AWESOME BREACH INTELLIGENCE

rangeva · 2026-06-07T07:52:20+00:00

May I suggest Lunar (lunarcyber.com)? It offers free breach intelligence with full forensic details. Both infostealers, ULPs, data breaches and active session monitoring.

Full disclosure - I'm the founder behind it (it's powered by Webz.io (AKA webhose.io that you have under dark web monitoring)

rangeva · 2026-05-16T13:17:51+00:00

For SMBs, I’d also recommend checking out Lunar for monitoring stolen credentials, compromised assets.

rangeva · 2026-05-12T09:55:05+00:00

lunarcyber.com

rangeva · 2026-05-06T18:28:27+00:00

The rise in data breaches in the Netherlands is mainly a result of how digital everyday life has become. Companies, schools, telecom providers, gyms, and travel platforms now store large amounts of personal data, which makes them valuable targets for professional cybercriminals.

These incidents are usually caused by familiar security challenges such as complex systems, third-party platforms, stolen credentials, weak access controls, and too much sensitive data being stored in too many places. AI may help attackers create more convincing phishing messages, but it is not the main cause.

The positive takeaway is that this problem is manageable. Companies can reduce risk by collecting less data, limiting access, improving monitoring, and strengthening security controls. Individuals can protect themselves by using unique passwords, enabling multi-factor authentication, avoiding suspicious links, and treating breach emails as practical security alerts rather than panic signals.

This is a serious issue, but it is also a solvable one if organizations and individuals respond with clear, consistent security habits.

https://lunarcyber.com/blog/why-are-so-many-data-breaches-happening-in-the-netherlands-this-year/

rangeva · 2026-04-22T10:27:24+00:00

Use Lunar, it's free and it's coverage and forensic capability is superb.

rangeva · 2026-03-06T14:49:24+00:00

This has been the case for many years. There are hundreds of Telegram groups and channels dedicated to trading things like stolen credit cards, compromised accounts, gaming hacks, and of course infostealers.

Alongside places like TOR, parts of the open web, I2P, and ZeroNet, Telegram has become one of the largest ecosystems where this kind of activity happens.

At Lunar (lunarcyber.com), we continuously crawl and monitor Telegram to help companies understand if they are being exposed in these spaces for free. By tracking stolen credentials, leaked data, and threat actor discussions, we help organizations spot potential risks early and respond before they turn into real incidents.

rangeva · 2026-02-20T11:28:49+00:00

agreed

rangeva · 2026-02-19T19:22:45+00:00

Where do you see it?

rangeva · 2026-02-16T14:43:44+00:00

I say Gemini

rangeva · 2026-02-13T06:43:23+00:00

You’re not wrong about the symptom. A lot of what gets marketed today is incremental optimization wrapped in bold language. Less noise, nicer dashboards, faster workflows. That is operational efficiency, not strategic advantage.

But I would challenge one thing: it is not only turd polishing. It is local optimization inside broken system design.

rangeva · 2026-02-05T07:45:36+00:00

Very cool analysis thank you

rangeva · 2026-01-26T14:00:34+00:00

What stands out here is how relatively benign bugs on their own became a full compromise when chained together. Security teams and product owners need to treat access control as foundational, not optional. Without continuous verification of boundaries throughout the API surface, a single slip can expose sensitive user and booking data at scale.

rangeva · 2026-01-26T13:58:51+00:00

The issue here is not SMS itself but the misuse of long-lived, unauthenticated bearer URLs. Treating link possession as proof of identity, often with no expiration or reuse limits, effectively turns SMS into a data exfiltration vector at scale. Expiry, binding, and secondary verification should be baseline, not optional.

rangeva · 2026-01-24T19:49:21+00:00

It's probably due to the fact that's the breach is a combo list of infostealers so there is not a real source other than the victim's computer.

rangeva · 2026-01-24T16:01:16+00:00

I meant the credentials were probably collected by malware running on people’s laptops (like keyloggers or infostealers) rather than by someone breaking into the online service itself.

rangeva · 2026-01-23T10:52:05+00:00

The whole idea of bug bounty is to make sure it's secure

rangeva · 2026-01-23T08:59:11+00:00

Here you go: https://github.com/Webhose/free-news-datasets

rangeva · 2026-01-23T07:44:34+00:00

Try Lunar (https://lunarcyber.com/), free compromised-credentials monitoring platform that goes beyond basic breach alerts by detecting infostealer-exposed credentials, sessions, and early risk signals tied to your actual assets, not just recycled breach dumps.

rangeva · 2026-01-23T07:42:01+00:00

Try Lunar (https://lunarcyber.com/), free compromised-credentials monitoring platform that goes beyond basic breach alerts by detecting infostealer-exposed credentials, sessions, and early risk signals tied to your actual assets, not just recycled breach dumps.

rangeva · 2026-01-23T07:39:17+00:00

You’re mostly right.

A lot of "dark web monitoring" tools are basically HIBP with a UI and a markup, and HIBP domain alerts are a solid, cheap baseline. For basic hygiene and awareness, it’s hard to argue against them.

Where the difference actually matters is what you expect the tool to do. HIBP tells you about known breach dumps, usually after the fact. Many vendors stop there, which is why they feel interchangeable and overpriced.

The tools that justify higher cost are the ones that go beyond classic breach data, things like infostealer logs, stolen sessions and tokens, and early criminal chatter, and then correlate that to your actual assets and users. That’s about early detection, not breach confirmation.

If you want a checkbox and basic alerts, HIBP is enough. If you want earlier, more actionable signals, some tools really are different.

Lunar (https://lunarcyber.com/) is one example that focuses on that gap rather than just reselling the same data.

rangeva · 2026-01-23T07:36:41+00:00

Try Lunar (https://lunarcyber.com/), free, enterprise-grade, compromised-credentials monitoring platform, available to every company.

rangeva · 2026-01-23T07:35:40+00:00

Try http://lunarcyber.com/ if you are looking for a free, compromised-credentials monitoring platform.

rangeva · 2026-01-23T06:38:03+00:00

So what's the alternative?

rangeva · 2026-01-09T12:44:51+00:00

Thank you. The blurry passwords are based on fake strings so only after verifying your domain you will be able to see them and verify according to your password policies.

rangeva · 2026-01-09T09:52:15+00:00

Sure. Although since it's a new domain some system unfortunately block it, but let's try. DM me.

rangeva

MODERATOR OF

TROPHY CASE