#Zelensky: “… #putin wants to continue killing and #exploits the lack of a strong response. They don’t listen to Washington. And that says a lot to the world – to everyone”

ASUS: Sicherheitsloch ab Werk

Der Hersteller ASUS baut allerhand an Elektronik, unter anderem Mainboards (MB). Für Windows muss jeder Hersteller zur Hardware passende Treiber bereit stellen. Früher™ wurden solche Treiber auf einer CD oder DVD mitgeliefert. Heutzutage geht natürlich alles online. Das ist einerseits bequem

https://www.pc-fluesterer.info/wordpress/2025/05/17/asus-sicherheitsloch-ab-werk/

Time to go update yo shit again!

Microsoft Urges Immediate Action to Address Five Actively Exploited Windows Zero-Days

https://particle.news/share/PPocp

Jury orders NSO to pay $167 million for hacking WhatsApp users - A jury has awarded WhatsApp $167 million in punitive damages in a case the... - https://arstechnica.com/security/2025/05/jury-orders-nso-to-pay-167-million-for-hacking-whatsapp-users/ #security #exploits #nsogroup #whatsapp #pegasus #biz⁢ #policy

https://techcrunch.com/2025/04/29/government-hackers-are-leading-the-use-of-attributed-zero-days-google-says/
#cybersecurity #0days #exploits #nationstates #Google

In Q1 2025, VulnCheck identified evidence of 159 CVEs publicly disclosed for the first time as exploited in the wild, 28.3% within 24 hours of disclosure #Exploits #CyberSecurity https://vulncheck.com/blog/exploitation-trends-q1-2025

Wahnsinn. #opensource #linux #log4j #itsec #exploits
"I am no hero" Unfassbar gut, lieber @br_data ! #br #bayerischerrundfunk

Linkempfehlung ARD Audiothek

https://www.ardaudiothek.de/episode/wild-wild-web-geschichten-aus-dem-internet/das-wichtigste-hobby-der-welt/br/14442077/

Please make sure to update your devices!

Update Now: iOS 18.4.1 and macOS Sequoia 15.4.1 Address Actively Exploited Vulnerabilities

https://www.macrumors.com/2025/04/16/ios-18-4-1-security-fixes/

“The girl should be calling men.” Leak exposes Black Basta’s influence tactics. - A leak of 190,000 chat messages traded among members of the Black Basta ra... - https://arstechnica.com/security/2025/04/leaked-messages-expose-trade-secrets-of-prolific-black-basta-ransomware-group/ #socialengineering #ransomware #security #exploits #biz&it

What did you encounter during your last TTRPG adventures? Whatever the tales, I’m sure they are worthy of being remembered in song!

'Ballista' #Botnet #Exploits 2023 #Vulnerability in TP-Link #Routers. In the past, the vulnerability was exploited to drop Mirai botnet #malware. Today, it's being used once more for another botnet campaign with its own malware.
https://www.darkreading.com/cyberattacks-data-breaches/ballista-botnet-campaign-exploits-2023-vuln-tp-link-routers

Critical WordPress plugin vulnerability under active exploit threatens thousands - Thousands of sites running WordPress remain unpatched against a critical s... - https://arstechnica.com/security/2024/12/thousands-of-sites-remain-unpatched-against-actively-exploited-wordpress-plugin-bug/ #vulnerabilities #wordpress #security #exploits #plugins #biz⁢ #cms

https://www.wired.com/story/sophos-chengdu-china-five-year-hacker-war/ #cybersecurity #China #exploits #firewalls #VPN #Sophos

Cyble Sensors Detect New Attacks on LightSpeed, GutenKit WordPress Plugins – Source:cyble.com https://ciso2ciso.com/cyble-sensors-detect-new-attacks-on-lightspeed-gutenkit-wordpress-plugins-sourcecyble-com/ #rssfeedpostgeneratorecho #1CyberSecurityNewsPost #rssfeedsAutogenerated #CyberSecurityNews #Vulnerabilities #cyberattacks #Cyberattack #CybleBlog #Exploits #Exploit #'Cyber

Cyble Sensors Detect New Attacks on LightSpeed, GutenKit WordPress Plugins https://cyble.com/blog/cyble-sensors-detect-new-attacks-on-lightspeed-gutenkit-wordpress-plugins/ #Vulnerabilities #cyberattacks #Cyberattack #Exploits #Exploit

Interesting excerpts from DARK DEALS: UNVEILING THE UNDERGROUND MARKET OF EXPLOITS @VirusBulletin :

- "On average, there are approximately 23 exploits offered on a
monthly basis"
- "On 14 May 2024 a new zero-day exploit for Microsoft Outlook appeared on a popular dark web forum with a staggering
price tag of $1.8 million"
- [Windows LPE] "The price of zero-day exploits typically ranges $60,000 to $250,000. "

Thousands of Linux systems infected by stealthy malware since 2021 - Thousands of machines running Linux have been infected by a malware strain... - https://arstechnica.com/security/2024/10/persistent-stealthy-linux-malware-has-infected-thousands-since-2021/ #vulnerabilities #security #exploits #malware #biz⁢ #linux

Thousands of Linux systems infected by stealthy malware since 2021 - Thousands of machines running Linux have been infected by a malware strain... - https://arstechnica.com/security/2024/10/persistent-stealthy-linux-malware-has-infected-thousands-since-2021/ #vulnerabilities #security #exploits #malware #biz⁢ #linux

Sicherheitsprobleme in IT von US-Verwaltungen und Gerichten

Seit einem Jahr hat ein Sicherheitsforscher der EFF die IT-Systeme untersucht, die in Behörden, öffentlichen Verwaltungen und der Gerichtsbarkeit in den USA eingesetzt werden.

https://www.pc-fluesterer.info/wordpress/2024/10/03/sicherheitsprobleme-in-it-von-us-verwaltungen-und-gerichten/

I'd like to share some of my projects that are hosted on @github. Let's start with my public #exploits that span more than two decades of #pwning.

https://github.com/0xdea/exploits

"You can't argue with a root shell." -- Felix "FX" Lindner

Probably the most known is raptor_udf.c that targets #MySQL (those of you who solved the @offsec #OSCP training labs should recognize it).

My favorite is still raptor_rlogin.c, a glorious #Solaris #RCE from the early 2000s. Take your pick!