CVE-2024-47561: Apache Avro arbitrary class instantiation -- expertmiami.blogspot.com/2024/10/cve-20…

Your average SSL implementation🔓

Blog post about a bunch of bugs we reported over the last couple of years -- databricks.com/blog/open-sour…

Woah. Canada orders TikTok Canada to shut down business operations in the country. Decision based on intel from security agencies and govt partners - citing major national security concerns. 🧵

NFS has not received much attention of the offensive security community in nearly a decade. Today, we are happy to share our research on the topic: hvs-consulting.de/en/nfs-securit…. I'll give you a short overview in this thread 🧵 (1/5) #redteam #pentest

Introducing InternetCTF! 🤯 Earn up to $10,000 for finding RCE vulnerabilities in open-source software AND creating Tsunami plugin patches. Make the internet safer and get rewarded! 🤑 For details on the program, see our latest blog post: bughunters.google.com/blog/675213644…

The detailed version of our #WorstFit attack is available now! 🔥 Check it out! 👉 blog.orange.tw/posts/2025-01-… cc: splitline 👁️🐈‍⬛

welp, it looks like an OEM leaked the patch for "AMD Microcode Signature Verification Vulnerability" 🔥 The patch is not in linux-firmware, so this is the only patch available😡

52 mph peak gust at Seattle-Tacoma airport earlier this morning only 1 mph short of the strongest peak gust recorded in February at Seattle-Tacoma airport. A 53 mph peak gust was recorded February 7, 2008. #wawx

Bye Skype, we've had a lot of fun over the years! -- cnn.com/2025/02/28/tec…

I got back into bug hunting recently for the first time in a looooooong time. Bug 1 from week 1 was a pre-auth remote UAF in the Linux kernel's SMB implementation github.com/torvalds/linux…

The slides for my OffensiveCon talk "Finding and Exploiting 20-year-old bugs in Web Browsers" docs.google.com/presentation/d…

Qualcomm June 2025 Security Bulletin docs.qualcomm.com/product/public… "There are indications from Google TAG that CVE-2025-21479, CVE-2025-21480, CVE-2025-27038 may be under limited, targeted exploitation"

qwerty and I exploited a VSock 1-day in Google kernelCTF back in *February*, securing $71,337 🥳 (CVE-2025-21756, exp237/exp249) And I’ve just published the write-up: github.com/google/securit… A kernel developer reviewing a patch for a separate VSock bug I submitted

How Syrian officers in final days of war were duped into 1) disclosing info to fake website about rank/location and corps/division/brigade and 2) installing phone spyware that recorded keystrokes, stole files/photos/call log and spied thru camera/mic newlinesmag.com/reportage/how-…

🚗🔌 We reverse engineered the Tesla Wall Connector and uncovered a previously undocumented attack surface via the charging cable. From protocol analysis to code execution, a Pwn2Own Automotive 2025 exploit write-up. synacktiv.com/en/publication…

[ZDI-25-839|CVE-2025-53783] Microsoft Teams Real Time Media Manager Integer Underflow Remote Code Execution Vulnerability (CVSS 9.8) zerodayinitiative.com/advisories/ZDI…

📢 CUDA de Grâce: Owning AI Cloud Infrastructure with GPU exploits by Valentina Palmiotti (chompie) & Samuel Lovejoy (dinosaurlover38)

CVE-2025-21043 Out-of-bounds Write in libimagecodec.quram.so. This one has been exploited in the wild, patch diff show it in QuramDngOpcodeList::parse (another DNG parser! ) probably they use techniques described in P0 blog about Samsung mms exploit gist.github.com/qriousec/6a802…

CVE-2025-23282 is going to debut tomorrow at Hexacon in our talk "CUDA de Grâce" w/ chompie, but you can try CVE-2025-23332 now! Tweetable Python PoC: ``` import fcntl fcntl.ioctl(open('/dev/nvidiactl'),218,0) ```