secdude

WhupWhup🎉 If you are interested in #RedTeaming, #OffensiveSecurity or #CyberSecurity in general, let's meet at @defcon and exchange ideas💡 Myself and @MoritzLThomas will be presenting: Volatile Vault-A tool for red teamers that facilitates #data #exfiltration during #redteams

Security things from the last few days: - CopyFail (linux pwn'd) - CopyFail 2/Dirty Frag - 13 advisories in Next.js - Over 70 CVEs addressed in MacOS 26.5 - ~50 CVEs addressed in iOS 26.5 - YellowKey (Windows Bitlocker pwn'd entirely) - GreenPlasma (Windows privilege escalation) - CVE-2026-21510 and CVE-2026-21513 confirmed to be used by Russia for Windows RCE - CVE-2026-32202 separately confirmed to be used by Russia for sensitive document access - Mini-Shai Hulud (over 300 JS and Python packages compromised via GitHub Action cache poisoning) - Google confirms they have identified AI-powered exploitation of zero days in an unidentified "open-source, web-based system administration too" - Canvas (popular LMS used in most schools) pwn'd entirely - PAN-OS (palo alto networks) pwn'd with a 9.3 severity CVE-2026-0300 Are you scared yet?

- XZ utils backdoor: found by guy debugging 200ms latency - LiteLLM hack: found by guy debugging oom issue These could have been the most impactful compromises ever. Forget security vendors, weaponize your engineers’ autism.

“The largest supply chain compromise in npm, Inc. history just happened, packages with a total of 2 billion weekly downloads just got turned malicious” LinkedIn Post linkedin.com/posts/advocate… More info on hacker news news.ycombinator.com/item?id=451696…

@BleepinComputer @serghei We have been using this for years, but I mean, we are simulating state-sponsored hackers..

New Windows zero-day exploited by 11 state hacking groups since 2017 - @serghei bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…

@__invictus_ Every single time🫣

All Red Teamers should be aware of post beacon loss syndrome, and the stages that you go through. Denial - "the user has probably just gone offline for the day", "maybe my redirector is fucked", "did I crash the process".

@NVIDIAGeForce #GeForceGreats

5 days to CES. 5 classic cards up for grabs. ALL signed by NVIDIA CEO Jensen Huang 👀 Up first: GeForce 256, the world's 1st GPU Want it? Comment #GeForceGreats for a chance to win...

Excited to present at @sectorca in Toronto for the second year! Join me & @MoritzLThomas for "Volatile Vault: Data Exfiltration in 2024" Discover how our platform evades DLP systems. Let's connect! #CyberSecurity #redteam @NVISO_Labs

@assassinscreed 🦅 will play on PC.

To celebrate the one year anniversary of the launch of Assassin's Creed Mirage, we're giving away free keys every week this month. To have a chance to win - all you need to do is like this post and comment with an 🦅 What platform are you ready to play on? #AssassinsCreed

Unofficial after event gathering at maps.app.goo.gl/GggAaDN9o7v2YF…

We are thrilled to announce that the schedule for the event is now available online! Make sure you don't miss any of the amazing sessions. We can't wait to see you there! bsidesfrankfurt.org/2024/schedule/…

Let us know if you know how to get into the @RedTeamVillage_ party tonight :)

If you want to learn about #physicalsecurity the cool way! 🔥🚀 Break into the @NVISOsecurity #ARES #CovertAccessVault by: - #lockpicking - #Bypass #alarm - Under the door tool - #Shimming - #CCTV jamming - Safe cracking

Here is the direct link: forum.defcon.org/node/249605

WhupWhup🎉 If you are interested in #RedTeaming, #OffensiveSecurity or #CyberSecurity in general, let's meet at @defcon and exchange ideas💡 Myself and @MoritzLThomas will be presenting: Volatile Vault-A tool for red teamers that facilitates #data #exfiltration during #redteams

🚨Alert🚨CVE-2024-5655(CVSS 9.6): Run pipelines as any user 🔗Hunter Link: hunter.how/list?searchVal… ⚠This flaw allows attackers to trigger pipelines as another user under specific conditions, posing a significant security risk. 📊2.3M+ Services are found on hunter.how 📰Refer:securityonline.info/cve-2024-5655-… 👇Query Hunter: /product.name="GitLab" FOFA: app="GitLab" SHODAN: http.component:"GitLab" #GitLab #hunterhow #infosec #infosecurity #Infosys #Vulnerability

⚠️0-click #RCE in Outlook⚠️ The #CVE-2024-30103 vulnerability leverages a flaw in how Microsoft Outlook handles specific types of email content. An attacker can embed malicious code within the body of an email, which gets executed as soon as the email is opened.

We truly enjoyed this year's @x33fcon. Thank you for another wonderful conference 🔥 See you next year!

🚨Alert🚨CVE-2024-30103: Microsoft Outlook Remote Code Execution Vulnerability ⚠This Microsoft Outlook vulnerability can be circulated from user to user and doesn’t require a click to execute. Rather, execution initiates when an affected email is opened.This is notably dangerous for accounts using Microsoft Outlook’s auto-open email feature. 📰Refer: blog.morphisec.com/cve-2024-30103… #Outlook #Microsoft #hunterhow #infosec #infosecurity #Infosys #Vulnerability

Are there no local privilege escalations on you target maschine? We got you covered ;)

I’m excited to announce that I have partnered with @zeropointsecltd to release my first educational course, BOF Development and Tradecraft. Learn how to write BOFs by following step-by-step instructions to create three operation-ready tools! Link: training.zeropointsecurity.co.uk/courses/bof-de…