nad

Reverse-engineered Coruna - a nation-state iOS exploit kit - from raw JavaScript. 28 modules, 500+ XOR strings decoded, 6,596-line teardown. PAC bypass, JIT cage escape, PACDB hash forgery. nadsec.online/blog/coruna nadsec.online/blog/coruna-te… (technical analysis more interesting, read coruna blog post first, technical analysis looks better on github, link on-site)

@notbrvnd0n No, just a couple of non load-bearing walls until you have paid the ransom.

Anyrun labeled sample "WallStealer" Are they gonna take my house upon detonation?

Google Chrome is rolling out device-bound session credentials to all users. Session cookies get cryptographically tied to your device, so stolen cookies can't be replayed from a different machine. Attackers who exfiltrate your cookie database get nothing usable.

@cyber_rekk No, you’re thinking of wifi. We have free wifi.

Do we humans really have free will?

@Adidotdev Robots on computer

Name your AI stack in 3 words i'll start : Claude ,Cursor, Prayer

@Sakshyt @nvidia Uh arm cpu go brrr

@Nadsec11 @nvidia this is more about the alleged combination of: - ARM CPU - Blackwell GPU - NVIDIA software stack - NVIDIA AI acceleration - laptop-class power draw all on one package rather than another 'generation of gpus' Nvidia N1/N1X

A new era of PC. 25.0528, 121.5990

The irony of using a non-deterministic robot with system level privileges, an internet connection and a track record of flying off the rails to find software vulnerabilities in the name of security… I was promised hoverboards. That’s all I have to say.

Damn. That’s interesting and weird. Get convinced to install the malware, then from there further socially engineered by the bad nerds who are manipulating steam from the inside out specifically using the programs internal api to spin up a steam chat with the victim inside their own steam client as well as maninuate the trade windows and shit. The Russians are so fucking back…

@vxunderground x.com/GMBA/status/20…

Hello, Awhile ago some guy on Xitter was talking about his friend being scammed and losing Counter Strike stuff. I'm not a gamer, I don't understand Counter Strike markets and stuff, but the gist of everything was he purchased an item and he was (in some capacity) scammed? He said Steam support was DMing him over Steam. People were memeing him, saying Steam doesn't communicate over Steam like an instant messenger client. People questioned the validity of the images. I had a bunch of people DM me, tag me on the post, etc. I saw it, but I was busy with my baby boy, so I put it on the back burner. However, it peaked my interest because it was extremely unusual. I do play stuff on Steam sometimes, and I've never seen or heard of malware which is curated to specifically target Steam coupled with social engineering work. Two things 1. I get tons of messages, DMs, and emails. I can't find the original post anymore. If you know what I'm describing please comment it below, or something, I don't know. The post itself is interesting and provides context to second part of this write-up. 2. This is malware. I was on THE STREETS DAWG (talking with stinky nerds on Telegram) passively to see if anyone knew anything about this. I was able to receive the payload as well the decompiled source code (it's written in Python). This malware was developed by some nerds in Russia determined to ... drain people on Counter Strike and steal their items? Again, I'm not a gamer or Counter Strike nerd, so I don't understand the objective of this malware or the monetary value behind this, but apparently it is enough to motivate someone to create malware which injects itself into Steam to allow them to manipulate the application and impersonate Steam support (API hooking). I haven't had a chance to review the malware in totality yet. I've briefly skimmed it. It's got a bunch of different modules and stages. Someone seems to have put quite a bit of effort into this. I've never seen anything like this, so it's really cool. On a side note, I've been noticing a trend of Threat Actors targeting Steam. It was initially by creating fake and malicious games. Now we are seeing malware payloads that inject themselves into the Steam application itself and manipulate it in ways to trick users into giving them valuable video game items or potentially pushing more malware to their machine. Very cool.

Free

@encrypted_past 💯💯

@Nadsec11 I hate github issues and private reports. I tagged em, if they message me it'll get patched or someone else'll find it. Oh well.

>be me >wanted to drop a root exploit >find out the team is small >not doing it. >wtf is wrong with me :( I'm developing feelings.

@YogSoth0 It’s irresponsible to not tell people haha

@Nadsec11 Agree. He does not seem the typical exalted skid rather a grown man who knows about responsibility. But his works deserves recognition. And anyway, he has a whole army of people like me that will take his parts.

New vulnerability is on the way. 💪🏻

@planedrop @vxdb Thanks

i need a new desktop background help

@brian_armstrong @MonetSupply @moo9000

@MonetSupply @moo9000 It goes without saying that all AI generated code has rigorous human reviews. No one is vibe coding directly to production. We're increasing speed of shipping and innovation, while continuing to raise the bar on security.

This is an email I sent earlier today to all employees at Coinbase: Team, Today I’ve made the difficult decision to reduce the size of Coinbase by ~14%. I want to walk you through why we're doing this now, what it means for those affected, and how this positions us for the future. Why now Two forces are converging at the same time. We need to be front footed to respond to both. First, the market. Coinbase is well-capitalized, has diversified revenue streams, and is well-positioned to weather any storm. Crypto is also on the verge of the next wave of adoption, with stablecoins, prediction markets, tokenization, and more taking off. However, our business is still volatile from quarter to quarter. While we've managed through that cyclicality many times before and come out stronger on the other side, we’re currently in a down market and need to adjust our cost structure now so that we emerge from this period leaner, faster, and more efficient for our next phase of growth. Second, AI is changing how we work. Over the past year, I’ve watched engineers use AI to ship in days what used to take a team weeks. Non-technical teams are now shipping production code and many of our workflows are being automated. The pace of what's possible with a small, focused team has changed dramatically, and it's accelerating every day. All of this has led us to an inflection point, not just for Coinbase, but for every company. The biggest risk now is not taking action. We are adjusting early and deliberately to rebuild Coinbase to be lean, fast, and AI-native. We need to return to the speed and focus of our startup founding, with AI at our core. What this means To get there, we are not just reducing headcount and cutting costs, we’re fundamentally changing how we operate: rebuilding Coinbase as an intelligence, with humans around the edge aligning it. What does this mean in practice? - Fewer layers, faster decisions: We are flattening our org structure to 5 layers max below CEO/COO. Layers slow things down and create coordination tax. The future is small, high context teams that can move quickly. Leaders will own much more, with as many as 15+ direct reports. Fewer layers also means a leaner cost structure that is built to perform through all market cycles. - No pure managers: Every leader at Coinbase must also be a strong and active individual contributor. Managers should be like player-coaches, getting their hands dirty alongside their teams. - AI-native pods: We’ll be concentrating around AI-native talent who can manage fleets of agents to drive outsized impact. We’ll also be experimenting with reduced pod sizes, including “one person teams” with engineers, designers, and product managers all in one role. In short: AI is bringing a profound shift in how companies operate, and we’re reshaping Coinbase to lead in this new era. This is a new way of working, and we need to leverage AI across every facet of our jobs. To those who are affected I know there are real people behind these decisions — talented colleagues who have poured themselves into this company and our mission. To those of you who will be leaving: thank you. You’ve helped build Coinbase into what it is today, and I am sincerely grateful for everything you've done. All impacted team members will receive an email to their personal account in the next hour with more information, and an invitation to meet with an HRBP and a senior leader in your organization. Coinbase system access has been removed today. I know this feels sudden and harsh, but it is the only responsible choice given our duty to protect customer information. To those affected, we will be providing a comprehensive package to support you through this transition. US employees will receive a minimum of 16 weeks base pay (plus 2 weeks per year worked), their next equity vest, and 6 months of COBRA. Employees on a work visa will get extra transition support. Those outside of the US will receive similar support, based on local factors and subject to any consultation requirements. Coinbase prides itself on talent density. Our employees are among the most talented people in the world, and I have no doubt that your skills and experience will be highly sought after as you pursue your next chapters. How we move forward To the team that is staying, I know this is a difficult day. We’re saying goodbye to colleagues and friends you've been in the trenches with. But here’s what I want you to know as we move forward together: Over the past 13 years, we have weathered four crypto winters, gone public, and built the most trusted platform in our industry. We’ve made it this far by making hard decisions and by always staying focused on our mission. This time will be no different – nothing has changed about the long term outlook of our company or industry. And most importantly, our mission has never been more important for the world. Increasing economic freedom requires a new financial system, and we’re building it. The Coinbase that emerges from this will be more capable than ever to achieve our mission. Brian

@k8em0 @x86x64_IA32 Should note, The people that work at Microsoft in my experience are all great people. The problem does not lie with the employees, they are obviously some of the most talented people on earth.

Well like, we all give em thousands of dollar to use their products.. they’re forgetting that they’re supposed to be working for us, I don’t mean security researches, I mean all of us. But at this point they’re actively fighting with their customer base.. For as long as I have been alive Microsoft have actively been ignoring people’s questions on their forums when they know they don’t have a reasonable answer. They just leave tens of thousands of their customers that have given them tens of thousands of dollars hanging at this point. Until they do better for their customers, this story will be replayed over and over again until every one is using a friggen Chromebook..

Not that ‘responsible’ disclosure shit again 🙄 No vendor uses that term unless they want to call someone irresponsible. Even if someone drops 0day, patch & move on. Going after a researcher is a great way to turn 1 bad relationship into many terrible relationships.

@HackingLZ THE_SMOKING_GUN.md

Free research Fridays? hXXp://139.162.182.252:8080/

Yall doing windows an Linux too? Or just mobile stuff? I’m starting to stack implants RN, you can have em for free or pay me pennies if you actually have the money to spend on the various edr products needed to really test this sort of shit out properly… Also making C2s for AI agents which is rather comical. Respect to ya tbh, funny cunt.

Our business model is this: - Attract the very best vulnerability researchers and exploit developers in the world to join our company. This mostly revolves around junior engineers with raw talent/extremely high IQ. We don’t care if they have a college degree/industry experience or if they are total recluse-types who never want to attend some stupid “team building event” or whatever. This is largely an individual sport. And we want the Roger Federer(s) and Novak Djokavic(s) to work for us. We will hone their skills beyond what would be otherwise possible and polish them into absolutely deadly weapons. - Pay them so well (including serious equity), and task them with working on things so cool, that they would never even want to take an interview for a job at another firm (think Renaissance Technologies in the hedge fund world, but for computer network exploitation). We want to make these people very rich—which almost never happens to people with these skills in this industry. The only tradeoff is that they will have zero fame or public recognition, and they have to be okay with that (fame is overrated anyway) - Build the resulting primitives into the most sophisticated and powerful offensive cyber capabilities and platforms imaginable, in order to monitor, degrade and defeat the enemies of Western Civilization — If this sounds like what you’re after, reach out. Careers@IRISC2[.]com

@GithubProjects Get a grip lmao

GitHub

@RideToFireStar @Knubbeh @Microsoft Just do it, it’s the right thing to do.

@Knubbeh @Microsoft I'd hate to burn it... but I'm seriously thinking about it 😆 🔥

I will now be giving away @Microsoft 0days. No point in ethical release if the company is not acting in good faith.