βΌοΈ Dutch authorities just seized one Windscribe VPN server without a warrant, claiming they'll return it after they "fully analyze it."
They say their real concern "is the unredacted Epstein files we had on there..."
βοΈLeakBase has been down for about two days now. The last two times the site went offline, it remained down for a week or two. Thereβs no information on any new domains or updates, and no recent news regarding the site. It is, however, hosted by the notorious Njalla.
CVE-2026-24423: SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability:
SmarterTools SmarterMail contains a missing authentication for critical function vulnerability in the ConnectToHub API method. This could allow the attacker to point the SmarterMail instance to a malicious HTTP server which serves the malicious OS command and could lead to command execution.
CVE-2025-11953: React Native Community CLI OS Command Injection Vulnerability:
React Native Community CLI contains an OS command injection vulnerability which could allow unauthenticated network attackers to send POST requests to the Metro Development Server and run arbitrary executables via a vulnerable endpoint exposed by the server. On Windows, attackers can also execute arbitrary shell commands with fully controlled arguments.
βοΈπ«π· SSL/TLS certificates allegedly belonging to France's Ministry of the Interior and National French Police are being offered for sale.
The leak includes 42 files in certificate formats (.crl, .der, .cer, .pem, .crt, .xml), with the seller indicating additional certificates are available for purchase.
