Posts

Cloud Reconnaissance: How to Gather Intelligence from Cloud Services

Cloud Reconnaissance: How to Gather Intelligence from C...

Root Dec 17, 2025

Cloud services often expose valuable intelligence through misconfigurations, met...

Jaguar Land Rover Faced a Major Cyber Attack Claiming Payroll Data Theft

Jaguar Land Rover Faced a Major Cyber Attack Claiming P...

Shivi_k Dec 17, 2025

In August 2025, a massive cyberattack by the "Scattered Lapsus Hunters" compromi...

Exposed IAM Credentials Drive Huge AWS Crypto Mining Operation

Exposed IAM Credentials Drive Huge AWS Crypto Mining Op...

noddy Dec 17, 2025

A large-scale cryptomining campaign is abusing exposed AWS IAM credentials to de...

VolkLocker Ransomware Broken: Hard-Coded Master Key Lets Victims Decrypt Files for Free

VolkLocker Ransomware Broken: Hard-Coded Master Key Let...

noddy Dec 16, 2025

Security researchers have uncovered a critical flaw in VolkLocker ransomware, re...

TALES FROM THE WAF | Attacking Web Application Firewalls From a Real World Perspective

TALES FROM THE WAF | Attacking Web Application Firewall...

flatline Dec 16, 2025

In this article we are going to shed some light on what WAFs are, how they work ...

Massive Data Breach: Popular Chrome Extension Found Secretly Logging Millions of Users' AI Conversations.

Massive Data Breach: Popular Chrome Extension Found Sec...

Shivi_k Dec 16, 2025

The widely used Urban VPN Proxy browser extension, installed by millions, was ca...

Is Your Phone Really Safe? The Uncomfortable Truth Nobody's Telling You

Is Your Phone Really Safe? The Uncomfortable Truth Nob...

flatline Dec 15, 2025

In this blog we are really going to dive deep into Mobile Security. Uncover what...

New Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at Scale

New Advanced Phishing Kits Use AI and MFA Bypass Tactic...

Shivi_k Dec 13, 2025

Four advanced phishing kits (BlackForce, GhostFrame, InboxPrime AI, and Spiderma...

0-Day Hunting Guide: Recon Techniques Nobody Talks About

0-Day Hunting Guide: Recon Techniques Nobody Talks About

sbow Dec 12, 2025

Master zero-day vulnerability hunting through advanced reconnaissance techniques...

Model Context Protocol (MCP): A hands on guide

Model Context Protocol (MCP): A hands on guide

flatline Dec 11, 2025

This is a hands on guide to get started creating your own AI-Agents, who work on...

Fortinet, Ivanti, and SAP Issue Urgent Patches for High-Risk Authentication and Code Execution Flaws

Fortinet, Ivanti, and SAP Issue Urgent Patches for High...

noddy Dec 11, 2025

Fortinet, Ivanti, and SAP have released urgent patches to fix serious vulnerabil...

Google Confirms In-the-Wild Attacks on Chrome Via a High-Impact, Undisclosed Flaw

Google Confirms In-the-Wild Attacks on Chrome Via a Hig...

noddy Dec 11, 2025

Google has released new security updates for Chrome after confirming that a high...

Active Attacks Exploit Gladinet's Hard-Coded Keys for Unauthorized Access and Code Execution

Active Attacks Exploit Gladinet's Hard-Coded Keys for U...

noddy Dec 11, 2025

Recent attacks are taking advantage of hard-coded encryption keys in Gladinet pr...

Windows PowerShell now warns when running Invoke WebRequest scripts

Windows PowerShell now warns when running Invoke WebReq...

noddy Dec 11, 2025

Microsoft has added a new security alert in Windows PowerShell that warns users ...

PCIe 5.0+ Security Alert: Trio of Encryption Flaws Leads to Data Handling Vulnerabilities.

PCIe 5.0+ Security Alert: Trio of Encryption Flaws Lead...

Shivi_k Dec 11, 2025

Three low-severity security flaws (CVE-2025-9612, CVE-2025-9613, CVE-2025-9614) ...

North Korea-Linked Hackers Exploit React2Shell to Deploy New EtherRAT Malware

North Korea-Linked Hackers Exploit React2Shell to Deplo...

sbow Dec 11, 2025

North Korea-linked threat actors are exploiting the critical React2Shell vulnera...

Popular Posts

CVE-2025-55182 (React2Shell): The CVSS 10.0 RCE That Broke React Server Components

CVE-2025-55182 (React2Shell): The CVSS 10.0 RCE That Br...

sbow Dec 6, 2025

CPU Ring Architecture: Security Implications from Ring 3 to Ring -1

CPU Ring Architecture: Security Implications from Ring ...

Mindflare Aug 28, 2025

Inside Windows Process Creation: What Really Happens After You Double-Click an EXE

Inside Windows Process Creation: What Really Happens Af...

Mindflare Aug 27, 2025

Windows PowerShell now warns when running Invoke WebRequest scripts

Windows PowerShell now warns when running Invoke WebReq...

noddy Dec 11, 2025

Microsoft to Strengthen Entra ID Authentication Security with Advanced Content Security Policy (CSP) Update in 2026

Microsoft to Strengthen Entra ID Authentication Securit...

noddy Nov 28, 2025

Follow Us

Linkedin

Recommended Posts

React2Shell Ultimate - The First Autonomous Scanner for Next.js RSC RCE (CVE-2025-66478)

React2Shell Ultimate - The First Autonomous Scanner for...

Jack Barlow Dec 6, 2025

Popular Tags