Exploring GrapheneOS secure allocator: Hardened Malloc #GrapheneOS #HardenedMalloc #MemorySecurity #SecureAllocation #ExploitMitigation https://www.synacktiv.com/en/publications/exploring-grapheneos-secure-allocator-hardened-malloc
Synacktiv
Exploring GrapheneOS secure allocator: Hardened Malloc
How a fake AI recruiter delivers five staged malware disguised as a dream job https://medium.com/deriv-tech/how-a-fake-ai-recruiter-delivers-five-staged-malware-disguised-as-a-dream-job-64cc68fec263
Medium
How a fake AI recruiter delivers five staged malware disguised as a dream job
Overview
Tunneling WireGuard over HTTPS using Wstunnel #WireGuard #Wstunnel #FirewallBypass #VPN #WebSocketTunnel https://kroon.email/site/en/posts/wireguard-wstunnel/
Guido Kroon
Tunneling WireGuard over HTTPS using Wstunnel
Some time ago I documented how I configured WireGuard on my OpenWrt router at home, to connect securely to my home network (and the Internet, really) from wherever I am.
I feel safer connecting to public Wi-Fi this way, also abroad when it allows me to save…
I feel safer connecting to public Wi-Fi this way, also abroad when it allows me to save…
Critical Account Takeover via Unauthenticated API Key Creation in better-auth (CVE-2025-61928) #AccountTakeover #BetterAuth #CVE202561928 #APIKeySecurity #ZeroPath https://zeropath.com/blog/breaking-authentication-unauthenticated-api-key-creation-in-better-auth-cve-2025-61928
Zeropath
Critical Account Takeover via Unauthenticated API Key Creation in better-auth (CVE-2025-61928) - ZeroPath Blog
ZeroPath uncovered an unauthenticated API key creation flaw in better-auth's API keys plugin that enables attackers to mint privileged credentials for arbitrary users; this post details the bypass, exploitation path, and how we found it.
CVE-2025-8078: Remote Code Execution via CLI Command Injection #CVE20258078 #RemoteCodeExecution #CommandInjection #ZYXEL #Exploit https://rainpwn.blog/blog/cve-2025-8078/
Rainpwn
CVE-2025-8078: Remote Code Execution via CLI Command Injection
An undocumented parameter of the "web-auth" command could allow an authenticated attacker to execute commands remotely due to improper input sanitization, potentially resulting in full device compromise.
Stealth BGP Hijacks with uRPF Filtering https://www.usenix.org/system/files/woot25-schulmann.pdf
Casting a Net(ty) for Bugs, and Catching a Big One (CVE-2025-59419) #Netty #CVE202559419 #SMTPInjection #AISecurity #ZeroDay https://depthfirst.com/post/casting-a-net-ty-for-bugs-and-catching-a-big-one-cve-2025-59419
Depthfirst
depthfirst | Casting a Net(ty) for Bugs, and Catching a Big One (CVE-2025-59419)
Our agents discovered the vulnerability, provided a risk assessment, and generated a patch autonomously. I shared the results with the Netty maintainers who assigned CVE-2025-59419 and merged our fix.
Why nested deserialization is STILL harmful – Magento RCE (CVE-2025-54236) https://slcyber.io/research-center/why-nested-deserialization-is-still-harmful-magento-rce-cve-2025-54236/
Searchlight Cyber
Why nested deserialization is harmful: Magento RCE (CVE-2025-54236)
Magento is still one of the most popular e-commerce solutions in use on the internet, estimated to be running on more than 130,000 websites. It is also offered as an enterprise offering by Adobe under the name Adobe Commerce, which receives automatic patching.…
Unlocking free WiFi on British Airways #BAFreeWiFi #SNIBypass #ProxyTunnel #InFlightInternet #NetworkPrivacy https://saxrag.com/tech/reversing/2025/06/01/BAWiFi.html
saxrag
Unlocking free WiFi on British Airways
I was recently flying between HKG & LHR via British Airways. I’d done the same flight back in 2023, and remember relying on the in-flight entertainment for the 14 hour journey. However, this time on my way to London, they had an interesting offer: Free WiFi…
The security paradox of local LLMs #LLMSecurityParadox #PromptInjection #LocalLLMVulnerabilities #CodeGenerationThreats #AISoftwareSupplyChain https://quesma.com/blog/local-llms-security-paradox/
Quesma
The security paradox of local LLMs - Quesma Blog
Local LLMs prioritize privacy over security. Our research reveals a 95% backdoor injection success rate.
CVE-2025-8556 - Cryptographic Issues in Cloudflare’s CIRCL FourQ Implementation #CVE20258556 #CloudflareCIRCL #FourQ #InvalidPointAttack #EllipticCurveCrypto https://www.botanica.software/blog/cryptographic-issues-in-cloudflares-circl-fourq-implementation
www.botanica.software
CVE-2025-8556 - Cryptographic Issues in Cloudflare’s CIRCL FourQ Implementation
2 min read
Pit's Proof Of Concept #Frida #MobileModding #AppDistribution #FridaGadget #AndroidApps https://pit.bearblog.dev/modding-and-distributing-mobile-apps-with-frida/
Pit's Proof Of Concept
Modding And Distributing Mobile Apps with Frida
Walkthrough of how to embed frida scripts in apps to distribute proper mods. Supports frida 17+.
Leveraging Machine Learning to Enhance Acoustic Eavesdropping Attacks (Part 1 of 4) #AcousticEavesdropping #MachineLearning #SideChannelAttack #MobileSecurity #InertialSensors https://cc-sw.com/leveraging-machine-learning-to-enhance-acoustic-eavesdropping-attacks-part-1-of-4/
Privescing a Laptop with BitLocker + PIN #BitLocker #TPM #PINProtection #HardwareHacking #KeyRecovery https://www.errno.fr/Bitlocker_TPM_and_PIN_privesc
LockBit Returns — and It Already Has Victims #LockBit #Ransomware #Resurgence #CyberThreat #LockBit5.0 https://blog.checkpoint.com/research/lockbit-returns-and-it-already-has-victims/
TARmageddon (CVE-2025-62518): RCE Vulnerability Highlights the Challenges of Open Source Abandonware #TARmageddon #CVE202562518 #OpenSourceSecurity #Abandonware #RCEVulnerability https://edera.dev/stories/tarmageddon
Edera
CVE-2025-62518 Shows the Cost of Open Source Abandonware
Edera uncovers TARmageddon (CVE-2025-62518), a Rust async-tar RCE flaw exposing the real dangers of open-source abandonware and supply chain security.
Hacking the World Poker Tour: Inside ClubWPT Gold’s Back Office #ClubWPTHack #DataExposure #BackOfficeCompromise #Vulnerability #2FABypass https://samcurry.net/hacking-clubwpt-gold
samcurry.net
Hacking the World Poker Tour: Inside ClubWPT Gold’s Back Office
In June, 2025, Shubs Shah and I discovered a vulnerability in the online poker website ClubWPT Gold which would have allowed an attacker to fully access the core back office application that is used for all administrative site functionality.
WSO2 #1: 404 to arbitrary file read #WSO2 #XXE #FileRead #CVE20252905 #APIManager https://crnkovic.dev/wso2-404-to-arbitrary-file-read/
Hack-cessibility: When DLL Hijacks Meet Windows Helpers #DLLHijacking #WindowsPersistence #AccessibilityAbuse #LateralMovement #RedTeaming https://trustedsec.com/blog/hack-cessibility-when-dll-hijacks-meet-windows-helpers
TrustedSec
Hack-cessibility: When DLL Hijacks Meet Windows Helpers