The Shadowserver Foundation @Shadowserver
Our mission is to make the Internet more secure by bringing to light vulnerabilities, malicious activity and emerging threats. Join our Alliance! shadowserver.org/partner Global Joined March 2009-
Tweets2K
-
Followers22K
-
Following0
-
Likes325
As with SocGholish Compromised WordPress Sites Special Report run last week (2026-06-18), if you receive a StealC alert from us or your service provider/national CSIRT, please follow remediation advice and change passwords immediately!
StealC Historical Bot Special Report technical details and sample data available here (dated 2026-06-24): shadowserver.org/what-we-do/net…
More Operation Endgame #cybercrime disruption success this week, with a new one-off StealC Historical Bot Special Report run overnight (2026-06-24), continuing our support for international LE partners: shadowserver.org/news/stealc-hi…
Raw IP data shared in our Vulnerable HTTP reporting shadowserver.org/what-we-do/net… tagged 'cve-2026-48907' filtered by network/constituency Dashboard Tree Map view: dashboard.shadowserver.org/statistics/com… Patch info: joomlacontenteditor.net/news/jce-secur…
Last week we added scanning for Joomla JCE editor extension CVE-2026-48907 vulnerable instances. This RCE vulnerability is exploited in the wild & on @CISACyber KEV. 4840 vulnerable instances seen 2026-06-22 down from 5146 on 2026-06-19. Top affected: US dashboard.shadowserver.org/statistics/com…
IP data tagged 'fortibleed' in shadowserver.org/what-we-do/net… with timestamp set to 2026-06-18 SOCRadar FortiBleed checker: socradar.io/free-tools/for… Background: socradar.io/blog/fortiblee…
We shared a one-off "FortiBleed" dataset of compromised Fortinet devices in our Compromised Website Report shadowserver.org/what-we-do/net… thanks to collaboration with @socradar! Stats: Dashboard World map view: dashboard.shadowserver.org/statistics/com… Dashboard Tree map view: dashboard.shadowserver.org/statistics/com…
WordPress site users/admins (plus their friends and colleagues): Please read the defensive guidance provided, check your sites and remediate any signs of compromise immediately.
1,441,695 credentials covering period 2023-05-17 to 2026-05-25, from 1,134,542 domains hosted on 271,176 unique IP addresses, across 7,550 different ASNs in 187 countries/territories globally. Report technical details available here (dated 2026-06-18): shadowserver.org/what-we-do/net…
New one-off SocGholish Compromised #WordPress Sites Special Report run today, in continued support of international LE partners in Operation Endgame #cybercrime disruption: shadowserver.org/news/socgholis… Great work once again everyone involved 👏
Happy to once again support LE partners in disruption of the AudiA6 service, allegedly responsible for $389 million USD in cryptocurrency money laundering: justice.gov/usao-edpa/pr/t… secretservice.gov/newsroom/relea… europol.europa.eu/media-press/ne…
Heads up! New report going out daily: the Initial Access Broker Report shadowserver.org/what-we-do/net… on compromised hosts likely under control of IABs Data thanks to collaboration with anonymous researchers & @spycloudco - thank you! Check your free daily reports from us!
Map has a typo in the date, should of course be 2026-06-10
Compromised IP data shared in our Compromised Website reporting tagged as 'ivanti-sentry,injected-code,backdoor'. See: shadowserver.org/what-we-do/net… Advisory/patch: hub.ivanti.com/s/article/Secu…
We are observing a large amount of Ivanti Sentry CVE-2026-10520 exploitation attempts based on the public PoC today. We see 19 vulnerable instances in our own scans, with at least 2 backdoored (thanks to @NCA_KSA for the tip!). However, all remaining likely compromised too.
Direct links (full report) - English: shadowserver.org/wp-content/upl… French: shadowserver.org/wp-content/upl… Portuguese: shadowserver.org/wp-content/upl… Direct links (fact sheet) - English: shadowserver.org/wp-content/upl… French: shadowserver.org/wp-content/upl… Portuguese: shadowserver.org/wp-content/upl…
Shadowserver is excited to share its cybersecurity insights and actionable recommendations in a report aimed at helping ECOWAS stakeholders make West Africa more secure! Read the report & accompanying fact sheets in English, French & Portuguese at shadowserver.org/news/shadowser…
See also: bitsight.com/blog/critical-…
IP data in shadowserver.org/what-we-do/net… (tagged 'atg') Dashboard World Map view: dashboard.shadowserver.org/statistics/com… These should not be publicly exposed - read why at cisa.gov/resources-tool… from @CISACyber
We added scanning of Automatic Tank Gauge (ATG) systems to our Accessible ICS reporting with 1061 IPs seen on 2026-06-05 (on port 10001/tcp). This is after weeding out vast majority which appear to be honeypots (including ports 8001/9001). Vast majority exposed are in the US.
Florian Roth ⚡️ @cyb3rops
221K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
mRr3b00t @UK_Daniel_Card
123K Followers 8K Following Department of Cyber WAR. Member of the Counter Spider Collective. Wielder of AI to defend in Cyber Space. Ralph Vibe Specialist. VibeOps Operator!
Justin Elze @HackingLZ
71K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Will @BushidoToken
38K Followers 3K Following Senior Threat Intel Advisor @TeamCymru Co-founder @CuratedIntel Co-author @SANSForensics FOR589 Co-founder @BSidesBournemth @darknetdiaries #126: REvil
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
Virus Bulletin @virusbtn
61K Followers 1K Following Security information portal, testing and certification body. Organisers of the annual Virus Bulletin conference. @[email protected]
CyberKnow @Cyberknow20
37K Followers 3K Following Situational Awareness | Threat Intelligence | cybertracker | Hacktivism | Meme Farmer Digital Owl of the Cyber Realm Posts and Opinions are my own
Clandestine @akaclandestine
61K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting | Humint |
ςεяβεяμs - м�... @c3rb3ru5d3d53c
26K Followers 245 Following 💕 Malware Reverse Engineer & Malware Geneticist 💕 #Binlex Developer https://t.co/EKYUS9Itvd 👩💻 She/Her
Gi7w0rm @Gi7w0rm
19K Followers 819 Following Threat Intelligence Analyst | Projects: https://t.co/azRpNg9NJQ & https://t.co/SyvUfXpbmI | If I post false intel, contact me! Support me: https://t.co/5WgDqr0K8p 🇪🇺🇩🇪🇺🇦🌈
Microsoft Threat Inte... @MsftSecIntel
196K Followers 996 Following We are Microsoft's global network of security experts. Follow for security research and threat intelligence.
Matt Zorich @reprise_99
15K Followers 2K Following @Microsoft Security | https://t.co/HWozKuixTi | Tweets are my own | 🇦🇺
Alexandre Dulaunoy @a... @adulau
8K Followers 7K Following Enjoy when humans are using machines in unexpected ways. I break stuff and I do stuff. @[email protected]
Nick Carr @ItsReallyNick
38K Followers 3K Following Tech Director / Threat Intelligence at Microsoft. Previously, Director of Incident Response & Intel Research at Mandiant. Former Chief Technical Analyst at CISA
Dr. Anton Chuvakin @anton_chuvakin
42K Followers 9K Following Information security - #SIEM, #DFIR, #EDR formerly at Gartner! Now @GoogleCloud Office of the #CISO; host of @CloudSecPodcast https://t.co/VpKtfz8nXG
an0n @an0n_r0
14K Followers 732 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
Koen Van Impe ☕ @cudeso
4K Followers 2K Following Freelancer. CSIRT. Incident Response. Threat Intelligence. Security, IDS, Linux, OpenBSD, Honeypots, Jazz, Literature, Modern Art. https://t.co/D9bkiv10Sy
charlie budd @charlieboynrg
101 Followers 287 Following
punt4n0 @punt4n0
109 Followers 5K Following
Graciela Martinez @Grace_GMMG
329 Followers 683 Following Apoyando una Internet abierta, estable, segura y al servicio del desarrollo socio-económico. Líder del @lacnic_csirt
Shah Mijanur ♠ @mijanurrax
480 Followers 5K Following Security Maven @123rf @pixlr @DesignsdotAI @BlieveAI ~Vi veri universum vivus vici
2.0.2.0. @RandomDataFall
0 Followers 333 Following
Burak 🦅 @brkgcmn1
123 Followers 930 Following
Nocturnal_animal @0xcc72
0 Followers 230 Following
youichi shino @s037585
10 Followers 34 Following
Snake Dogg @DoggSnake
1 Followers 151 Following
ChrisUeland @ChrisUeland
2K Followers 3K Following @HuntIO- Previously: @RecordedFuture , @SecurityTrails, @MaxCDN
Mostafa Gouda @mostafagouda01
3 Followers 86 Following Experienced IT Ops Manager & Digital Transformation Consultant, adept at optimizing processes and driving impactful technological shifts.
Tal Nir @TalNir6
0 Followers 1K Following
Aasia Bibi @AasiaBibi598805
0 Followers 5 Following
pet @paki_zee10227
2 Followers 179 Following
Ertuğrul @ertudo
189 Followers 2K Following 🚀 #malware #cybersecurity #entrepreneur #threatintel @METUAerospace mastodon:@kararthur @ https://t.co/8VVfuwmVrj
Kartal @Kartal14531923
2 Followers 114 Following
Jorge Auristondo Vilc... @AuristondoJorge
232 Followers 1K Following Psychoanalyst, Psychotherapist, Toxicologist, Classical and Ericksonian Hypnotherapist. Esp. USACH: Natura non habet credo.
nu03 @nu037
4 Followers 99 Following
Rahhal @Raqib_al_kawn
0 Followers 88 Following
Petr Adam @AdamPetr
19 Followers 453 Following
ραηα¢єα1984 @Panacea1984
76 Followers 950 Following Enjoy Life, Enjoy Yourself. #AlwaysWearAWhiteHat Tweets are not advice. #DYOR *See something good, give a compliment. See something wrong, offer your help.*
Roh3xis0 @Roh3xis01
4 Followers 3K Following
ישי @IshayT6
2 Followers 781 Following
AdeebDev @adeebdev
13 Followers 300 Following
AmmarOsama @Ammar_Osama101
6 Followers 140 Following
socdefense @socdefense88999
1 Followers 56 Following
Michael @4giornale
0 Followers 377 Following
helina @helina1945
0 Followers 2K Following
Raphael Tani @raphael_tani
4 Followers 77 Following
Diogenes Al Tani @al_tani45408
3 Followers 424 Following
Mikey_op @op_mikey882
1 Followers 95 Following
Ingus Kliečis @inguskliecis
53 Followers 1K Following
L4mineDLuth @luth_d68578
0 Followers 283 Following![🌐
[toda la internet + todo el tiempo + para todos]
[libre + segura + abierta + neutra]
[conéctate + colabora + comparte]](https://pbs.twimg.com/profile_images/1939766620269735938/RNFDVLfm.jpg)
Usuarios Digitales @usuariosdigital
10K Followers 7K Following 🌐 [toda la internet + todo el tiempo + para todos] [libre + segura + abierta + neutra] [conéctate + colabora + comparte]
cherezproxy @cherezproxy
5 Followers 425 FollowingYou might like
