On 18 June 2026, the latest phase of Operation Endgame targeted the SocGholish malware operation, a prolific malware distribution network used to compromise systems and facilitate further cybercrime. Coordinated by international law enforcement agencies with support from Europol and Eurojust, the operation remediated almost 15,000 compromised websites and disrupted more than 100 servers and domains used to distribute malware. Authorities initially provided HIBP with 154k impacted email addresses and more than half a million previously unseen passwords recovered during the operation. The following week, a further 4M email addresses and 9M passwords relating to the StealC malware operation targeted by Operation Endgame were provided to HIBP, bringing the total to almost 4.2M unique email addresses. – Read more
Latest article
Indian Govt Bans Apps Being Misused to Stop E-Rickshaws Remotely
The Indian government has directed Google and Apple to take down three mobile applications, BAT-BMS, Lossigy, and Epoch-i-ion, after they were allegedly misused to...
Microsoft 365 users fall victim to one-in-a-million password spray attack
Microsoft users have been hit by a massive, automated password spray attack. Among those targeted by the attack were clients...
Apple’s ‘Hide My Email’ Privacy Flaw Exposes Real Email Addresses
Researchers say Apple’s Hide My Email flaw may expose real addresses, despite two fixes. Here’s what users should know about the privacy risk.
The post...
Catan and Mouse
Welcome to this week’s edition of the Threat Source newsletter. “I do not know everything; still many things I understand.” ― Madeleine L'Engle, A Wrinkle...




