Secure Blink

We’re expanding our team! ?? Looking for a dynamic Sales Executive to join us in Noida. If you’re ready to grow with us, apply today or tag someone who might be a great fit!? #cybersecurity #appsec #Hiring?#JoinOurTeam #NowHiring

?? In this week’s Weekly Threat Digest Newsletter, we have covered notable cyber attacks from around the world ?? Discover how 22K Social Security numbers stolen in Western Alliance Bank’s breach, Attackers bypass traditional defenses by weaponizing legitimate services and pre-generated recovery phrases, and many more. Stay informed and be secure—don’t miss out! #Cybersecurity #AppSec #APISec #Newsletter #Threatspy #SecureBlink

?? 20,000 Projects at Risk! ?? Yes, over 20,000 GitHub projects were severely impacted in a cascading supply chain breach, with Coinbase being the primary target. ?? The attack, which exploited #vulnerabilities in #GitHub Actions, was carefully orchestrated to steal CI/CD secrets and authentication tokens. The malicious code was injected into a commonly used action, reviewdog/action-setup@v1, and then spread to thousands of projects, including Coinbase's critical coinbase/agentkit repository. ?? On 14 March 2025, the attackers successfully obtained a GitHub token with write permissions to Coinbase’s repository, positioning them to wreak havoc. Thankfully, Coinbase acted quickly, preventing any damage to its assets. Key Highlights: - 20,000+ projects impacted - Coinbase as the primary target - Personal Access Token stolen for unauthorized commit - Attack averted before any significant damage occurred This attack underscores a critical vulnerability in open-source software integrations and highlights the need for stronger security practices in CI/CD pipelines. Full disclosure is here: https://lnkd.in/gKUcqHUT #Accesstokens #GitHub #Coinbase #Supplychainattack #CICD #DevOps #Datasecurity #Incidentresponse #Infosec #Threatfeed #SecureBlink

??BREAKING: STEAM GAME INSTALLER JUST STOLE YOUR DATA—DID YOU DOWNLOAD THIS??? YOUR PC COULD BE HACKED RIGHT NOW. Valve just NUKED a game from Steam after users discovered its “demo” was a malware bomb designed to: ?? STEAL PASSWORDS (via cookie hijacking) ?? SPY ON YOUR ACTIVITY (with Node.js scripts) ?? INFECT 1,500+ SYSTEMS (like last month’s PirateFi disaster) The kicker? The malware PRETENDED TO BE WINDOWS DEFENDER (??) and hid in a GitHub repo linked to crypto-scam tools. IF YOU PLAYED “SNIPER: PHANTOM’S RESOLUTION”: 1?? UNINSTALL IT NOW. 2?? SCAN YOUR SYSTEM (MalwareBytes / HitmanPro recommended). 3?? CHANGE ALL PASSWORDS. To know more about this, read our full disclosure: https://lnkd.in/gFHajwNr #Infostealer #Databreach #Malwarealert #Gaming #Steam #Valve #Threatfeed #SecureBlink

??WhatsApp Zero-Click Spyware Attack Exposed?? Just a single PDF file silently hijacking your phone, turning it into a spy device—without you clicking a single link. This isn’t a dystopian movie plot rather its already pulled off involving journalists and activists worldwide. A stealthy spyware called Graphite was built by an Israeli firm with ties to global governments. WhatsApp just neutralized a #cyberespionage campaign exploiting a zero-click, zero-day vulnerability—a flaw so stealthy it required no user interaction to infect devices. 1?? Attackers added targets to WhatsApp groups, sent a malicious PDF, and automatically installed Graphite spyware. Once in, it bypassed Android’s defenses, accessing messages, mics, and cameras. 2?? Journalists. Activists. Civil society. At least 90 Android users across 24+ countries, including Italy, were notified by #WhatsApp. 3?? Paragon Solutions — founded by Israel’s ex-PM and Unit 8200 veterans — sold tools to “democratic governments.” But their clients? DEA. ICE. Australia. Canada. Zero-Click Threats Are Rising: No clicks. No warnings. Just a silent takeover. This is the future of #cyberattacks. Companies like Paragon and #NSOGroup operate in shadows, selling $2M contracts to governments. But at what cost to privacy and democracy? Read the full disclosure here: https://lnkd.in/gwHweP2g #Exploit #Graphite #Meta #Android #ZeroDay #Malware #ZeroClick #Hack #Spyware #Paragon #Thretafeed #SecureBlink

Urgent email from Coinbase? No typos. No shady links. Just a ‘mandatory’ wallet migration with a recovery phrase THEY gave you. This is phishing 2.0 — exploiting human psychology to steal crypto. Here’s how it works, and how to break the spell. Attackers hijack authority to trigger compliance: Fake Legal Threats: “Court-mandated migration by 14 March!” Why it works: Fear of losing assets + obedience to authority. Infrastructure Spoofing: Sent via Akamai’s SendGrid, passing SPF/DKIM checks. Why it works: Legitimate tech = lowered skepticism. Verify, don’t trust. Coinbase never emails recovery phrases. Domain autopsy: [email protected] ≠ coinbase.com. They don’t steal your seed phrase — they give you theirs. Pre-generated recovery phrase = their backdoor. Importing it hands them full control. Users assume compliance = safety. Details: https://lnkd.in/g78Rtfvf #Coinbase #Cryptocurrency #Hack #Emailsecurity #Phishing #Threatfeed #SecureBlink

?? In this week’s Weekly Threat Digest Newsletter, we have covered notable data breaches from around the world ?? Discover the Telecom Giant’s Fourth Major Cyber Incident Since 2020, Dark Storm hacktivists declare war on X with DDoS attacks, and many more. Stay informed and be secure—don’t miss out! #Cybersecurity #AppSec #APISec #Newsletter #Threatspy #SecureBlink

North Korean Hackers Infiltrate Google Play with Spyware—Your Data Could Be Next So Think Before You Click!!! State-backed hackers linked to Pyongyang uploaded malicious “File Manager” apps to Google Play, embedding #spyware (KoSpy) that steals: SMS/call logs ?? Location data ??? Keystrokes ?? (passwords included!) Photos, audio recordings, and screenshots ???? Why this should alarm you: ?? Google Play is compromised---Even trusted app stores aren’t safe. ?? Targeted surveillance---Victims likely include activists, execs, or govt officials. ?? Stolen data fuels regime agendas---Funds nukes? Suppresses dissent? Yes. KoSpy’s stealth tactics ? Masqueraded as harmless apps (cached pages looked legit). ? Used Google’s own Firestore to evade detection. ? Linked to APT37/APT43—North Korea’s notorious cyber armies. Google removed the apps, but the damage is done. If you downloaded sketchy “utilities” recently: 1?? Delete them NOW. 2?? Scan your device with trusted security tools. 3?? Avoid third-party stores like #APKPure (another #KoSpy host). Read more here: https://lnkd.in/gcv6Q-gu #GooglePlay #KoSpy #NorthKorea #Android #Datasecurity #Threatfeed #SecureBlink

Your Next Download Could Bankrupt Your Crypto Wallet Researchers uncovered MassJacker, a stealthy #cryptojacking malware hidden in pirated software. It’s already hijacked 750,000+ crypto wallets and funneled over $300,000 into a single #Solana address ?? How It Works: 1?? You download "free" software from sites like pesktop[.]com. 2?? Malware silently replaces your crypto wallet address with hackers’ addresses. 3?? Every payment you send goes straight to cybercriminals. Details: https://lnkd.in/duNNbhEm #Clipper #Malware #Cryptojacking #Cryptotheft #ThreatIntelligence #Threatfeed #SecureBlink

??X PLATFORM CRASHES AFTER 1.2M+ DDoS ATTACKS — DARK STORM HACKTIVISTS DECLARE WAR. IS YOUR BUSINESS NEXT? ?? Pro-Palestinian #hacktivist group DARK STORM just unleashed a MASSIVE 1.2 MILLION REQUESTS/MINUTE cyberattack on X (Twitter), triggering global outages and forcing Elon Musk to deploy #Cloudflare’S NUCLEAR OPTION. WHY THIS SHOULD TERRIFY YOU? State-Sponsored? Musk hints a “COUNTRY” might be backing the attack. 100M+ Users Impacted during peak hours — imagine the revenue loss. Cloudflare’s CAPTCHA Chaos now alienating legit users. Dark Storm’s botnet blueprint is PUBLIC. Update your DDoS defenses TODAY — or become tomorrow’s headline. Full disclosure is available here: https://lnkd.in/dFC3iHeu #DDoS #DarkStorm #ElonMusk #CyberWarfare #x.com #SocialMedia #Threatfeed #SecureBlink P.S. Anonymous Sudan’s 2024 victims didn’t see it coming either. Will you? ??