hackerfantastic.crypto
@hackerfantastic.bsky.social
Co-Founder https://hacker.house cyber security assurance & hacker training ~ ISBN9781119561453 ~ a book on professional hacking. Contact for competitive quotes on cyber security projects.
Pinned
Mikrotik "opensesame" SNMP backdoor. Tutorial on how to create a backdoor modelled on EXTRABACON that resets the admin password using a UDP packet (SNMPset) as a post-exploitation technique. github.com/hackerhouse-...
Reposted by hackerfantastic.crypto
For more than a year I’ve spoken with Scattered Spider “caller” Noah Urban from a Florida jail. I wanted to know how they chose victims, their methods and how Noah became entangled in a virtually and physically violent world.
We’re publishing his story today: www.bloomberg.com/news/feature...
We’re publishing his story today: www.bloomberg.com/news/feature...
‘I Was a Weird Kid’: Jailhouse Confessions of a Teen Hacker
Noah Urban’s role in the notorious Scattered Spider gang was talking people into unwittingly giving criminals access to sensitive computer systems.
www.bloomberg.com
September 19, 2025 at 11:46 AM
For more than a year I’ve spoken with Scattered Spider “caller” Noah Urban from a Florida jail. I wanted to know how they chose victims, their methods and how Noah became entangled in a virtually and physically violent world.
We’re publishing his story today: www.bloomberg.com/news/feature...
We’re publishing his story today: www.bloomberg.com/news/feature...
St. Michael,
defend us in battle.
Be our defense against wickedness
and snares of the Devil.
May God rebuke him, we humbly pray,
and do thou, O Prince of the heavenly hosts,
by the power of God,
thrust into hell Satan
and all evil spirits
who prowl about the world
seeking the ruin of souls.
Amen.
defend us in battle.
Be our defense against wickedness
and snares of the Devil.
May God rebuke him, we humbly pray,
and do thou, O Prince of the heavenly hosts,
by the power of God,
thrust into hell Satan
and all evil spirits
who prowl about the world
seeking the ruin of souls.
Amen.
September 11, 2025 at 6:37 PM
St. Michael,
defend us in battle.
Be our defense against wickedness
and snares of the Devil.
May God rebuke him, we humbly pray,
and do thou, O Prince of the heavenly hosts,
by the power of God,
thrust into hell Satan
and all evil spirits
who prowl about the world
seeking the ruin of souls.
Amen.
defend us in battle.
Be our defense against wickedness
and snares of the Devil.
May God rebuke him, we humbly pray,
and do thou, O Prince of the heavenly hosts,
by the power of God,
thrust into hell Satan
and all evil spirits
who prowl about the world
seeking the ruin of souls.
Amen.
Reposted by hackerfantastic.crypto
The U.S. Treasury Department has sanctioned Funnull Technology, a Philippines-based company that supports hundreds of thousands of malicious websites behind cyber scams linked to over $200 million in losses for Americans.
US sanctions firm linked to cyber scams behind $200 million in losses
The U.S. Treasury Department has sanctioned Funnull Technology, a Philippines-based company that supports hundreds of thousands of malicious websites behind cyber scams linked to over $200 million in losses for Americans.
www.bleepingcomputer.com
May 29, 2025 at 3:42 PM
The U.S. Treasury Department has sanctioned Funnull Technology, a Philippines-based company that supports hundreds of thousands of malicious websites behind cyber scams linked to over $200 million in losses for Americans.
Exploiting MS-TNAP, 1-click, no prompts.
May 5, 2025 at 7:41 PM
Exploiting MS-TNAP, 1-click, no prompts.
We released three advisories on Microsoft Telnet Server & Client, targeting MS-TNAP vulnerabilities.
1️⃣ Guest Restriction Bypass (CVSS 7.5)
2️⃣ MS-TNAP Mutual Auth Protocol Issue: Non-exploitable config/protocol issue.
3️⃣ Telnet Client PoC: Exposes MS-TNAP risks e.g. phishing.
#Cybersecurity
1️⃣ Guest Restriction Bypass (CVSS 7.5)
2️⃣ MS-TNAP Mutual Auth Protocol Issue: Non-exploitable config/protocol issue.
3️⃣ Telnet Client PoC: Exposes MS-TNAP risks e.g. phishing.
#Cybersecurity
May 5, 2025 at 4:51 PM
We released three advisories on Microsoft Telnet Server & Client, targeting MS-TNAP vulnerabilities.
1️⃣ Guest Restriction Bypass (CVSS 7.5)
2️⃣ MS-TNAP Mutual Auth Protocol Issue: Non-exploitable config/protocol issue.
3️⃣ Telnet Client PoC: Exposes MS-TNAP risks e.g. phishing.
#Cybersecurity
1️⃣ Guest Restriction Bypass (CVSS 7.5)
2️⃣ MS-TNAP Mutual Auth Protocol Issue: Non-exploitable config/protocol issue.
3️⃣ Telnet Client PoC: Exposes MS-TNAP risks e.g. phishing.
#Cybersecurity
Microsoft Telnet Client MS-TNAP Server-Side Authentication Token Exploit github.com/hackerhouse-...
May 5, 2025 at 4:41 PM
Microsoft Telnet Client MS-TNAP Server-Side Authentication Token Exploit github.com/hackerhouse-...
Hacker House exposes flaws in Microsoft Telnet Server! Two advisories reveal a high-severity Guest Access Bypass (CVSS 7.5) in MS-TNAP, risking unauthorized access on Windows 2000 to Server 2008 R2, and an unexploitable NTLM mutual auth issue github.com/hackerhouse-... & github.com/hackerhouse-...
github.com
April 30, 2025 at 8:17 PM
Hacker House exposes flaws in Microsoft Telnet Server! Two advisories reveal a high-severity Guest Access Bypass (CVSS 7.5) in MS-TNAP, risking unauthorized access on Windows 2000 to Server 2008 R2, and an unexploitable NTLM mutual auth issue github.com/hackerhouse-... & github.com/hackerhouse-...
Interesting that the cyberbeat journalists wrote multiple news articles about a fake exploit of this recent bug. It's fine though, I almost fell for this AI generated crap too, just like the fake TaskScheduler UAC Bypass you all wrote about. ;-) cyberdom.blog/abusing-the-...
April 24, 2025 at 3:06 PM
Interesting that the cyberbeat journalists wrote multiple news articles about a fake exploit of this recent bug. It's fine though, I almost fell for this AI generated crap too, just like the fake TaskScheduler UAC Bypass you all wrote about. ;-) cyberdom.blog/abusing-the-...
I found this article interesting, but it isn't technically a UAC bypass - if you have the Administrator username and password, you can authenticate to the host via TaskScheduler by design. The other vulnerabilities were also not really of any value to an attacker. cymulate.com/blog/task-sc...
Task Scheduler– New Vulnerabilities for schtasks.exe
UAC bypass, metadata poisoning, and log overflow vulnerabilities in Windows Task Scheduler reveal new tactics for defense evasion and privilege escalation
cymulate.com
April 22, 2025 at 3:42 PM
I found this article interesting, but it isn't technically a UAC bypass - if you have the Administrator username and password, you can authenticate to the host via TaskScheduler by design. The other vulnerabilities were also not really of any value to an attacker. cymulate.com/blog/task-sc...
Reposted by hackerfantastic.crypto
Department of Homeland Security Secretary Kristi L. Noem’s purse was stolen from a downtown Washington restaurant Sunday night, with her passport, DHS badge and about $3,000 cash inside, the department confirmed Monday.
DHS Secretary Noem’s purse stolen at Easter dinner with family in D.C.
The theft occurred as Homeland Security Secretary Kristi L. Noem dined with her extended family at the Capital Burger on Seventh Street NW, people familiar with the incident said.
www.washingtonpost.com
April 21, 2025 at 11:58 PM
Department of Homeland Security Secretary Kristi L. Noem’s purse was stolen from a downtown Washington restaurant Sunday night, with her passport, DHS badge and about $3,000 cash inside, the department confirmed Monday.
Reposted by hackerfantastic.crypto
This morning Minnesota Republicans introduced a bill banning mRNA vaccines and labeling them "weapons of mass destruction." It would make manufacturing, possessing or administering them a crime punishable by up to 20 years in prison. www.revisor.mn.gov/bills/bill.p...
April 21, 2025 at 8:01 PM
This morning Minnesota Republicans introduced a bill banning mRNA vaccines and labeling them "weapons of mass destruction." It would make manufacturing, possessing or administering them a crime punishable by up to 20 years in prison. www.revisor.mn.gov/bills/bill.p...
Reposted by hackerfantastic.crypto
Zhuowei Zhang released POC code for CVE-2024-53104, a zero-day used by Cellebrite to unlock Android devices
-patched in February
-used by Serbian law enforcement to unlock the phones of anti-government protesters and journalists
github.com/zhuowei/face...
-patched in February
-used by Serbian law enforcement to unlock the phones of anti-government protesters and journalists
github.com/zhuowei/face...
facedancer/examples/camera.py at rawgadget2 · zhuowei/facedancer
Fork of https://github.com/xairy/Facedancer/tree/rawgadget with patches for testing CVE-2024-53197 - zhuowei/facedancer
github.com
April 22, 2025 at 11:21 AM
Zhuowei Zhang released POC code for CVE-2024-53104, a zero-day used by Cellebrite to unlock Android devices
-patched in February
-used by Serbian law enforcement to unlock the phones of anti-government protesters and journalists
github.com/zhuowei/face...
-patched in February
-used by Serbian law enforcement to unlock the phones of anti-government protesters and journalists
github.com/zhuowei/face...
Reposted by hackerfantastic.crypto
Mikrotik "opensesame" SNMP backdoor. Tutorial on how to create a backdoor modelled on EXTRABACON that resets the admin password using a UDP packet (SNMPset) as a post-exploitation technique. github.com/hackerhouse-...
April 17, 2025 at 7:55 PM
Mikrotik "opensesame" SNMP backdoor. Tutorial on how to create a backdoor modelled on EXTRABACON that resets the admin password using a UDP packet (SNMPset) as a post-exploitation technique. github.com/hackerhouse-...
Reposted by hackerfantastic.crypto
Exploitation of CVE-2025-21204. Low-privileged user creates an "inetpub" and populates with content. Administrator later installs IIS (logic bomb). The attackers malicious IIS data is still available, executes code under IIS privileges resulting in an LPE. KB/patches do stuff too
April 17, 2025 at 1:21 AM
Exploitation of CVE-2025-21204. Low-privileged user creates an "inetpub" and populates with content. Administrator later installs IIS (logic bomb). The attackers malicious IIS data is still available, executes code under IIS privileges resulting in an LPE. KB/patches do stuff too
Mikrotik "opensesame" SNMP backdoor. Tutorial on how to create a backdoor modelled on EXTRABACON that resets the admin password using a UDP packet (SNMPset) as a post-exploitation technique. github.com/hackerhouse-...
April 17, 2025 at 7:55 PM
Mikrotik "opensesame" SNMP backdoor. Tutorial on how to create a backdoor modelled on EXTRABACON that resets the admin password using a UDP packet (SNMPset) as a post-exploitation technique. github.com/hackerhouse-...
Reposted by hackerfantastic.crypto
NEW: A secretive surveillance company is building "AI persona" bots for cops intended to gather evidence on people. Personas include "college protesters," "radicalized" divorced moms, children. We have docs that shows how it works and what cops can do with it:
www.404media.co/this-college...
www.404media.co/this-college...
This ‘College Protester’ Isn’t Real. It’s an AI-Powered Undercover Bot for Cops
Massive Blue is helping cops deploy AI-powered social media bots to talk to people they suspect are anything from violent sex criminals all the way to vaguely defined “protesters.”
www.404media.co
April 17, 2025 at 1:43 PM
NEW: A secretive surveillance company is building "AI persona" bots for cops intended to gather evidence on people. Personas include "college protesters," "radicalized" divorced moms, children. We have docs that shows how it works and what cops can do with it:
www.404media.co/this-college...
www.404media.co/this-college...
Exploitation of CVE-2025-21204. Low-privileged user creates an "inetpub" and populates with content. Administrator later installs IIS (logic bomb). The attackers malicious IIS data is still available, executes code under IIS privileges resulting in an LPE. KB/patches do stuff too
April 17, 2025 at 1:21 AM
Exploitation of CVE-2025-21204. Low-privileged user creates an "inetpub" and populates with content. Administrator later installs IIS (logic bomb). The attackers malicious IIS data is still available, executes code under IIS privileges resulting in an LPE. KB/patches do stuff too
Reposted by hackerfantastic.crypto
my takeaway from reading this is that i have to assume that every half-competent intelligence agency in the world has an almost real-time glimpse into what the white house and the pentagon are doing
March 24, 2025 at 4:40 PM
my takeaway from reading this is that i have to assume that every half-competent intelligence agency in the world has an almost real-time glimpse into what the white house and the pentagon are doing
Reposted by hackerfantastic.crypto
CISA has told workers in an email today to stop sending weekly responses to Musk's "What did you do last week?" email. The agency says it's still reviewing responses received to the initial Feb 28 email, and workers should withhold any additional responses "until further notice."
March 10, 2025 at 3:22 PM
CISA has told workers in an email today to stop sending weekly responses to Musk's "What did you do last week?" email. The agency says it's still reviewing responses received to the initial Feb 28 email, and workers should withhold any additional responses "until further notice."
Reposted by hackerfantastic.crypto
Breaking: Apple pulls end-to-end encrypted storage option from UK after secret order for a back door. www.washingtonpost.com/technology/2...
Apple yanks encrypted storage in U.K. instead of allowing backdoor access
Apple disabled its most secure data storage offering for new customers in the United Kingdom on Friday rather than comply with a secret government order.
www.washingtonpost.com
February 21, 2025 at 3:07 PM
Breaking: Apple pulls end-to-end encrypted storage option from UK after secret order for a back door. www.washingtonpost.com/technology/2...
Reposted by hackerfantastic.crypto
An unknown leaker has released what they claim to be an archive of internal Matrix chat logs with messages exchanged by Black Basta ransomware members between September 18, 2023, and September 28, 2024.
www.bleepingcomputer.com/news/securit...
www.bleepingcomputer.com/news/securit...
Black Basta ransomware gang's internal chat logs leak online
An unknown leaker has released what they claim to be an archive of internal Matrix chat logs belonging to the Black Basta ransomware operation.
www.bleepingcomputer.com
February 20, 2025 at 9:50 PM
An unknown leaker has released what they claim to be an archive of internal Matrix chat logs with messages exchanged by Black Basta ransomware members between September 18, 2023, and September 28, 2024.
www.bleepingcomputer.com/news/securit...
www.bleepingcomputer.com/news/securit...
Reposted by hackerfantastic.crypto
NEW: We caught another government spyware vendor, which made fake Android apps masquerading as WhatsApp and cellphone providers' apps.
The spyware, called Spyrtacus, was made by SIO, which sells to Italian government and says that it partners with "Police and Intelligence Agencies."
The spyware, called Spyrtacus, was made by SIO, which sells to Italian government and says that it partners with "Police and Intelligence Agencies."
Exclusive: Spyware maker caught distributing malicious Android apps for years
Italian company SIO, which sells to government customers, is behind an Android spyware campaign called Spyrtacus that spoofed popular apps like WhatsApp, per security researchers.
techcrunch.com
February 13, 2025 at 3:18 PM
NEW: We caught another government spyware vendor, which made fake Android apps masquerading as WhatsApp and cellphone providers' apps.
The spyware, called Spyrtacus, was made by SIO, which sells to Italian government and says that it partners with "Police and Intelligence Agencies."
The spyware, called Spyrtacus, was made by SIO, which sells to Italian government and says that it partners with "Police and Intelligence Agencies."
Reposted by hackerfantastic.crypto
BREAKING: We are suing DOGE and the Office of Personnel Management to stop the brazen and illegal data sharing of federal employee data with the “government efficiency” group.
EFF Sues DOGE and the Office of Personnel Management to Halt Ransacking of Federal Data
EFF and a coalition of privacy defenders have filed a lawsuit today asking a federal court to block Elon Musk’s Department of Government Efficiency (DOGE) from accessing the private information of mil...
www.eff.org
February 11, 2025 at 11:45 PM
BREAKING: We are suing DOGE and the Office of Personnel Management to stop the brazen and illegal data sharing of federal employee data with the “government efficiency” group.