Vincent Yiu

36.2K posts

Vincent Yiu

@vysecurity

Director, Red Team, Offensive Security. Help organizations safeguard their businesses from the bad guys.

Hong Kong Katılım Aralık 2014

303 Takip Edilen31.5K Takipçiler

Sabitlenmiş Tweet

Vincent Yiu@vysecurity·15 Oca

In case you missed it: Add a colon to your password, ":", because all the stealer logs have colons, so it'll end up splitting your password incorrectly.

English

3.5K

Vincent Yiu retweetledi

🕳@sekurlsa_pw·1d

Links: 🔗 burp-ai-agent.six2dez.com 🔗 github.com/six2dez/burp-a…

Six2dez 🇵🇸@Six2dez1

It seems that my Burp AI plugin will never be in the BApp Store. The reasons are fair, but still 🥲 github.com/PortSwigger/ex…

English

5.1K

Vincent Yiu retweetledi

Vals AI@ValsAI·2d

Full Minimax results now available!

MiniMax (official)@MiniMax_AI

Introducing MiniMax-M2.7, our first model which deeply participated in its own evolution, with an 88% win-rate vs M2.5 - Production-Ready SWE: With SOTA performance in SWE-Pro (56.22%) and Terminal Bench 2 (57.0%), M2.7 reduced intervention-to-recovery time for online incidents to 3-min on certain occasions. - Advanced Agentic Abilities: Trained for Agent Teams and tool search tool, with 97% skill adherence across 40+ complex skills. M2.7 is on par with Sonnet 4.6 in OpenClaw. - Professional Workspace: SOTA in professional knowledge, supports multi-turn, high-fidelity Office file editing. MiniMax Agent: agent.minimax.io API: platform.minimax.io Token Plan: platform.minimax.io/subscribe/toke…

English

197

26.7K

Vincent Yiu@vysecurity·2d

We need some 3D network visualizations.

English

569

Vincent Yiu retweetledi

The Hacker News@TheHackersNews·2d

⚠️ WARNING - An unpatched critical telnetd bug (CVE-2026-32746) lets attackers gain full system access with no credentials. One connection to port 23 is enough to trigger memory corruption and execute code as root. No patch yet. Prior telnet flaw is already exploited in the wild. 🔗Read → thehackernews.com/2026/03/critic…

English

334

1.4K

209.5K

Vincent Yiu@vysecurity·2d

@IntCyberDigest Too much rage bait lol

English

2.4K

International Cyber Digest@IntCyberDigest·2d

❗️Pryx just replied with the cheapest MacBook, a cheap Taurus gun and about 80 USD worth of Kazakhstani tenge.

International Cyber Digest@IntCyberDigest

❗️Meet Hellcat ransomware group operator 'Pryx' — responsible for high-profile hacks like Jaguar Land Rover, Telefonica, Schneider Electric and many more. He started doing cybercrime as a kid. He got 4 people killed and 27 injured after starting a fire by hacking into the SCADA network of Telecom Egypt. An OSINT researcher just revealed who he is and how he tracked him down.

English

284.6K

Vincent Yiu retweetledi

Simplifying AI@simplifyinAI·3d

🚨 BREAKING: Someone just open-sourced a full suite for tracking satellites and decoding their radio signals locally. You don't even need the internet. It uses an SDR to pull weather images and raw data straight from space to your hard drive. 100% Open Source.

English

135

10.4K

525.5K

Vincent Yiu retweetledi

International Cyber Digest@IntCyberDigest·2d

English

202

1.8K

460.4K

Vincent Yiu retweetledi

eleven red pandas@bytecodevm·4d

Research shows how Palo Alto Cortex XDR predefined BIOC behavioral rules can be decrypted and analyzed. By understanding rule logic and built-in exceptions, attackers can adapt techniques to evade detection and bypass behavioral protections. core-jmp.org/2026/03/decryp…

English

162

13.4K

Vincent Yiu retweetledi

isa yeter@isayeter·3d

Just migrated our entire production stack from @DigitalOcean to @Hetzner_Online in just 24 hours — $1,432 → $233/month. Zero downtime. 30 MySQL DBs (248GB), 34 Nginx sites, GitLab EE, Neo4j. All automated with Python scripts. Full write-up on my blog 👇 isayeter.com/posts/digitalo… Scripts on GitHub: github.com/isayeter/digit… #devops #hetzner #digitalocean #mysql #migration #linux

English

596

40.1K

Vincent Yiu@vysecurity·3d

@relay_royalty @HackingLZ Wow damn

English

Logan D@relay_royalty·4d

@HackingLZ We noticed that also today as well. Glad I'm not crazy.

English

219

Justin Elze@HackingLZ·4d

Microsoft patched the ACS tenant enum unless you happen to hit a server(2.1.23623.6) that isn't yet. gist.github.com/HackingLZ/678a…

English

6.5K

Vincent Yiu retweetledi

Threat and Risk Intelligence Services - eCrime.ch@ecrime_ch·4d

New claim on the shame-site for #ransomware / #datatheft group #Gunra. Organization: Ngong Ping 360 Ltd. Location: #HongKong Industry: #TravelArrangements Staff: 201-500 employees Learn more at ecrime.ch

English

552

Vincent Yiu retweetledi

mRr3b00t@UK_Daniel_Card·4d

vmware fusion on a MacBook Neo! for science! :D

English

5.1K

Vincent Yiu retweetledi

Z.ai for Startups@ZaiforStartups·4d

AI hardware is starting to appear. But running reliable agents is a different challenge. Tool use. Long tasks. Multi-step workflows. GLM-5-Turbo + OpenClaw now run inside the Mechrevo AI box bringing native agent runtimes to devices.

English

1.3K

213.5K

Vincent Yiu@vysecurity·4d

Clear messaging.

Emirates Support@EmiratesSupport

All flights to and from Dubai have been temporarily suspended. Please do not go to the airport. Emirates will share updates when available. We would like to thank our customers for their understanding and patience. The safety of our passengers and crew is our highest priority and will not be compromised.

English

1.1K

Vincent Yiu retweetledi

Justin Elze@HackingLZ·4d

Took some tokens/time still no ASLR work around but im sure all kinds of embedded devices don't have it enabled x.com/JFrogSecurity/…

JFrog Security@JFrogSecurity

PSA - Incoming Pre-Auth RCE in inetutils telnetd. Global buffer overflow. No CVE / fix yet. RCE proven, although real world cases would need ASLR bypass. If you are running telnetd (why??) please take note lists.gnu.org/archive/html/b…

English

4.1K

Vincent Yiu retweetledi

JFrog Security@JFrogSecurity·12 Mar

English

16.3K

Vincent Yiu@vysecurity·4d

@PamphletsY @grok macau or Hong Kong?

Indonesia

2.2K

✦✦✦ 𝙿𝚊𝚖𝚙𝚑𝚕𝚎𝚝𝚜 ✦✦✦@PamphletsY·4d

🚨🇲🇴🇨🇳 BREAKING — Macau: Police Arrested a Robot in China. It Had Harassed an Elderly Woman.

English

167

477

3.7K

222.5K

Vincent Yiu@vysecurity·4d

This is Macau?… huh

✦✦✦ 𝙿𝚊𝚖𝚙𝚑𝚕𝚎𝚝𝚜 ✦✦✦@PamphletsY

🚨🇲🇴🇨🇳 BREAKING — Macau: Police Arrested a Robot in China. It Had Harassed an Elderly Woman.

English

1.5K

Vincent Yiu retweetledi

Joe (GonzoSec) 🇺🇸🇺🇦@jsark983·5d

Fork and added features of Patrick Binder's apimspray tool really coming along... github.com/jsarkisian/api…

English

Vincent Yiu@vysecurity·5d

@UK_Daniel_Card @Apple @Microsoft Technically it should swap

English

mRr3b00t@UK_Daniel_Card·5d

@vysecurity @Apple @Microsoft watch is charging. I've got 3 GB of RAM MAX to use with BURP... so I'm skeptical as to if anyone would want to actually run burp on this....

English

mRr3b00t@UK_Daniel_Card·5d

#apple 🍏 #neo

GIF

QME

20.5K

Keşfet

@IntCyberDigest @DigitalOcean @Hetzner_Online @relay_royalty @HackingLZ @PamphletsY @grok @elonmusk