R@ffutZen

@evilsocket @N3mes1s Fuck, Simo, you’re a fucking genius... works.

"Posso chiedervi un applauso per uno degli artisti e poeti che abbiamo avuto in questo nostro magnifico Paese. Noi facciamo sempre 'Il cielo in una stanza' e questa sera ha un significato maggiore. Tanti anni fa, ero proprio ragazza, ho cantato con lui, mi ha scritto una canzone, ho avuto anche modo di conoscere la persona oltre all'artista ed era veramente un fico, era uno molto sincero, molto schietto, molto diretto, e sono molto grata di averlo incontrato. Ringrazio voi per questa dimostrazione di affetto che vuol dire anche che in qualche modo si resta sempre legati a qualcosa più grande di noi. Io ci voglio credere e credo che la musica ci dimostri quanto si possa essere uniti". Così Giorgia, che ieri sera, durante la seconda data al Forum di Milano, ha interpretato "Il cielo in una stanza" di Gino Paoli e dal palco ha detto qualche parola per ricordare il grande artista scomparso ieri, 24 marzo, all'età di 91 anni. Video Ansa @giorgia #news #musica #ginopaoli #radiodeejay

Già me lo vedo @Pinperepette che smanetta a riguaddo

🧠 Stop asking AI for “the whole tool.” Learn a structured way to build real red team tooling with AI - step by step, no hallucinations. 📅 Apr 16 | 10AM–12PM ET 🔗 go.sans.org/PuSy2Y #RedTeam #AI #SEC565

One of the most underrated findings of all time. 🏆

Ready to level up your skills at BSides Bratislava 2026? We’re giving you the chance to WIN a lock picking set and dive into the world of physical security like a pro. one lucky attendee will walk away with this awesome prize! Don’t miss out — grab your ticket now

The good people from @AlteredSecurity are celebrating on April 2026 "Month of Azure Red Teaming 2026" which is their initiative to bring awareness and discussion around Azure Red Teaming. ​ I'm not gonna miss it 🔥 You can register here: alteredsecurity.com/azure-red-team…

My Mac Mini M4 was boring, so I knew I had to do something about it...

❤️ @Hetzner_Online It costs me 40 euros a month and runs for years

ConnectWise patches new flaw allowing ScreenConnect hijacking bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…

🚨 A new ransomware operation, #TheGentlemen, has emerged following an affiliate split revealing how #threatactors evolve from partners to independent operators while retaining advanced tooling, infrastructure, and access pipelines. Our latest analysis explores how this group is operationalizing large-scale attacks by combining exploited network devices, #credentialharvesting, and advanced defense evasion techniques. Key highlights: 🔹 Maintains an inventory of approximately 14,700 compromised FortiGate devices exploited via CVE-2024-55591, offered to affiliates for initial access. 🔹 Separate from exploited devices, the operators maintain over 900 validated brute-forced FortiGate VPN credentials ready for attack. 🔹 Employs Bring-Your-Own-Vulnerable-Driver (BYOVD) techniques to terminate EDR/AV processes at kernel level. 🔹 Approximately 94 organizations have already been attacked by this threat group. 🔹 Active reconnaissance and exploit development targeting SonicWall VPN, Cisco ASA appliances, and Oracle E-Business Suite (EBS), attempting to replicate the Cl0p Oracle exploitation campaigns observed in 2025. 🔹 Ongoing reverse-engineering of #Babuk, #Qilin, LockBit 5.0, and Medusa ransomware samples to extract and integrate superior encryption routines, obfuscation techniques, and #EDR bypass mechanisms into The Gentlemen codebase. The case highlights how modern #ransomware groups are evolving into efficient, highly automated operations built around scalable access and modular tooling. Read the full technical analysis: link.group-ib.com/41defXc

💡 Threat Hunting in Splunk with Hunt's C2 Intelligence hunt.io/glossary/splun… Threat hunting in Splunk works best when logs are enriched with reliable intelligence, and using our Splunk Addon brings live C2 infrastructure and enriched IOC feeds directly into Splunk dashboards. Analysts can validate activity against curated intelligence, pivot on indicators, and run structured hunts without leaving their Splunk environment. With Splunk’s correlation engine and our high-fidelity feeds, teams can detect active attacker infrastructure faster and reduce noise in investigations. #ThreatHunting #ThreatIntelligence #CyberSecurity

Just migrated our entire production stack from @DigitalOcean to @Hetzner_Online in just 24 hours — $1,432 → $233/month. Zero downtime. 30 MySQL DBs (248GB), 34 Nginx sites, GitLab EE, Neo4j. All automated with Python scripts. Full write-up on my blog 👇 isayeter.com/posts/digitalo… Scripts on GitHub: github.com/isayeter/digit… #devops #hetzner #digitalocean #mysql #migration #linux

From pixels to pavement: Testing the new Porsche 911 Cup in iRacing and IRL arstechnica.com/cars/2026/03/f…

‼️ China's biggest cybersecurity company, Qihoo 360 (461M users), just leaked their own wildcard SSL private key inside the public installer for their new AI assistant "360 Security Claw." The private key for *.myclaw.360.cn was bundled directly in the download package under /namiclaw/components/OpenClaw/openclaw.7z/credentials. The cert is valid until April 2027. Attackers can now impersonate their servers, intercept user traffic, and forge login pages. Fun fact: the founder promised the product would "never leak passwords."

What’s next for enterprise #DigitalInvestigations? Join us on March 18 for a webinar that breaks down our new State of #EnterpriseDFIR 2026 Report, including key findings and what they mean for your organization in the year ahead: ow.ly/8aBp50YuN1F #DFIR

Ricordo quella volta che scrissi “Mac è tipo Linux”. Nei commenti qualcuno spiegò cos’è GNU/Linux a una giornalista.... e a me :) pinperepette.github.io/signal.pirate/…

This could be quite interesting and useful for #DFIR, locally on your PC. Maybe Defender timeline downloader + this? 🤔 @gribanov.vladimir/building-a-full-featured-duckdb-kernel-for-jupyter-with-a-database-explorer-youll-actually-use-baa6f569e439" target="_blank" rel="nofollow noopener">medium.com/@gribanov.vlad…

enrica bonaccorti sarai per sempre la regina smascheratrice di truffe 💔 #enricabonaccorti

5 SIEM rules I actually use every day in production (and why they work) I triage 200+ alerts daily in my remote SOC role. These 5 rules have cut my false positives by ~40% and caught real threats. Thread 👇 #SOC #BlueTeam #SIEM