The Exploit Post

Sign in Subscribe

Latest

Public GitLab Repositories "Leak" Over 17,000 Secrets

Public GitLab Repositories "Leak" Over 17,000 Secrets

Cybersecurity specialist Luke Marshall examined 5.6 million public GitLab Cloud repositories and discovered over 17,000 forgotten secrets (API keys, passwords, and tokens) across more than 2,800 unique domains. The researcher noted that the majority of these secrets are still active. Research Methodology Marshall used the open-source tool

Organizer of Evil Twin Attacks on Board Aircraft Sentenced to Seven Years in Prison

Organizer of Evil Twin Attacks on Board Aircraft Sentenced to Seven Years in Prison

An Australian court sentenced a 44-year-old man who spent several months stealing the personal data of airline passengers and airport visitors. The criminal received seven years and four months imprisonment for creating fake Wi-Fi networks and subsequently using the stolen information. Discovery and Arrest This case began in April 2024

Tomiris Attacks Diplomatic Services and Government Institutions in Russia and CIS

Tomiris Attacks Diplomatic Services and Government Institutions in Russia and CIS

Researchers from Kaspersky Lab discovered recent activity by the APT group Tomiris, which has been attacking the government sector in Russia and CIS countries since early 2025. The group's primary victims are foreign ministries and other diplomatic structures. Over the past year, more than 1,000 users have

Police Shut Down Cryptomixer Service, Seize $29 Million in Cryptocurrency

Police Shut Down Cryptomixer Service, Seize $29 Million in Cryptocurrency

Law enforcement agencies in Switzerland and Germany have dismantled Cryptomixer, a major cryptocurrency mixing service that laundered approximately $1.5 billion in Bitcoin since 2016. The takedown, codenamed "Operation Olympia," took place in Zurich between November 24-28. Authorities seized three servers containing over 12 TB of data, shut

SmartTube Hacked and Distributing Malicious Updates

SmartTube Hacked and Distributing Malicious Updates

A popular open-source YouTube client for TV platforms has been compromised, with attackers embedding malware into official updates through stolen signing keys. SmartTube, a free YouTube client for Android TV and Fire TV devices, attracts millions of users with its ad-blocking features and smooth performance on low-powered hardware. These same

Bloody Wolf Group Attacks Kyrgyzstan and Uzbekistan Using NetSupport RAT

Bloody Wolf Group Attacks Kyrgyzstan and Uzbekistan Using NetSupport RAT

Specialists at Group-IB documented new attacks by the hacker group Bloody Wolf, which has been targeting Kyrgyzstan since June 2025 and expanded its activity to Uzbekistan in October. The financial sector, government agencies, and IT companies are at risk. Per the researchers, the attackers impersonate the Ministry of Justice of

GrapheneOS Developers Announce Shutdown of Infrastructure in France Due to Government Pressure

GrapheneOS Developers Announce Shutdown of Infrastructure in France Due to Government Pressure

GrapheneOS Developers Announce Shutdown of Infrastructure in France Due to Government Pressure The GrapheneOS team reports that it is shutting down its infrastructure in France. The developers are accelerating their migration away from hosting provider OVH and accuse French authorities of creating a hostile climate for projects related to privacy