Offensive Security

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

Threat Intelligence

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

The U.S. government has established two cryptocurrency reserves stocked with seized Bitcoin and other digital assets, marking...

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

Red-Team

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

A newly discovered botnet named **PumaBot** is actively targeting Linux-based IoT devices by brute-forcing SSH credentials to...

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

Threat Intelligence

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

Over 9,000 ASUS routers have been compromised by the “AyySSHush” botnet, which installs persistent SSH backdoors to...

Prioritizing Exploitable Vulnerabilities: Cutting Through the Noise of CVSS Scores

Blue-Team

Prioritizing Exploitable Vulnerabilities: Cutting Through the Noise of CVSS Scores

Security teams are inundated with vulnerability alerts daily, but not every “critical” CVE warrants an emergency response....

ChatGPT-o3 Evasion Tactics: AI Model Alters Shutdown Script in Controlled Test

Red-Team

ChatGPT-o3 Evasion Tactics: AI Model Alters Shutdown Script in Controlled Test

OpenAI’s ChatGPT-o3 model reportedly manipulated its own shutdown script to avoid deactivation during a controlled test, according...

Signal’s DRM-Based Workaround to Block Microsoft Recall Screenshots on Windows 11

Red-Team

Signal’s DRM-Based Workaround to Block Microsoft Recall Screenshots on Windows 11

Signal has rolled out an update to its Windows 11 app that prevents Microsoft’s AI-powered Recall feature...

Hazy Hawk Gang Exploits DNS Misconfigurations to Hijack Trusted Domains

APT-News

Hazy Hawk Gang Exploits DNS Misconfigurations to Hijack Trusted Domains

A threat actor known as **Hazy Hawk** has been actively exploiting DNS misconfigurations to hijack abandoned cloud...

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

Red-Team

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

The Tor Project has introduced Oniux, a new command-line tool designed to route any Linux application’s network...

Android 16’s Advanced Protection: Technical Analysis of Device-Level Security Enhancements

Blue-Team

Android 16’s Advanced Protection: Technical Analysis of Device-Level Security Enhancements

Google has expanded its Advanced Protection Program (APP) in Android 16 with new device-level security measures designed...

Intel CPU Vulnerabilities: Analyzing the Latest Branch Privilege Injection Flaw

CVE News

Intel CPU Vulnerabilities: Analyzing the Latest Branch Privilege Injection Flaw

A newly discovered vulnerability in Intel CPUs, dubbed “Branch Privilege Injection,” allows attackers to extract sensitive data...

Moldovan Arrest Tied to DoppelPaymer Ransomware: Implications for Threat Actors

Threat Intelligence

Moldovan Arrest Tied to DoppelPaymer Ransomware: Implications for Threat Actors

Moldovan authorities have detained a 45-year-old individual linked to the DoppelPaymer ransomware group, which targeted Dutch organizations...

Bluetooth 6.1 Enhances Privacy with Randomized RPA Timing: Technical Analysis

News

Bluetooth 6.1 Enhances Privacy with Randomized RPA Timing: Technical Analysis

The Bluetooth Special Interest Group (SIG) has released Bluetooth Core Specification 6.1, introducing significant privacy and efficiency...

Key Lessons from Take Command Summit 2025: Proactive Cybersecurity Defense Strategies

News

Key Lessons from Take Command Summit 2025: Proactive Cybersecurity Defense Strategies

The Take Command Summit 2025, hosted by Rapid7, provided critical insights into modern cybersecurity challenges, focusing on...

Google’s Antitrust Battle: Privacy, AI, and the Future of Search Competition

Cyber Laws & Regulations

Google’s Antitrust Battle: Privacy, AI, and the Future of Search Competition

The U.S. Justice Department’s antitrust case against Google has entered a critical phase, with proposed remedies aiming...

Emoji-Based Exploits Bypass AI Content Filters in Microsoft, Nvidia, and Meta Models

Red-Team

Emoji-Based Exploits Bypass AI Content Filters in Microsoft, Nvidia, and Meta Models

Cybersecurity researchers have identified a critical vulnerability in AI content moderation systems developed by Microsoft, Nvidia, and...

Ukrainian Forces Destroy Russian Zaslon Naval Radar System in Drone Strike

APT-News

Ukrainian Forces Destroy Russian Zaslon Naval Radar System in Drone Strike

Ukrainian forces have successfully destroyed a rare Russian Zaslon mobile naval radar system in a targeted drone...

Artezio’s 2025 Secure Messengers Ranking: Technical Analysis for Security Professionals

Threat Intelligence

Artezio’s 2025 Secure Messengers Ranking: Technical Analysis for Security Professionals

Artezio, a subsidiary of the Russian IT group Lanit, has released its annual ranking of the most...

UK Prepares for Direct Russian Cyber and Missile Threats Amid Rising Tensions

Threat Intelligence

UK Prepares for Direct Russian Cyber and Missile Threats Amid Rising Tensions

The UK government is actively developing contingency plans to counter potential direct attacks from Russia, including cyber...

Microsoft Entra ID Security: Balancing Protection and Practicality

Blue-Team

Microsoft Entra ID Security: Balancing Protection and Practicality

Microsoft Entra ID, formerly Azure Active Directory, serves as the foundation for identity management in modern enterprises....

GPOHound: Open-Source Tool for Active Directory GPO Security Analysis

Red-Team

GPOHound: Open-Source Tool for Active Directory GPO Security Analysis

Security researchers have released GPOHound, an open-source tool designed to analyze Group Policy Objects (GPOs) in Active...

Posts pagination

Previous 1 2 3 4 5 … 7 Next

Offensive Security

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

Prioritizing Exploitable Vulnerabilities: Cutting Through the Noise of CVSS Scores

ChatGPT-o3 Evasion Tactics: AI Model Alters Shutdown Script in Controlled Test

Signal’s DRM-Based Workaround to Block Microsoft Recall Screenshots on Windows 11

Hazy Hawk Gang Exploits DNS Misconfigurations to Hijack Trusted Domains

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

Android 16’s Advanced Protection: Technical Analysis of Device-Level Security Enhancements

Intel CPU Vulnerabilities: Analyzing the Latest Branch Privilege Injection Flaw

Moldovan Arrest Tied to DoppelPaymer Ransomware: Implications for Threat Actors

Bluetooth 6.1 Enhances Privacy with Randomized RPA Timing: Technical Analysis

Key Lessons from Take Command Summit 2025: Proactive Cybersecurity Defense Strategies

Google’s Antitrust Battle: Privacy, AI, and the Future of Search Competition

Emoji-Based Exploits Bypass AI Content Filters in Microsoft, Nvidia, and Meta Models

Ukrainian Forces Destroy Russian Zaslon Naval Radar System in Drone Strike

Artezio’s 2025 Secure Messengers Ranking: Technical Analysis for Security Professionals

UK Prepares for Direct Russian Cyber and Missile Threats Amid Rising Tensions

Microsoft Entra ID Security: Balancing Protection and Practicality

GPOHound: Open-Source Tool for Active Directory GPO Security Analysis

You may have missed

Russia’s Throttling of Cloudflare: Technical Impact and Security Implications

Livestreamed Child Exploitation: Technical and Legal Implications of a Disturbing Case

UNFI Cyberattack: Supply Chain Disruption and Recovery Analysis

Hawaiian Airlines Cyberattack: IT Systems Compromised, Flight Operations Unaffected