LightNews LightNews
lilbindle.bsky.social
@lilbindle.bsky.social
10 followers 150 following 1 posts
Posts Replies Media Videos
Reposted
fr4via.bsky.social
blog.quarkslab.com/attacking-th...
Attacking the Samsung Galaxy A* Boot Chain
We discovered several vulnerabilities impacting the boot chain of several Samsung devices. Chained together, they allow us to execute code in the bootloader, get root access on Android with persistenc...
blog.quarkslab.com
March 4, 2025 at 11:13 AM
Reposted
goodrevenue.bsky.social
Hackers impersonated a US Congressman to steal intel on trade talks with China.
State-sponsored cyberattacks are getting bolder — are we prepared?

🎥 Full discussion:zurl.co/zh15s

#CyberSecurity #Geopolitics #Hacking #goodrevenue
🚨AI Pirates Are Guilty 📚, Hackers Impersonate Congress 🕵️‍♂️, & Bye Bye, Quarterly Reports? 🤔
Trust in business and government is crumbling — while AI piracy, cyberattacks, and regulatory rollbacks accelerate. What does this mean for investors, consum...
www.youtube.com
September 18, 2025 at 11:06 PM
Reposted
ninjaowl.ai
SonicWall urges admins to patch critical RCE flaw in SMA 100 devices #cybersecurity #hacking #news #infosec #security #technology #privacy www.bleepingcomputer...
SonicWall urges admins to patch critical RCE flaw in SMA 100 devices
SonicWall urges customers to patch SMA 100 series appliances against a critical authenticated arbitrary file upload vulnerability that can let attackers gain remote code execution.
www.bleepingcomputer.com
July 25, 2025 at 8:12 AM
Reposted
ninjaowl.ai
Mitel warns of critical MiVoice MX-ONE authentication bypass flaw #cybersecurity #hacking #news #infosec #security #technology #privacy www.bleepingcomputer...
Mitel warns of critical MiVoice MX-ONE authentication bypass flaw
Mitel Networks has released security updates to patch a critical-severity authentication bypass vulnerability impacting its MiVoice MX-ONE enterprise communications platform.
www.bleepingcomputer.com
July 25, 2025 at 10:22 AM
Reposted
ninjaowl.ai
Soco404 and Koske Malware Target Cloud Services with Cross-Platform Cryptomining Attacks #cybersecurity #hacking #news #infosec #security #technology #privacy thehackernews.com/20...
July 25, 2025 at 11:06 AM
Reposted
ninjaowl.ai
New Koske Linux malware hides in cute panda images #cybersecurity #hacking #news #infosec #security #technology #privacy www.bleepingcomputer...
New Koske Linux malware hides in cute panda images
A new Linux malware named Koske may have been developed with artificial intelligence and is using seemingly benign JPEG images of panda bears to deploy malware directly into system memory.
www.bleepingcomputer.com
July 25, 2025 at 11:26 AM
Reposted
ninjaowl.ai
Woman gets 8 years for aiding North Koreans infiltrate 300 US firms #cybersecurity #hacking #news #infosec #security #technology #privacy www.bleepingcomputer...
Woman gets 8 years for aiding North Koreans infiltrate 300 US firms
Christina Marie Chapman, a 50-year-old woman from Arizona, was sentenced to 102 months in prison after pleading guilty to her involvement in a scheme that enabled North Korean IT workers to infiltrate 309 U.S. companies.
www.bleepingcomputer.com
July 25, 2025 at 11:50 AM
Reposted
ninjaowl.ai
CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing #cybersecurity #hacking #news #infosec #security #technology #privacy thehackernews.com/20...
July 25, 2025 at 1:36 PM
Reposted
ninjaowl.ai
U.S. Sanctions Firm Behind N. Korean IT Scheme; Arizona Woman Jailed for Running Laptop Farm #cybersecurity #hacking #news #infosec #security #technology #privacy thehackernews.com/20...
July 25, 2025 at 3:17 PM
Reposted
ninjaowl.ai
Microsoft says Warlock ransomware deployed in SharePoint attacks as governments scramble #cybersecurity #hacking #news #infosec #security #technology #privacy therecord.media/micr...
Microsoft says Warlock ransomware deployed in SharePoint attacks as governments scramble
Netherlands-based cybersecurity firm Eye Security told Reuters and Bloomberg that hackers have successfully breached at least 400 governments and businesses around the world.
therecord.media
July 25, 2025 at 3:52 PM
Reposted
ninjaowl.ai
Hackers breach Toptal GitHub account, publish malicious npm packages #cybersecurity #hacking #news #infosec #security #technology #privacy www.bleepingcomputer...
Hackers breach Toptal GitHub account, publish malicious npm packages
Hackers compromised Toptal's GitHub organization account and used their access to publish ten malicious packages on the Node Package Manager (NPM) index.
www.bleepingcomputer.com
July 25, 2025 at 5:02 PM
Reposted
ninjaowl.ai
Fire Ant Exploits VMware Flaws to Compromise ESXi Hosts and vCenter Environments #cybersecurity #hacking #news #infosec #security #technology #privacy thehackernews.com/20...
July 25, 2025 at 6:06 PM
Reposted
ninjaowl.ai
Hacker sneaks infostealer malware into early access Steam game #cybersecurity #hacking #news #infosec #security #technology #privacy www.bleepingcomputer...
Hacker sneaks infostealer malware into early access Steam game
A threat actor called EncryptHub has compromised a game on Steam to distribute info-stealing malware to unsuspecting users downloading the title.
www.bleepingcomputer.com
July 25, 2025 at 8:17 PM
Reposted
ninjaowl.ai
Steam games abused to deliver malware once again #cybersecurity #hacking #news #infosec #security #technology #privacy www.malwarebytes.com...
July 25, 2025 at 7:44 PM
Reposted
vulnerability-lookup.social.circl.lu.ap.brid.gy
You can now share your thoughts on vulnerability CVE-2025-8167 in Vulnerability-Lookup:
https://vulnerability.circl.lu/vuln/CVE-2025-8167

code-projects - Church Donation System

#vulnerabilitylookup #vulnerability #cybersecurity #bot
cvelistv5 - CVE-2025-8167
Vulnerability-Lookup - Fast vulnerability lookup correlation from different sources.
vulnerability.circl.lu
July 25, 2025 at 7:45 PM
Reposted
saelo.bsky.social
And I've also updated our V8 Exploit Tracker sheet now: docs.google.com/document/d/1... (see the 2025 tab) :)
V8 Exploit Tracker
2024 Issue First Exploited Description Exploit requires V8 Sandbox Bypass Exploit requires optimizing JITs (Turbofan & Maglev) Exploit requires any JITs (Liftoff, Sparkplug, Maglev & Turbofan) Varian...
docs.google.com
June 3, 2025 at 7:42 AM
Reposted
cybdetective.bsky.social
Python OSINT Notebook

- Core Tools & Libraries
- Installation & Configuration
- Using OSINT Tools via CLI
- Python Scripting with OSINT Libraries
- Combining Tools in a Script
- OSINT Data Integration

and more.

github.com/tegridydev/p...

Contributor @mechanistics.bsky.social
April 24, 2025 at 4:32 PM
Reposted
ninjaowl.ai
Hackers abuse IPv6 networking feature to hijack software updates #cybersecurity #hacking #news #infosec #security #technology #privacy www.bleepingcomputer...
Hackers abuse IPv6 networking feature to hijack software updates
A China-aligned APT threat actor named "TheWizards" abuses an IPv6 networking feature to launch adversary-in-the-middle (AitM) attacks that hijack software updates to install Windows malware.
www.bleepingcomputer.com
May 10, 2025 at 10:47 PM
Reposted
hacknotice.bsky.social
When Hackers Get Hacked: The Ironies of Cybersecurity #Cybersecurity #Hackers #DataBreach
May 10, 2025 at 10:48 PM
Reposted
rednafi.com
Postgres just got async read in v18. It’s on beta but the feature is already turned on by default.

Pairing that with Linux’s io_uring makes reads about 3x faster. The tricky part is that EXPLAIN ANALYZE output gets a bit fuzzy now, since reads don’t block anymore.

pganalyze.com/blog/postgre...
Waiting for Postgres 18: Accelerating Disk Reads with Asynchronous I/O
Postgres 18 introduces Asynchronous I/O (AIO) that can dramatically improve read performance, especially in the cloud. Learn how these changes and the new io_method setting work and see why our benchm...
pganalyze.com
May 8, 2025 at 10:22 AM
Reposted
sam4k.com
with offensivecon around the corner, i figured id write another post on linux kernel exploitation techniques - this time i cover the world of page table exploitation! enjoy 🤓

sam4k.com/page-table-k...
Kernel Exploitation Techniques: Turning The (Page) Tables
This post explores attacking page tables as a Linux kernel exploitation technique for gaining powerful read/write primitives.
sam4k.com
May 8, 2025 at 1:58 PM
Reposted
bluesky.awakari.com
AhnLab Detection Information on BPFDoor Exploited in Recent Hacking Attacks and KISA Hash Notice BPFDoor is a Linux-based backdoor malware. AhnLab previously published their EDR detection information on this malware through the ASEC blog in October 2024...

| Details | Interest | Feed |
Origin
asec.ahnlab.com
May 10, 2025 at 9:32 PM
Reposted
angieboggust.bsky.social
Check out Abstraction Alignment at #CHI2025!

📄Paper: arxiv.org/abs/2407.12543
💻Demo: vis.mit.edu/abstraction-...
🎥Video: www.youtube.com/watch?v=cLi9...
🔗Project: vis.mit.edu/pubs/abstrac...

With Hyemin (Helen) Bang, @henstr.bsky.social, and @arvind.bsky.social
Abstraction Alignment: Comparing Model-Learned and Human-Encoded Conceptual Relationships
While interpretability methods identify a model's learned concepts, they overlook the relationships between concepts that make up its abstractions and inform its ability to generalize to new data. To ...
arxiv.org
April 14, 2025 at 3:48 PM
Reposted
henstr.bsky.social
The new official paper/poster browser for ICLR 2025 is out.
Enjoy!

iclr2025.vizhub.ai

#iclr #ai #iclr2025
April 18, 2025 at 4:21 PM