🔥 More than a dozen quantum computing companies are entering Stage A of the Quantum Benchmarking Initiative! (QBI) To learn more please visit: darpa.mil/news/2025/comp… #Quantum

Fake Passport Generated by ChatGPT Bypasses Security securityexpress.info/fake-passport-…

🚨Alert🚨 CVE-2025-32433 (CVSS 10): Critical SSH Flaw Allows Unauthenticated RCE in Erlang/OTP.It affects versions prior to OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20 📊490K+ Services are found on the hunter.how yearly. 🔗Hunter Link:hunter.how/list?searchVal… 👇Query

🚨The LockBit onion site has been breached. Their database has been leaked, which includes Bitcoin wallet addresses, private keys, chat logs, and information on their affiliates. The hacker left a note “Don’t do crime, crime is bad xoxo from Prague”

🤓 I am super proud to speak at DEF CON main stage for the second year in a row! This year I am going to speak about cryptomoney laundering through the lens of the Bybit hack. I will break down how it works, how to track it, and demo an AI agent that follows the money.

Justice Department Announces Arrest of Prolific Chinese State-Sponsored Contract Hacker justice.gov/opa/pr/justice…

We have reproduced "ToolShell", the unauthenticated exploit chain for CVE-2025-49706 + CVE-2025-49704 used by Khoa Dinh to pop SharePoint at #Pwn2Own Berlin 2025, it's really just one request! Kudos to Markus Wulftange

If you haven't already, we strongly encourage organizations utilizing AI to review our recent guidance and adopt the best practices and mitigation strategies to secure their AI-enabled systems and protect their sensitive data. media.defense.gov/2025/May/22/20…

Initial access broker TGR-CRI-0045 is attributed with medium confidence to Gold Melody. One technique in a recent campaign is to employ ASP.NET View State deserialization for in-memory payload execution. We deconstruct the tooling and more: bit.ly/44COaSY

We are observing active global exploitation of critical Microsoft SharePoint vulns CVE-2025-49704 and CVE-2025-49706. Orgs worldwide are being targeted. Patch immediately. The exploits are real, in-the-wild and pose a serious threat. IoCs we've seen: bit.ly/4kQZS2e

Microsoft is aware of active attacks targeting on-premises SharePoint Server customers, exploiting a variant of CVE-2025-49706. This vulnerability has been assigned CVE-2025-53770. We have outlined mitigations and detections in our blog. Our team is working urgently to release

🚨 Active Exploitation Alert — Microsoft SharePoint Vulnerabilities 🚨 Unit 42 is observing active global exploitation of two critical Microsoft SharePoint vulnerabilities: CVE-2025-49704 and CVE-2025-49706. According to Shodan, there are 811 instances that are internet facing.

🚨A SharePoint zero-day (CVE-2025-53770) is under active exploitation, with attackers stealing MachineKey secrets to forge __VIEWSTATE and maintain RCE. No patch exists. If you expose SharePoint to the Internet, assume breach. Reach out to via our website if you need support.

Sorry to disturb your weekend. There is a SharePoint 0day actively abused. Do not only focus on the rule of MSRC for hunting, other blogs also share different files and folders in use! Additional info: MSRC: msrc.microsoft.com/blog/2025/07/c… Blog by Eye Security: research.eye.security/sharepoint-und…

Alert: SharePoint CVE-2025-53770 incidents! In collaboration with Eye Security & watchTowr we are notifying compromised parties. Read: research.eye.security/sharepoint-und… ~9300 Sharepoint IPs seen exposed daily (just population, no vulnerability assessment): dashboard.shadowserver.org/statistics/iot…

Looks like there's about 8K Sharepoint servers in the world in Shodan

💥BREAKING: $ETH surpasses a $450,000,000,000 market cap. 🚀

Whats this... real DPRK ITW names and related emails/profiles?! 🇰🇵🍪🇰🇵🍪🇰🇵🍪 Enjoyyy and enrich with your data in the thread below ~> ❤️❤️🔥🔥 (will post raw for easier searching in 🧵🧵) Narcass3 aptwhatnow Kawaii-Jong-UwUn Matt 🍌rchism #NorthKorea #DPRK

Something interesting happened. The United Kingdom Ministry of Justice (UK MoJ) e-mailed UNC6040 (ShinyHunters and/or UNC3944), the individual(s) believed to be responsible for the compromise(s) of Salesforce, United Kingdom Legal Aid Agency, PowerSchool, Oracle Cloud, and

BREAKING: ARKHAM UNCOVERS $3.5B HEIST - THE LARGEST EVER LuBian was a Chinese mining pool with facilities in China & Iran. Based on analysis of on-chain data, it appears that 127,426 BTC was stolen from LuBian in December 2020, worth $3.5 billion at the time and now worth