Fri Nov 14 01:02:56 2025 (*53e37792*):: https://x.com/minchoi/status/1989035898948747738 *** Min Choi (@minchoi) on X *** This story is wild Chinese state-backed hackers hijacked Claude Code to run one of the first AI-orchestrated cyber-espionage Using autonomous agents to infiltrate ~30 global companies, banks, manufacturers and government networks:exploding_head: How the attack was carried out in 5 phases *** […]
Fri Oct 31 16:25:54 2025 (*4e3d9761*):: https://x.com/realchrisrufo/status/1984287275581362492 *** Christopher F. Rufo :crossed_swords: (@realchrisrufo) on X *** BREAKING: It appears that hackers have taken over the University of Pennsylvania computer systems, calling the college a “dogshit elitist institution full of woke retards” and threatening to release evidence of its discriminatory admissions practices. *** X (formerly Twitter) […]
Fri Oct 31 13:51:33 2025 (*4297a328*):: +public!
Fri Oct 24 00:31:07 2025 (*097dfbf6*):: clown cloud https://x.com/copyconstruct/status/1981192300819862000 +public! *** Cindy Sridharan (@copyconstruct) on X *** The detailed AWS incident report is out, and it’s worth a read – DNS records managed by 2 systems; a race condition led to regional record getting unset – EC2 lease establishment was borked as it depends on […]
Fri Oct 10 03:13:54 2025 (*097dfbf6*):: time to update redis https://github.com/raminfp/redis_exploit *** GitHub – raminfp/redis_exploit: CVE-2025-49844 (RediShell) *** CVE-2025-49844 (RediShell). Contribute to raminfp/redis_exploit development by creating an account on GitHub. *** GitHub (*097dfbf6*):: +public!
Tue Sep 23 18:28:38 2025 (*4cfb807c*):: https://www.zerohedge.com/technology/secret-service-dismantles-weaponized-sim-farms-designed-shut-down-nyc-cell-networks *** Secret Service Dismantles Weaponized SIM Farms Designed To “Shut Down” NYC Cell Networks *** “This network had the potential to disable cell phone towers and essentially shut down the cellular network in New York City.” *** ZeroHedge (*4297a328*):: +public! Can they put this up for state auction […]
Sun Sep 7 19:57:41 2025 (*097dfbf6*):: +public!
Thu Aug 28 03:44:45 2025 (*097dfbf6*):: this is green fields for exploits https://x.com/zack_overflow/status/1960771720727683507 *** zack (in SF) (@zack_overflow) on X *** A popular NPM package got compromised, attackers updated it to run a post-install script that steals secrets But the script is a *prompt* run by the user’s installation of Claude Code. This avoids it […]
Fri Aug 15 14:55:04 2025 (*097dfbf6*):: https://x.com/AzakaSekai_/status/1956282535350296801 *** 安坂星海 Azaka || VTuber (@AzakaSekai_) on X *** Just saw a sick live demo of wireless headphone hijacking that allows the attacker to perform the following without ever pairing the device. All the attacker has to do is be in range. – read/write arbitrary bytes to device […]
Tue Aug 12 02:17:16 2025 (*097dfbf6*):: https://arstechnica.com/security/2025/08/high-severity-winrar-0-day-exploited-for-weeks-by-2-groups/ +public! *** High-severity WinRAR 0-day exploited for weeks by 2 groups *** Exploits allow for persistent backdooring when targets open booby-trapped archive. *** Ars Technica