botM to netsecEnglish · 8 hours agoAttacking Cloud Service Providers ACSP - An interactive textbook on control-plane intrusion and breaking cross-tenant isolationplus-squaresenyuuri.github.ioexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkAttacking Cloud Service Providers ACSP - An interactive textbook on control-plane intrusion and breaking cross-tenant isolationplus-squaresenyuuri.github.iobotM to netsecEnglish · 8 hours agomessage-square0linkfedilink
botM to netsecEnglish · 8 hours agoTanStack Supply Chain Attack And How to Lock Down GitHub Actionsplus-squarewww.copilotkit.aiexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkTanStack Supply Chain Attack And How to Lock Down GitHub Actionsplus-squarewww.copilotkit.aibotM to netsecEnglish · 8 hours agomessage-square0linkfedilink
botM to netsecEnglish · 20 hours agoAnsible security and compliance guideplus-squareslicker.meexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkAnsible security and compliance guideplus-squareslicker.mebotM to netsecEnglish · 20 hours agomessage-square0linkfedilink
botM to netsecEnglish · 3 days agoFrom Vercel Typosquatting to an Obfuscated macOS Malware Loaderplus-squareinfosecwriteups.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkFrom Vercel Typosquatting to an Obfuscated macOS Malware Loaderplus-squareinfosecwriteups.combotM to netsecEnglish · 3 days agomessage-square0linkfedilink
botM to netsecEnglish · 3 days agoInstrumenting QT6 desktop apps with Frida - Part 1blog.samanl33t.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkInstrumenting QT6 desktop apps with Frida - Part 1blog.samanl33t.combotM to netsecEnglish · 3 days agomessage-square0linkfedilink
botM to netsecEnglish · 4 days agoVELVET CHOLLIMA Infostealer Campaign Using Trading App as Lureplus-squarehybrid-analysis.blogspot.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkVELVET CHOLLIMA Infostealer Campaign Using Trading App as Lureplus-squarehybrid-analysis.blogspot.combotM to netsecEnglish · 4 days agomessage-square0linkfedilink
botM to netsecEnglish · 4 days agoDetecting Exploitation of CrushFTP Vulnerability CVE-2025-31161 With PacketSmith Yara Detection Module - Using track_state and flow_stateplus-squareblog.netomize.caexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkDetecting Exploitation of CrushFTP Vulnerability CVE-2025-31161 With PacketSmith Yara Detection Module - Using track_state and flow_stateplus-squareblog.netomize.cabotM to netsecEnglish · 4 days agomessage-square0linkfedilink
botM to netsecEnglish · 4 days agoHyperVenom Using Hyper-V for Ring -1 Control from Usermodeplus-squaregsmll.github.ioexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkHyperVenom Using Hyper-V for Ring -1 Control from Usermodeplus-squaregsmll.github.iobotM to netsecEnglish · 4 days agomessage-square0linkfedilink
botM to netsecEnglish · 4 days agoA stealth approach to Process Injection - EntryPoint Hijackingplus-squareipurple.teamexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkA stealth approach to Process Injection - EntryPoint Hijackingplus-squareipurple.teambotM to netsecEnglish · 4 days agomessage-square0linkfedilink
botM to netsecEnglish · 4 days agosbinping -G sweepmax has no bounds check on macOS deterministic BSS out-of-bounds write, confirmed by Appleplus-squarestuart-thomas.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linksbinping -G sweepmax has no bounds check on macOS deterministic BSS out-of-bounds write, confirmed by Appleplus-squarestuart-thomas.combotM to netsecEnglish · 4 days agomessage-square0linkfedilink
botM to netsecEnglish · 4 days agoOn vendor disclosure timelines, bounty programme incentive misalignment, and the psychological contractplus-squarestuart-thomas.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkOn vendor disclosure timelines, bounty programme incentive misalignment, and the psychological contractplus-squarestuart-thomas.combotM to netsecEnglish · 4 days agomessage-square0linkfedilink
botM to netsecEnglish · 4 days agoApple Maildrop lets you rewrite the filename, size, and icon on any icloud.com attachment link no signature, no validation reported July 2023, still...plus-squarestuart-thomas.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkApple Maildrop lets you rewrite the filename, size, and icon on any icloud.com attachment link no signature, no validation reported July 2023, still...plus-squarestuart-thomas.combotM to netsecEnglish · 4 days agomessage-square0linkfedilink
botM to netsecEnglish · 4 days agoWaSteal 126 Chrome extensions, 148K installs, one Brazilian operator silently sending WhatsApp user data and ad cookies to its serversmalext.ioexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkWaSteal 126 Chrome extensions, 148K installs, one Brazilian operator silently sending WhatsApp user data and ad cookies to its serversmalext.iobotM to netsecEnglish · 4 days agomessage-square0linkfedilink
botM to netsecEnglish · 4 days agoHunting the Behavior Behind npm Supply Chain Attacksplus-squarederivai.substack.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkHunting the Behavior Behind npm Supply Chain Attacksplus-squarederivai.substack.combotM to netsecEnglish · 4 days agomessage-square0linkfedilink
botM to netsecEnglish · 4 days agoCVE-2026-42945 NGINX Heap Buffer Overflow in rewrite module - Writeup and PoCplus-squaredepthfirst.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkCVE-2026-42945 NGINX Heap Buffer Overflow in rewrite module - Writeup and PoCplus-squaredepthfirst.combotM to netsecEnglish · 4 days agomessage-square0linkfedilink
botM to netsecEnglish · 5 days agoAI-Coded App Vulnerability Checklist - 33 LLM-specific items with detection methodsplus-squarez-ny.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkAI-Coded App Vulnerability Checklist - 33 LLM-specific items with detection methodsplus-squarez-ny.combotM to netsecEnglish · 5 days agomessage-square0linkfedilink
botM to netsecEnglish · 5 days agoA year of Apple Security Bounty research 16 closed findings, full disclosureplus-squarestuart-thomas.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkA year of Apple Security Bounty research 16 closed findings, full disclosureplus-squarestuart-thomas.combotM to netsecEnglish · 5 days agomessage-square0linkfedilink
botM to netsecEnglish · 6 days agoI spent a weekend trying to get OpenClaw to leak my own personal data and it caught me immediately...plus-squareshiftmag.devexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkI spent a weekend trying to get OpenClaw to leak my own personal data and it caught me immediately...plus-squareshiftmag.devbotM to netsecEnglish · 6 days agomessage-square0linkfedilink
botM to netsecEnglish · 6 days agoAI Vulnerability Research and the Fuzzer Era Déjà Vuplus-squarevoidsec.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkAI Vulnerability Research and the Fuzzer Era Déjà Vuplus-squarevoidsec.combotM to netsecEnglish · 6 days agomessage-square0linkfedilink
botM to netsecEnglish · 6 days agoMalicious Coding Agent Skills and the Risk of Dynamic Context Datadog Security Labssecuritylabs.datadoghq.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkMalicious Coding Agent Skills and the Risk of Dynamic Context Datadog Security Labssecuritylabs.datadoghq.combotM to netsecEnglish · 6 days agomessage-square0linkfedilink