days ago • 0 comments

China-linked hackers used espionage tools in a November ransomware attack targeting an Asian firm. #Cybersecurity #Ransomware #ChinaEspionage

submitted 13 days ago • 0 comments

Critical AWS AMI name confusion vulnerability (whoAMI) allows code execution via malicious AMI uploads. #AWS #CloudSecurity #IAM

submitted 14 days ago • 0 comments

Steam removes PirateFi game after malware discovery. #Steam #Malware #GameSecurity

submitted 14 days ago • 0 comments

Critical SQL injection flaw (CVE-2025-1094) in PostgreSQL's psql tool exploited in attacks. #PostgreSQL #SQLinjection #Cybersecurity

submitted 15 days ago • 0 comments

Urgent: CrowdStrike Falcon Sensor TLS flaw enables man-in-the-middle attacks. #Cybersecurity #CrowdStrike #Vulnerability

submitted 16 days ago • 0 comments

JumpCloud boosts SaaS security with enhanced management platform for improved visibility & control. #SaaSsecurity #Cybersecurity #JumpCloud

submitted 17 days ago • 0 comments