🚨 CVSS 10.0 ALERT: Remote Code Execution in Erlang/OTP SSH (CVE-2025-32433)

No auth. Full control. Widespread impact.

Used in Cisco, Ericsson, OT/IoT, and edge systems, this bug lets attackers run code without logging in.

If SSH runs as root? Game over. 👀

🔗 Full details → https://thehackernews.com/2025/04/critical-erlangotp-ssh-vulnerability.html

🔥 Fix now → OTP-27.3.3 / 26.2.5.11 / 25.3.2.20 Block SSH ports as temp fix.

🔥 Blockchain won’t kill passwords yet—but it may change how we authenticate.

Decentralized IDs + cryptographic keys = fewer breaches, no central targets.

Used in finance (KYC) & healthcare (patient data), it’s real—and growing.

But until blockchain scales, passwords stay. Just make them strong.

➡️ Learn more: https://thehackernews.com/2025/04/blockchain-offers-security-benefits-but.html

🚨 Copy. Paste. Get hacked.

North Korea, Iran & Russia are now pushing ClickFix—a sneaky trick that fools users into running malware on their own devices.

Learn more → https://thehackernews.com/2025/04/state-sponsored-hackers-weaponize.html

🚨 AI isn’t just coding faster—it’s rewriting the rulebook.

LLMs have entered the threat landscape. From spear-phishing and voice fraud to malware with OCR, attackers are now using AI to scale, blend, and evolve.

Defenders use AI too—but GenAI interfaces expose a new attack surface.

🔗 Full deep dive in Security Navigator 2025: https://thehackernews.com/2025/04/artificial-intelligence-whats-all-fuss.html

🚨 China-backed hackers are deploying TONESHELL v3, StarProxy, and stealth tools like SplatCloak to breach Myanmar targets—dodging EDR, logging keystrokes, and hopping across networks with FakeTLS tricks.

• 3 TONESHELL variants
• 2 new keyloggers (PAKLOG, CorKLOG)
• StarProxy – a lateral movement proxy over FakeTLS
• SplatCloak – a Windows kernel-level EDR evasion driver

Details here 👉 https://thehackernews.com/2025/04/mustang-panda-targets-myanmar-with.html

Codex

A Lightweight coding agent that runs in your Linux terminal

🔗Links
- Requirements
- Installation
- Source code & more info

Organization: OpenAI

🏷 Tags: #AI #Linux #WSL #MacOS #Utilities #Coding

Scrcpy Android

A port of Scrcpy program for android devices.

🔗Links
- Download
- Screenshot
- Source code
Developer: zwc

❗️Friendly reminder:

If you find it useful, You may star the repo, donate to the developer, or perhaps you may also contribute to the development of this project.

🏷 Tags: #Android #Utilities

🎉 GOOGLE LISTENED!

Google is bringing back the dedicated Do Not Disturb shortcut in Quick Settings for people who hate Modes.

More details + screenshots👇

🔗 https://www.androidauthority.com/android-do-not-disturb-shortcut-3545687/

🚨Google has announced Android 16 Beta 4, the last scheduled update in the Android 16 beta program!

Android 16 Beta 4 is the second platform stability release, which means all developer APIs and app-facing behaviors are final.

The Android 16 Beta is also available on select devices from Honor, iQOO, Lenovo, OnePlus, OPPO, Realme, vivo, and Xiaomi.

🪞Need a touch up? Android will soon let you apply effects to any video call

Google is working on a "Video Chat" panel that lets you apply effects like background blur, portrait lighting, and more to video calls.

More info + screenshots👇

🔗 https://www.androidauthority.com/android-video-chat-effects-3545747/

The Android 16 Beta 4 update is now rolling out to users over-the-air!

Our advice, get rid of the smart home devices or at least use self hosted ones.

https://www.xda-developers.com/why-i-kicked-alexa-out-of-my-smart-home/

#Wiz acquisition puts #israeli intelligence in charge of your #Google data

https://www.mintpressnews.com/oogle-wiz-cybersecurity-data-deal/289413/

.. Yet it has also raised fears about the security of user data, particularly of those who oppose Israeli actions against its neighbors, given #Unit8200’s long history of using tech to spy on opponents, gather intelligence, and use that knowledge for extortion and blackmail.. .

Google’s purchase of Wiz deepens its already close ties to Unit 8200. In 2013, the tech giant acquired Waze, an online maps service founded by three Unit 8200 veterans, for $1.3 billion. It has also directly hired dozens of former spooks and spies to fill its ranks; a 2022 MintPress News investigation found at least 99 former Unit 8200 agents working at the Silicon Valley behemoth.

@MintPress
#why

What is Cutegram?

Cutegram is a free and opensource telegram clients for Linux, Windows, OS X and OpenBSD, focusing on user friendly, compatibility with desktop environments. Cutegram using Qt5, QML, libqtelegram, libappindication, AsemanQtTools technologies and Faenza icons and Twitter emojies graphic sets. It’s free and released under GPLv3 license.

Is it safe?
Cutegram is a free and open-source software. It means everyone can read the source code and mechanism of the Cutegram and There is no private things about Cutegram. Also Cutegram is tested and certified by the Softpedia.

Read more & Download https://www.unixmen.com/cutegram-better-telegram-client-gnulinux/

Source code : https://github.com/Aseman-Land/Cutegram

Jellyfin as a Spotify Alternative
Article, Comments

Replacing CVE
Article, Comments

Microsoft researchers developed a hyper-efficient AI model that can run on CPUs
Article, Comments

Former cybersecurity chief Chris Krebs leaves SentinelOne after executive order
Article, Comments

Unix files have (at least) two sizes
Article, Comments