Forwarded from Bones' Tech Garage
Courses can be very helpful but not necessary, most non-technical people could probably benefit from computer literacy courses. With some basic general knowledge on technology it could help most navigate the easy to make mistakes that cause headaches.
Such as safe browsing and email habits, how to properly turn the computer off, and other basic operations. These would translate to better use of Linux as well as Windows.
https://www.howtogeek.com/what-does-it-mean-to-learn-linux/
Such as safe browsing and email habits, how to properly turn the computer off, and other basic operations. These would translate to better use of Linux as well as Windows.
https://www.howtogeek.com/what-does-it-mean-to-learn-linux/
How-To Geek
What Does It Mean to "Learn" Linux
Does Linux Mint really require taking a course?
Forwarded from The Hacker News
⚡ THN Weekly Recap – This Week in Cyber:
– Chrome 0-Day exploited in the wild
– Kubernetes RCE nightmare exposed
– Solar inverters at risk of blackouts
– Rclone-powered leak site breached
– DNS-based phishing just got stealthier
📩 Catch up now: https://thehackernews.com/2025/03/weekly-recap-chrome-0-day.html
– Chrome 0-Day exploited in the wild
– Kubernetes RCE nightmare exposed
– Solar inverters at risk of blackouts
– Rclone-powered leak site breached
– DNS-based phishing just got stealthier
📩 Catch up now: https://thehackernews.com/2025/03/weekly-recap-chrome-0-day.html
Forwarded from The Hacker News
🚨 AWS doesn't secure your cloud—you do. Most cloud breaches happen because customers miss what's theirs to protect.
5 silent risks you're likely exposed to:
• SSRF attacks
• Leaky S3 buckets
• Over-permissive IAM
• Unpatched EC2
• Public-facing services
AWS secures the foundation. You secure the rest.
👉 Start scanning in minutes → https://thehackernews.com/2025/03/5-impactful-aws-vulnerabilities-youre.html
5 silent risks you're likely exposed to:
• SSRF attacks
• Leaky S3 buckets
• Over-permissive IAM
• Unpatched EC2
• Public-facing services
AWS secures the foundation. You secure the rest.
👉 Start scanning in minutes → https://thehackernews.com/2025/03/5-impactful-aws-vulnerabilities-youre.html
Forwarded from The Hacker News
🚨 Hackers are abusing WordPress mu-plugins—a hidden auto-run directory—to inject malware, hijack links, and redirect users to scam sites.
Also, add these to the list of 2024's major WordPress threats:
CVE-2024-27956 | SQL injection
CVE-2024-25600 | RCE in Bricks theme
CVE-2024-8353 | PHP injection
CVE-2024-4345 | Arbitrary file upload
If you run a WordPress site, check your mu-plugins folder NOW.
🛡️ Full story: https://thehackernews.com/2025/03/hackers-exploit-wordpress-mu-plugins-to.html
Also, add these to the list of 2024's major WordPress threats:
CVE-2024-27956 | SQL injection
CVE-2024-25600 | RCE in Bricks theme
CVE-2024-8353 | PHP injection
CVE-2024-4345 | Arbitrary file upload
If you run a WordPress site, check your mu-plugins folder NOW.
🛡️ Full story: https://thehackernews.com/2025/03/hackers-exploit-wordpress-mu-plugins-to.html
Forwarded from The Hacker News
🚨 A Russian group, Water Gamayun, is abusing a Windows zero-day (CVE-2025-26633) to drop two chilling backdoors: SilentPrism & DarkWisp.
They’re hiding in plain sight—using signed .msi files posing as legit apps like DingTalk & VooV to hijack systems.
👀 Targets? Your data, credentials, and even crypto wallets.
💀 Techniques? Living-off-the-land, PowerShell implants, fake WinRAR sites—pure cyber espionage playbook.
🔗 Learn more: https://thehackernews.com/2025/03/russian-hackers-exploit-cve-2025-26633.html
They’re hiding in plain sight—using signed .msi files posing as legit apps like DingTalk & VooV to hijack systems.
👀 Targets? Your data, credentials, and even crypto wallets.
💀 Techniques? Living-off-the-land, PowerShell implants, fake WinRAR sites—pure cyber espionage playbook.
🔗 Learn more: https://thehackernews.com/2025/03/russian-hackers-exploit-cve-2025-26633.html
Forwarded from The Hacker News
🔥 Apple hit with €150M fine for “biased” privacy rules.
France says Apple’s App Tracking Transparency (ATT) gave itself a privacy pass—while forcing rivals through a double-consent maze.
Regulators call it unfair, confusing, and not truly neutral.
https://thehackernews.com/2025/04/apple-fined-150-million-by-french.html
France says Apple’s App Tracking Transparency (ATT) gave itself a privacy pass—while forcing rivals through a double-consent maze.
Regulators call it unfair, confusing, and not truly neutral.
https://thehackernews.com/2025/04/apple-fined-150-million-by-french.html
Forwarded from Gizchina.com
Android Phone Running Slow? Try These 3 Secret Performance Boosters
https://www.gizchina.com/2025/03/31/android-phone-running-slow-try-these-3-secret-performance-boosters/
https://www.gizchina.com/2025/03/31/android-phone-running-slow-try-these-3-secret-performance-boosters/
Forwarded from Gizchina.com
Trump, Musk, and the DOGE Dilemma: Samsung May Lose Billions
https://www.gizchina.com/2025/03/31/trump-musk-and-the-doge-dilemma-samsung-may-lose-billions/
https://www.gizchina.com/2025/03/31/trump-musk-and-the-doge-dilemma-samsung-may-lose-billions/
Forwarded from Gizchina.com
Exynos 2600 Is Coming With the Samsung Galaxy S26 Series Says Leakster
https://www.gizchina.com/2025/04/01/exynos-2600-is-coming-with-the-samsung-galaxy-s26-series/
https://www.gizchina.com/2025/04/01/exynos-2600-is-coming-with-the-samsung-galaxy-s26-series/
Forwarded from ATT • Tech News (Agam)
France fines Apple €150M for “excessive” pop-ups that let users reject tracking
France has imposed a €150 million fine on Apple because its App Tracking Transparency (ATT) framework requires third-party publishers to get "double consent" for tracking, while Apple's own data collection only needs one pop-up.
This asymmetry is seen as making third-party app use overly complex and harming small publishers who rely on advertising revenue. This fine doesn't mandate immediate changes, leaving room for future adjustments. Also, investigations into ATT are ongoing in Germany, Italy, Poland, and Romania.
🔗 ArsTechnica
🧑💻 @agamtechtricks
France has imposed a €150 million fine on Apple because its App Tracking Transparency (ATT) framework requires third-party publishers to get "double consent" for tracking, while Apple's own data collection only needs one pop-up.
This asymmetry is seen as making third-party app use overly complex and harming small publishers who rely on advertising revenue. This fine doesn't mandate immediate changes, leaving room for future adjustments. Also, investigations into ATT are ongoing in Germany, Italy, Poland, and Romania.
Please open Telegram to view this post
VIEW IN TELEGRAM
Forwarded from cKure Red
https://cybersecuritynews.com/ramigpt-gain-root-access/
Please open Telegram to view this post
VIEW IN TELEGRAM
Cyber Security News
RamiGPT – AI Tool To Escalate Privilege & Gain Root Access Within a Minute
A new AI-driven offensive security tool, RamiGPT, is known for its ability to autonomously escalate privileges and gain root access to vulnerable systems in under a minute.
Forwarded from cKure
■■■■□🎲 Feberis Pro: 4-in-1 Expansion Board for Flipper Zero.
https://www.mobile-hacker.com/2025/03/31/feberis-pro-the-ultimate-4-in-1-expansion-board-for-flipper-zero/
https://www.mobile-hacker.com/2025/03/31/feberis-pro-the-ultimate-4-in-1-expansion-board-for-flipper-zero/
Please open Telegram to view this post
VIEW IN TELEGRAM
Mobile Hacker
Feberis Pro: The Ultimate 4-in-1 Expansion Board for Flipper Zero
In a previous blog post, I introduced Feberis, a versatile expansion board that enhanced the capabilities of the Flipper Zero by offering additional communication protocols. Now, I am excited to dive into the newly released Feberis Pro, a next-generation…
Forwarded from LinuxBloc
Ploopy Classic 2 is an upgraded trackball mouse available as a DIY kit or fully assembled - Liliputing
https://liliputing.com/ploopy-classic-2-is-an-upgraded-trackball-mouse-available-as-a-diy-kit-or-fully-assembled/
https://liliputing.com/ploopy-classic-2-is-an-upgraded-trackball-mouse-available-as-a-diy-kit-or-fully-assembled/
Liliputing
Ploopy Classic 2 is an upgraded trackball mouse available as a DIY kit or fully assembled
Ploopy Classic 2 is an upgraded trackball mouse available as a DIY kit or fully assembled
Forwarded from The Great Imperial Interdimensional Multiversal Holy DAO of NoGoolag (NoGoolag)
f-droid.org
PeakOrama | F-Droid - Free and Open Source Android App Repository
PeakOrama shows mountains around a location
This media is not supported in your browser
VIEW IN TELEGRAM
https://github.com/Kirlif/HBC-Tool
A command-line interface for disassembling and assembling the Hermes Bytecode.
Since the React Native team created their own JavaScript engine (named Hermes) for running the React Native application, the JavaScript source code is often compiled to the Hermes bytecode. In the penetration test project, I found that some React Native applications have already been migrated to the Hermes engine. It is really head for me to analyze or patch those applications. Therefore, I created hbctool for helping any pentester to test the Hermes bytecode.
For more information, please visit:
https://suam.wtf/posts/react-native-application-static-analysis-en/
A command-line interface for disassembling and assembling the Hermes Bytecode.
Since the React Native team created their own JavaScript engine (named Hermes) for running the React Native application, the JavaScript source code is often compiled to the Hermes bytecode. In the penetration test project, I found that some React Native applications have already been migrated to the Hermes engine. It is really head for me to analyze or patch those applications. Therefore, I created hbctool for helping any pentester to test the Hermes bytecode.
Hermes is an open-source JavaScript engine optimized for running React Native apps on Android. For many apps, enabling Hermes will result in improved start-up time, decreased memory usage, and smaller app size. At this time Hermes is an opt-in React Native feature, and this guide explains how to enable it.
For more information, please visit:
https://suam.wtf/posts/react-native-application-static-analysis-en/