Arrived today! Looking forward to reading it. #malware #infosec

Web application hacking tools

🚨 Worm-like supply chain attack is unfolding. I warned this was coming and I've been building. Multiple projects: system to incentivize disclosure of risk, monitoring to detect even subtle business logic shifts, client-side protection. Looking for partners + early adopters.

Lotte Card said a cyberattack exposed the personal data of 2.97 million users. About 280,000 customers face direct risks of unauthorized card use. The Korea Herald 코리아헤럴드 #cybersecurity #cyberattack #databreach #korea

DAWG. They social engineered the United States judicial system (???), reset someone's password by pretending to be helpdesk, and LOOKED THEMSELVES UP

I spent the last few weeks digging into hundreds of enterprise-built Vibe Coded applications. When I found a security flaw, it was almost always one of the same 4 simple mistakes. Here they are 🧵

We can exploit the #securityvulnerability of Windows Error Reporting to put EDRs and #antimalware into a coma-like state. By using the EDR-Freeze #redteam tool: Github: TwoSevenOneT/EDR-Freeze

Dumping LSASS is old school. If an admin is connected on a server you are local admin on, just create a scheduled task asking for a certificate on his behalf, get the cert, get its privs. All automatized in the schtask_as module for NetExec 🥳🥳🥳

👀 New Microsoft threat report shows how attackers are using AI for evasion and obfuscation in a phishing campaign! One part is very interesting, the team spotted 5 AI fingerprints in the code. But instead of hiding the attack (the initial goal), these fingerprints actually

One of the biggest challenges with DORA is that the regulation itself doesn’t give you all the details. That’s where Regulatory Technical Standards (RTSs) come in. These delegated and implementing regulations act as appendices to DORA, and they spell out how requirements should

SetupHijack is a security research tool that exploits race conditions and insecure file handling in Windows installer and update processes. github.com/hackerhouse-op…

Super cool potential ASLR leak via dictionary hashing by Jann Horn - [email protected]! googleprojectzero.blogspot.com/2025/09/pointe…

This basically means: by the time you install the patch, there’s an increasing chance the system is already compromised linkedin.com/posts/brentmui…

It gets better ;) I totally forgot about this little persistence method, lol

🚨 Critical zero-day tagged as CVE-2025-61882 (CVSS 9.8) affecting Oracle E-Business Suite I've created a vulnerability detection script here: github.com/rxerium/CVE-20… This vulnerability is remotely exploitable without authentication. Patches are available as per Oracle's

Relationen mellan 90:e och 10:e percentilen visar hur stor lönespridningen är i ett land, det vill säga hur många låga löner det går på en hög lön. Sverige är det land med lägst lönespridning i OECD. 👉Läs mer här: ekonomifakta.se/sakomraden/arb…

LÄSTIPSET 25 sidor folkbildning om styrkor och risker med inlärning/repetition kopplat till desinformation samt hur AI kan hjälpa eller stjälpa. Väl värt en halvtimme av ditt liv! mpf.se/publikationer/…

SonicWall: Firewall configs stolen for all cloud backup customers - Bill Toulas bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…

If you're wondering how I get those colorized ping outputs — I use grc (Generic Colourizer). It works with so many tools straight out of the box (df, lsblk, free, ps and more). You can quickly install it with your package manager, for example: $ sudo dnf install grc Add these

Finally, my DEF CON talk is now available on YouTube. In this presentation, I explore how DPRK threat actors have evolved, expanding, collaborating, and restructuring their internal operations. The session dives deep into how these organizational shifts, combined with technical