Rotimi Akinyele

Any black friday deals this year? 😁👀 @shodanhq

Mon, 07 Oct 2024 17:27:00 EDT A cybersecurity incident has been disclosed by ADT Inc. $ADT (CIK: 0001703056) View SEC Filing: sec.gov/Archives/edgar…

Excited to announce the 🚀 launch of the 🔥 LOLESXi project. It provides valuable insights into adversarial techniques targeting VMWARE ESXi. lolesxi-project.github.io/LOLESXi/ #threatresearch #lolesxi #dfir

Search engines for OSINT - Telegram Source leak.sx scylla.sh intelx.io 4iq.com leaked.site hashes.org leakcheck.io vigilante.pw leakcheck.net weleakinfo.to leakcorp.com leakpeek.com rslookup.com snusbase.com ghostproject.fr leakedsource.ru leak-lookup.com nuclearleaks.com private-base.info haveibeensold.app breachchecker.com dehashed.com scatteredsecrets.com haveibeenpwned.com haveibeenpwned.com services.normshield.com joe.black/leakengine.html

Cybersecurity GPTs

attacks on genai copilots/agents are more than just prompt injection and prompt injection is more than just ignore prev instructions we're excited to share the genai attacks matrix! breaking down ai attacks into manageable building blocks --> ttps dot ai

@evilsocket @threadreaderapp unroll

* Unauthenticated RCE vs all GNU/Linux systems (plus others) disclosed 3 weeks ago. * Full disclosure happening in less than 2 weeks (as agreed with devs). * Still no CVE assigned (there should be at least 3, possibly 4, ideally 6). * Still no working fix. * Canonical, RedHat and others have confirmed the severity, a 9.9, check screenshot. * Devs are still arguing about whether or not some of the issues have a security impact. I've spent the last 3 weeks of my sabbatical working full time on this research, reporting, coordination and so on with the sole purpose of helping and pretty much only got patronized because the devs just can't accept that their code is crap - responsible disclosure: no more.

Today, TrustedSec is releasing #Specula (our previously internal framework) into the world, which will transform the Outlook email client into a beaconing C2 agent. @oddvarmoe and @freefirex2 walk through how to use Specula in our latest blog! hubs.la/Q02JfFFN0

😱 Anyone can access deleted & private repo data on GitHub. Forever. 🔓This is due to a new type of vulnerability - CFOR 👎Deleted Fork Data: Still accessible. 👎Deleted Repo Data: Commits remain. 👎Private Repo Data: Can become public. 👉trufflesecurity.com/blog/anyone-ca…

📖 New FREE Secure Guardrails Course How to change your AppSec program from reactive to proactive using secure guardrails (making the secure way the easy way) Lots of hands-on examples 45 lessons, 3.5 hours of video content By @semgrep's @0xDC0DE academy.semgrep.dev/courses/secure…

@c7five @threadreaderapp unroll

In the essence of transparency, we are disclosing this bug to the industry today. We are being accused of being unreasonable and unprofessional for requesting that “white-hat hackers” return what they stole from us. Unbelievable.

Around July, 2023 an individual operating under the alias "Blue" and "Trout", successfully phished someone and stole $213,000 from the victim. They subsequently paid a group of men to dance and thank the victim for the money.

@Andrew___Morris Nolstalgic. Phplens, phploader, C99, r57, wso, br34k 😁 First steps to getting listed on Zone H 😁

what feeling immediately hits you when you see this

A month ago this #crypto wallet was sitting at $13k But today the wallet is worth $620,502 So how did he do this and what projects did he buy into? All this plus his wallet address in this 🧵👇

Lol, best solution is to wake up from the nightmare 😅

Look for these file extensions in your pentests and appsec assessments. (thread)

Interesting usecase

@Voulnet Congrats bro.

سُعدت اليوم بلقاء ولي العهد صاحب السمو الشيخ مشعل الأحمد الصباح حفظه الله ممثلاً عن سمو الأمير، وتكريمه لي بقصر بيان العامر لفوزي بجائزة الشيخ سالم العلي الصباح للمعلوماتية في مجال الأمن السيبراني، و أفرحني دعمه و اهتمامه بما شاركت به من إنجازات اسأل الله التوفيق فيها.

Give more time than you usually do to catch a trade, you would generate more profits, usually the best rewards are hiding behind the patience which we never show.