Jan Pagon

I wrote a short post on AI and offensive security. I looked at how AI is starting to impact pentesting, red teaming, and offensive tooling. What’s real today and what might be coming next. 👉 goneinsec.com/blog/ai-offens… #AI #Cybersecurity #OffensiveSecurity #Infosec

@VanDerBuxdeLux Roblox

"Jan zakur, če ne se bojo volki spawnal!" In druge neumnosti k jih slišm ko tamau igra igrce in je umes na telefonu s sestrično. Najbl smešn je pa to, da vem kva to pomen 🥹🫠

First part of #39c3 talks worth (re)watching - see the thread 🧵 1/10

@DarkWebInformer Can you please dm me, thanks

I'm working on a paste/secrets monitor. I'm currently look at the later half of January 2026.

There is critical vulnerability in React Server Components disclosed as CVE-2025-55182 that impacts React 19 and frameworks that use it. A fix has been published in React versions 19.0.1, 19.1.2, and 19.2.1. We recommend upgrading immediately. react.dev/blog/2025/12/0…

Microsoft is adding Sysmon directly into Windows. The Sysinternals utility will make it easier for security teams to detect and respond to threats theverge.com/news/822023/mi…

Hey #infosec community - #BSidesLjubljana is back on track, planning for the 13th of March 2026! Save the date, share the news, participate! CFP is open - cfp.bsidesljubljana.si #CallForPresentations #CFP #CyberSecurity #SecurityBSides @SecurityBSides

DM me for .... new Lumma config extractor 🤭

Opozarjamo na širjenje zlonamerne kode v imenu FURS🚩 Sporočilo nagovaja k zagonu zlonamerne priponke pod pretvezo ogleda davčnega dokumenta. Priponka ZIP arhiva nosi škodljivo VBS datoteko za zagon prenašalnika Guloader, ki naloži orodje za oddaljen dostop Remcos RAT

Cherry popped: ntk.si/sl/schedule/363. #ntk30

🚨 CRITICAL STEALER ALERT - Last 12 Hours 4 active stealer families detected: Lumma: Mimicking RuStore (rustore[.]iosif-brodskiy[.]su) Stealc: German C2s (89[.]191[.]234[.]128) ACR: Finnish infrastructure Rhadamanthys: US-based (port 11453) 8 C2 servers actively exfiltrating credentials, crypto wallets & 2FA tokens. Peak activity: 06:00-08:00 UTC targeting banking/corporate data.

Recommandations from the “inventor” of Kerberoasting. Also check out FAST / kerberos armoring. Article from @SteveSyfuhs : syfuhs.net/kerberos-fast-… And if you are using g/dMSA (managed service accounts) it will automatically set and rotate a long password.

⚠️ A single click on a fake site can hijack your password manager. Researchers found 11 popular extensions (1Password, LastPass, iCloud & more) vulnerable—putting logins, 2FA codes, and credit cards at risk. 6 vendors still haven’t patched. Protect your PASSWORDS ↓ thehackernews.com/2025/08/dom-ba…

🛡️ AI-Powered SQL Injection Just Got Real - 𝗦𝗤𝗟𝗠𝗮𝗽 𝗔𝗜 𝗔𝘀𝘀𝗶𝘀𝘁𝗮𝗻𝘁 An SQL Injection testing assistant powered by AI. Came across a powerful tool blending LLMs with offensive security. 🔗 github.com/atiilla/sqlmap… #CyberSecurity

🚨 You won’t believe how much I made off this Microsoft bounty… Full story and POC here 👉 powershellforhackers.com/blog/#/post/Ps… This bug exposed: 📧 Email addresses of package owners 🌐 Out-of-band callbacks for data exfil 💥 IP, personal names and addresses, internal system info

Fact #Fortinet

@NahamSec Do it

500 responses under this post and I’ll release the first day of #NahamCon2025 🤣

BT13 (Slovenia, Italy, CO National Guard) took 3rd place at #LockedShields2025 in Tallinn—NATO CCDCOE’s top cyber defense exercise. Honored to be part of this incredible team for the 4th year in a row! #Cybersecurity #CCDCOE #BlueTeam

STARTEX #LockedShields2025 has officially begun — the world’s most complex live-fire cyber defence exercise. At its core: 8,000+ virtual systems under attack, defended by 17 multinational teams. But it’s not just technical. Teams also face legal dilemmas, AI-driven disinformation, high-stakes decision-making and much more. This is where nations train for tomorrow’s crises.