Cybersecurity researchers have discovered two security flaws that can enable local attackers to escalate their privileges to root on Linux machines.
#netsec
1 post1 participant0 posts today
Hacker Plants Computer 'Wiping' Commands in Amazon's AI Coding Agent
https://www.404media.co/hacker-plants-computer-wiping-commands-in-amazons-ai-coding-agent/
> The hacker said they submitted a pull request to that GitHub repository at the end of June from “a random account with no existing access.” They were given “admin credentials on a silver platter,” they said. On July 13 the hacker inserted their code, and on July 17 “they [Amazon] release it—completely oblivious,” they said.
#netsec #amazonWebServices #amazonQ #aiAiAi #nonBenificent marketing of so-called AI is a massive scam to manufacture consent to end the #labor & consumer economies; to pipeline the surveillance & collection of personal & private data; and to foster propaganda & devalue truthful information
Rogue IT worker gets seven months in prison after changing all of his company's passwords after getting suspended — causing over $200,000 in digital rampage.
Zoomer in der IT Security sind einfach anders wyld 
Schreibt mir eine Fachperson aus der genannten Demografie:
"Fun Fact: Die Raumbuchung hat keinerlei Zeichenbeschränkung in der Beschreibung. Habe letzte Woche einen Raum mit dem kompletten Bee Movie Script gebucht."
Based on our testing, MS seems to have fixed CVE-2025-33073 by blocking the CredUnmarshalTargetInfo/CREDENTIAL_TARGET_INFORMATIONW trick!
@tiraniddo @decoder_it #netsec #infosec #windows #cybersecurity
https://mastodon.social/@RedTeamPentesting/114663688487284108
MastodonRedTeam Pentesting (@RedTeamPentesting@mastodon.social)🚨 Our new blog post about Windows CVE-2025-33073 which we discovered is live:
🪞The Reflective Kerberos Relay Attack - Remote privilege escalation from low-priv user to SYSTEM with RCE by applying a long forgotten NTLM relay technique to Kerberos:
https://blog.redteam-pentesting.de/2025/reflective-kerberos-relay-attack/
"CVE-2025-49091: Konsole: Code execution from web browser using URL schemes handled by KDE's KTelnetService"
seclists.orgoss-sec: CVE-2025-49091: Konsole: Code execution from web browser using URL schemes handled by KDE's KTelnetService and Konsole < 25.04.2
IoT Security: Preventing a Possible Disaster
IEEE Spectrum · IoT Security: Preventing a Possible Disaster
More from 
IEEE Spectrum
Finding SSRFs in Azure DevOps - Part 2
https://binsec.no/posts/2025/05/finding-ssrfs-in-devops-part2
Discussions: https://discu.eu/q/https://binsec.no/posts/2025/05/finding-ssrfs-in-devops-part2
Binary Security AS · Finding SSRFs in Azure DevOps - Part 2Binary Security was previously rewarded for three Server-Side Request Forgery (SSRF) vulnerabilities in Azure DevOps, which you can read about here. Now we have found another SSRF vulnerability that we also reported to Microsoft. We then bypassed Microsoft’s fix of the vulnerability using DNS rebinding. If you read the previous blogpost, some of this may feel a bit like deja-vu. This blog post outlines how these new SSRFs were identified by analyzing the Azure DevOps source code.
Anyone who seeks for a well-written analysis of unsolicited #TCP traffic should give Decoding TCP SYN for Stronger Network Security a read. The blog post goes into TCP-procotol specifications. Recommended to every #networkengineer .
Props go to @jtk for his strong analytical skills and excellent writing style.
NETSCOUTDecoding TCP SYN for Stronger Network Security | NETSCOUTAnalyzing transmission control protocol (TCP) SYN segments, the initial step in th
#netsec
By default, your phone encodes your GPS location into any photos you take inside of the image’s EXIF metadata.
If you then share that image (on Mastodon for example), people will be able to tell where you were when you took that photo.
You can use websites like https://everestpipkin.github.io/image-scrubber/ to read and erase an image’s data – ctrl+f for “GPS” to see if your photo is storing it.
Permalink: https://www.ragman.net/notes/27
Critical Samlify SSO flaw lets attackers log in as admin
Samlify is used by several SaaS services 
️
#vulnerability #netsec
https://www.bleepingcomputer.com/news/security/critical-samlify-sso-flaw-lets-attackers-log-in-as-admin/
BleepingComputer · Critical Samlify SSO flaw lets attackers log in as admin
For people who run large public HTTP services, are there any IP/JA3/fingerprint lists that you use to create outright block lists at your network edge? I'm interested in ones that you know are safe and don't cause false positives for you.
I've used Firehol in the past but unsure how up to date they are these days. Retoots appreciated!
China en North-Korea Produces half of the Attacks with APT Actors Globally!
#cybersecurity #infosec #Netsec
https://www.darkreading.com/cyber-risk/asia-apt-actors-focus-expands-globally
iClicker site hack targeted students with #malware via fake CAPTCHA
#infosec #netsec
https://www.bleepingcomputer.com/news/security/iclicker-hack-targeted-students-with-malware-via-fake-captcha/
BleepingComputer · iClicker hack targeted students with malware via fake CAPTCHA
More from 
Lawrence Abrams
US indicts Black Kingdom ransomware admin for MS Exchange attacks. 
#ransomware #netsec #infosec
BleepingComputer · US indicts Black Kingdom ransomware admin for Microsoft Exchange attacks
Exposure assessment platforms promise to become a GPS for security pros and teams 
#infosec #netsec #soc
https://www.scworld.com/perspective/exposure-assessment-platforms-promise-to-become-a-gps-for-security-pros
SC Media · Exposure assessment platforms promise to become a GPS for security prosThe new EAP tools offer the visibility into emerging threats that many teams sought after for several years.
[Project] I built a tool that tracks AWS documentation changes and analyzes security implications
https://awssecuritychanges.com/
Discussions: https://discu.eu/q/https://awssecuritychanges.com/
awssecuritychanges.comAWS Security Changes - Track Documentation & Security UpdatesMonitor AWS documentation changes and security updates in real-time. Stay informed about critical security changes across all AWS services.
New writeup: a vulnerability in PHP's extract() function allows attackers to trigger a double-free, which in turn allows arbitrary code execution (native code)
https://ssd-disclosure.com/ssd-advisory-extract-double-free5-x-use-after-free7-x-8-x/
Discussions: https://discu.eu/q/https://ssd-disclosure.com/ssd-advisory-extract-double-free5-x-use-after-free7-x-8-x/
SSD Secure Disclosure · SSD Advisory - extract() double-free(5.X)/use-after-free(7.X/8.X) - SSD Secure DisclosureSummary A vulnerability in PHP’s extract() function allows attackers to trigger a double-free in version 5.x or a user-after-free in versions 7.x, 8.x, which in turn allows arbitrary code execution (native code). Credit An independent security researcher, LCFR, working with SSD Secure Disclosure. Vendor Response The vendor (Zend) has addressed the issue: https://github.com/php/php-src/security/advisories/GHSA-4pwq-3fv3-gm94. Zend have … SSD Advisory – extract() double-free(5.X)/use-after-free(7.X/8.X) Read More »
Identifying Overlapping Ideas and Concepts of Methods that Hide Information https://www.growkudos.com/publications/10.1145%252F3729165/reader #cybersecurity #cybersec #taxonomy #survey #steganography #covertchannels #informationhiding #systematization #infosec #netsec
www.growkudos.comIdentifying Overlapping Ideas and Concepts of Methods that Hide InformationScientific papers are not free from overlaps and even re-inventions that utilize a different terminology. With the ever-growing pile of published papers, scientists need to keep track of the available research, understand links and similarities between existing ideas and concepts.
Steganography is the science of concealed storage and transfer of secret data. Like other scientific domains which have a multi-decade history, steganography contains sub-domains which grew partially independent, resulting in redundancy. This is why our taxonomy draws links between these sub-disciplines. On an abstract level, we show that ideas from one domain can also be found in the other, and we find a common term for such ideas.