#A15 #Unofficial #TD #GSI #LineageOS #Light

Build Date: 2025 01 31
January 2025 Security Patch

LineageOS 22.1 2025.01.31
Latest

Changelog

Sync with latest sources of LineageOS and Treble Droid
Fix fingerprint scanners

Features

For a/b devices only
No inbuilt root
Fixes that will never be in aosp
Face unlock
Forced LTE_CA
EROFS(Requires kernel 5.4+, and the corresponding fstab entries)
All ext4 builds are fully rw
No fixes from me for specific devices

Note

From main thing to know, I'm primarily building a GSI for myself. I need exactly LineageOS base + EROFS. And I can't fix bugs on all kinds of devices

Maintainer: MisterZtr
Download

@treblegsis_privacysecure_chat
@treblegsis_privacysecure_channel

#A15 #Unofficial #TD #GSI #CalyxOS #AOSP

Build Date: 🤷‍♂️
January 2025 Security Patch

CalyxOS 6.3.2 Release Candidate 1

Changelog

Idunno

Note

Your Phone Should Be Private.
CalyxOS is a privacy-focused, de-Googled Android-based operating system designed to enhance security while maintaining usability.

Please, please support the developers of Calyx OS if you like this firmware!
I would like to note now that this GSI is not hardened the way an official CalyxOS build is, because it inherits the vendor kernel ..

Special Thanks​

CalyxOS developers
Phh
AndyYan

Maintainer: Nullvalue
Download

@treblegsis_privacysecure_chat
@treblegsis_privacysecure_channel

#A15 #Unofficial #TD #GSI #CipherOS #AOSP

Build Date: 2025 02 03
November 2024 Security Patch

CipherOS 6.0 Beta 2025.02.03

Changelog

Test build

Features

For a/b devices only
No inbuilt root
Fixes that will never be in aosp
Face unlock
Forced LTE_CA
EROFS(Requires kernel 5.4+, and the corresponding fstab entries)
All ext4 builds are fully rw
No fixes from me for specific devices

Note

From main thing to know, I'm primarily building a GSI for myself. I need exactly LineageOS base + EROFS. And I can't fix bugs on all kinds of devices

Maintainer: MisterZtr
Download

@treblegsis_privacysecure_chat
@treblegsis_privacysecure_channel

if you are looking for a much simpler self hosted cloud experience than Nextcloud.

https://pimylifeup.com/raspberry-pi-casaos/

⚠️ New Mirai Botnet Variant Aquabot Targets CVE-2024-41710 in Mitel Phones for DDoS Attacks.

The flaw affects Mitel 6800, 6900, 6900w phones and Mitel 6970 Conference Units. Attackers have been exploiting CVE-2024-41710 since January 2025.

Attackers are using Telegram to sell DDoS services—this threat is already commercialized.

Learn more: https://thehackernews.com/2025/01/new-aquabot-botnet-exploits-cve-2024.html

🚨 Security Flaws Discovered in Voyager PHP Package.

Attackers can exploit these UNPATCHED flaws with just one click—allowing them to execute arbitrary code remotely.

Click here to learn more: https://thehackernews.com/2025/01/unpatched-php-voyager-flaws-leave.html

🚨 AI Startup #DeepSeek Exposes Sensitive Data!

A ClickHouse database was exposed on the internet, allowing anyone to access internal secrets, chat logs, API secrets, and more—all unprotected.

Read more: https://thehackernews.com/2025/01/deepseek-ai-database-exposed-over-1.html

⚡ SOC Analysts Are Burning Out!

Manual tasks, false positives, and tool overload—AI is the solution SOC teams need NOW.

AI enables faster research, quicker analysis, and smarter responses to emerging threats.

Learn more: https://thehackernews.com/2025/01/soc-analysts-reimagining-their-role.html

⚠️ Warning: Critical Flaw Discovered in Lightning AI Studio!

The vulnerability allowed attackers to run commands with root privileges, potentially compromising entire AI projects.

Get the full analysis: https://thehackernews.com/2025/01/lightning-ai-studio-vulnerability.html

🔒 International law enforcement has dismantled infamous cybercrime hubs linked to platforms like Cracked, Nulled, StarkRDP and Sellix.

These platforms sold malware, hack tools, and personal data.

🔗 Read more about the "Operation Talent" — https://thehackernews.com/2025/01/authorities-seize-domains-of-popular.html

🚨 ALERT: Over 57 threat actors from China, Iran, North Korea, and Russia are now using Google's Gemini AI to power their malicious cyber operations.

From researching vulnerabilities to crafting phishing campaigns, they’re leveraging GenAI for faster, more efficient cybercrime.

Learn more: https://thehackernews.com/2025/01/google-over-57-nation-state-threat.html

🚨 High-Risk VMware Vulnerabilities Discovered – Update ASAP!

5 major flaws have been found in VMware Aria Operations & Aria Operations for Logs, with CVSS scores ranging from 4.3 to 8.5. Attackers could escalate privileges, steal credentials, or inject malicious scripts.

🔗 Read more: https://thehackernews.com/2025/01/broadcom-patches-vmware-aria-flaws.html

🚨 Google Blocks 2.36 Million Harmful Android Apps in 2024. Over 158,000 bad developer accounts banned.

Even apps outside the official store are being scrutinized—your device’s defense is constantly evolving.

👉 Learn more: https://thehackernews.com/2025/01/google-bans-158000-malicious-android.html

⚠️ Italy Bans DeepSeek AI Service Over Questionable Data Practices and Privacy Concerns!

Meanwhile, malicious hackers are exploiting DeepSeek's AI models to generate dangerous content.

🔗 Read the full story: https://thehackernews.com/2025/01/italy-bans-chinese-deepseek-ai-over.html

🚨 AI is changing the game of social engineering—forever.

Hackers now manipulate trust & emotions to launch attacks at scale. AI lets hackers replicate voices, faces, and even your colleagues.

👉 Read the full story: https://thehackernews.com/2025/01/top-5-ai-powered-social-engineering.html

🛑 CISA and FDA have just issued urgent warnings about critical flaws in Contec CMS8000 and Epsimed MN-120 patient monitors.

Hackers could exploit these flaws to gain remote access to devices, overwrite files & even steal sensitive patient data.

Read: https://thehackernews.com/2025/01/cisa-and-fda-warn-of-critical-backdoor.html

🚨 Attack Alert: Cybercriminals are using bogus Google ads to direct Microsoft advertisers to phishing pages designed to capture login details and 2FA codes.

Over 630 phishing pages detected, with domains mostly hosted in Brazil.

Read the full report: https://thehackernews.com/2025/02/malvertising-scam-uses-fake-google-ads.html

🚨 WARNING: WhatsApp uncovers major spyware campaign targeting journalists!

➤ 90+ victims were attacked by Israeli firm Paragon Solutions.
➤ Zero-click spyware deployed via a PDF file—no action from the user needed

👉 Full story: https://thehackernews.com/2025/02/meta-confirms-zero-click-whatsapp.html

🔐 BeyondTrust’s breach compromised 17 Remote Support SaaS customers, caused by a compromised API key.

Attackers exploited a zero-day vulnerability in a third-party app to reset application passwords.

Federal agencies, including the U.S. Treasury, were affected by this breach.

Read the full report: https://thehackernews.com/2025/02/beyondtrust-zero-day-breach-exposes-17.html

🔥 BUSTED — 39 Cybercrime Domains Shut Down in Massive Global Takedown.

U.S. and Dutch law enforcement have just crippled a major fraud network responsible for over $3 million in scams, selling phishing kits, scam pages, and fraud tools.

Learn more: https://thehackernews.com/2025/02/us-and-dutch-authorities-dismantle-39.html