When CS:GO clients connected to our server, they got more than a game. We found 3 RCE vulnerabilities to give clients an unexpected 'welcome'. Ready for a deep-dive? 🎮🔧🎆 neodyme.io/blog/csgo_from… #InfoSec #CSGO #Exploit

Are you also tired from teams stealing flags or organizers stealing 0days from organizers in CTFs? Then you should play CCCamp CTF 2023, organized by ALLES!! The original, without monitoring! We still haven't implemented any :) More info coming soon!

🇩🇪 | Today, the BSI hosted Germany's #ECSC team. These talented youngsters proved their skills during CSCG and will represent Germany in ENISA's hacking competition next month 🇪🇺. Thanks BSI for having us! We had a great time!

1st place of the #ECSC2023: Team Germany 🎉 unexpected!! CYBER!!👏

Introducing Riverguard 🏞️💂 A new security tool for Solana program deployers... 🧵 riverguard.io

The Cyber Security Rumble next year will be episch 🔥 : hacking-meisterschaft.de

The cyber mimic defense starts soon thanks for the invitation. Good luck to all teams.

Confirmed! Team Neodyme (Neodyme) used a stack-based buffer overflow to exploit the HP Color LaserJet Pro MFP 3301fdw printer. The earn $20,000 and 2 Master of Pwn points. #Pwn2Own #P2OIreland

gg, this should fit nicely into our new office 🖨️ We'll be looking to complete the set tomorrow by attacking Lexmark CX331adwe at 3pm in the printers category and QNAP QHora-322 and Canon imageCLASS MF656Cdw at 5pm in the SOHO category. See you there!

Our final SOHO Smashup of Day 2 ends with a partial collision. Neodyme (Neodyme) used 4 bugs, including a stack-based buffer overflow, in their successful demonstration, but 1 bug had previously been used in the contest. They earn $21,875 and 8.75 Master of Pwn points. #Pwn2Own

Since we had used a different setup without any administrator account, our official attempt during #Pwn2Own failed. However, Trend Zero Day Initiative provided us with a second chance to present our Lexmark exploit and it worked 🖨️🎉

ND people are @ #38c3 in Hamburg, Germany. Be sure to check out our two talks about LPEs in AV/EDR Products (Saturday, 4 PM YELL) and a not yet mitigated Bitlocker Flaw! (Saturday, 7:15 PM HUFF)

Following our #38c3 talk about exploiting security software for privilege escalation, we're excited to kick off a new blog series! 🎊 Check out our first blog post on our journey to 💥 exploit five reputable security products to gain privileges via COM hijacking:

The Cyber Security Challenge Germany 2025 has started! 🎉 The competition runs from March 1 - 18:00 CET to May 1 - 18:00 CEST. We're excited to announce that we are inviting the top 6 DACH players in the EARTH category to the Deutsche Hacking Meisterschaft! Participate now at: play.cscg.live

Would you like to participate in the German Hacking Championship next year? 💻🎉Then, your next chance to qualify is this weekend! Have fun at #enowars, an attack-defense CTF hosted by ENOFLAG.