Forwarded from Android Security & Malware
iOS 18.6.1 0-click RCE POC (CVE-2025-43300)
https://github.com/b1n4r1b01/n-days/blob/main/CVE-2025-43300.md
https://github.com/b1n4r1b01/n-days/blob/main/CVE-2025-43300.md
GitHub
n-days/CVE-2025-43300.md at main · b1n4r1b01/n-days
Contribute to b1n4r1b01/n-days development by creating an account on GitHub.
Forwarded from The Hacker News
CISA just flagged 3 new actively exploited flaws—two in Citrix Session Recording, one in Git.
The Git bug (CVE-2025-48384) can let attackers run arbitrary code just by cloning a repo. Proof-of-concept exploit is already out.
Here’s what you need to know ↓ https://thehackernews.com/2025/08/cisa-adds-three-exploited.html
The Git bug (CVE-2025-48384) can let attackers run arbitrary code just by cloning a repo. Proof-of-concept exploit is already out.
Here’s what you need to know ↓ https://thehackernews.com/2025/08/cisa-adds-three-exploited.html
Forwarded from The Hacker News
🛑 Important: Google is locking down Android.
Starting Sept 2026, every app — even outside the Play Store — must come from a verified developer.
No more anonymous sideloads. No quick comebacks for malware gangs.
First up: Brazil, Indonesia, Singapore, Thailand.
Full story ↓ https://thehackernews.com/2025/08/google-to-verify-all-android-developers.html
Starting Sept 2026, every app — even outside the Play Store — must come from a verified developer.
No more anonymous sideloads. No quick comebacks for malware gangs.
First up: Brazil, Indonesia, Singapore, Thailand.
Full story ↓ https://thehackernews.com/2025/08/google-to-verify-all-android-developers.html
Forwarded from The Hacker News
📢 Google & Workday both confirmed breaches this summer — attackers slipped in through social engineering, not software flaws.
The group behind it, ShinyHunters, used phone scams + fake apps to access Salesforce data.
Here’s what actually happened ↓ https://thehackernews.com/expert-insights/2025/08/shinyhunters-data-breach-vs-saas-why.html
The group behind it, ShinyHunters, used phone scams + fake apps to access Salesforce data.
Here’s what actually happened ↓ https://thehackernews.com/expert-insights/2025/08/shinyhunters-data-breach-vs-saas-why.html
Forwarded from The Hacker News
🚨 A new Android banking trojan just leveled up: HOOK now locks victims’ screens with ransomware-style extortion demands.
Worse? It can also steal your banking logins, crypto wallets, PIN codes—and even stream your screen.
Here’s how it works ↓ https://thehackernews.com/2025/08/hook-android-trojan-adds-ransomware.html
Worse? It can also steal your banking logins, crypto wallets, PIN codes—and even stream your screen.
Here’s how it works ↓ https://thehackernews.com/2025/08/hook-android-trojan-adds-ransomware.html
Forwarded from The Hacker News
🚨 Over 100 hacked WordPress sites are being used in a new campaign called ShadowCaptcha — luring visitors with fake CAPTCHA checks that drop info-stealers, ransomware, and crypto miners.
The trick? Copy-pasted commands from your clipboard turn into attacks.
Here’s what you need to know ↓ https://thehackernews.com/2025/08/shadowcaptcha-exploits-wordpress-sites.html
The trick? Copy-pasted commands from your clipboard turn into attacks.
Here’s what you need to know ↓ https://thehackernews.com/2025/08/shadowcaptcha-exploits-wordpress-sites.html
Install this app, this app list modules of magisk, ksu, apatch, you can add customized repo's too. Too many option. https://github.com/MMRLApp/MMRL
GitHub
GitHub - MMRLApp/MMRL: A app for managing, sharing, and exploring Magisk modules across repositories
A app for managing, sharing, and exploring Magisk modules across repositories - MMRLApp/MMRL
Forwarded from It's FOSS
HDR support comes to Wayland sessions for Chromium.
https://news.itsfoss.com/chromium-native-hdr-support-wayland/
https://news.itsfoss.com/chromium-native-hdr-support-wayland/
It's FOSS
Chromium Adds Native HDR Support for Linux Wayland
A win for users of Wayland sessions in Linux.
Forwarded from It's FOSS
Looking for games without the chaos? Here are the best picks! 🕹🐧
https://itsfoss.com/non-violent-games-llinux/
https://itsfoss.com/non-violent-games-llinux/
It's FOSS
Best Non-Violent Games Available on Steam for Linux Users
This one is for the nonchalant Linux gamers in the house.
Forwarded from It's FOSS
ArmSoM is on a roll. The AIM7 is now at its final stage of crowdfunding:
https://news.itsfoss.com/armsom-aim7-debuts/
https://news.itsfoss.com/armsom-aim7-debuts/
It's FOSS
ArmSoM AIM7 Debuts on Crowd Supply: A Jetson Nano-Compatible AI Module with RK3588 Power
Compact AI module promises Jetson Nano compatibility and a powerful RK3588 chip.
Forwarded from Android Security & Malware
ELEGANTBOUNCER: Catch iOS 0-click exploits without having the samples.
Features iOS backup forensics & messaging app scanning for iMessage, WhatsApp, Signal, Telegram & Viber attachments.
https://www.msuiche.com/posts/elegantbouncer-when-you-cant-get-the-samples-but-still-need-to-catch-the-threat/
Features iOS backup forensics & messaging app scanning for iMessage, WhatsApp, Signal, Telegram & Viber attachments.
https://www.msuiche.com/posts/elegantbouncer-when-you-cant-get-the-samples-but-still-need-to-catch-the-threat/
Msuiche
ELEGANTBOUNCER: When You Can't Get the Samples but Still Need to Catch the Threat | Matt Suiche
The story of how ELEGANTBOUNCER was born from the frustration of not having access to in-the-wild exploit samples, and why structural analysis beats signatures for advanced mobile threats
Forwarded from R0rt1z2’s Dumpster
Media is too big
VIEW IN TELEGRAM
Geometry Dash on the Amazon Echo Spot, unironically, the touch is way more responsive than on many other devices I own
Forwarded from Tech & Leaks Zone
Veritasium made an interesting deep-dive on how lithium ion batteries in your smartphones work.
Sony was the first brand to coin 'lithium-ion' and make it commercially available for everyone.
https://youtu.be/AGglJehON5g?si=94xAOqrKC1Pasl-b
Sony was the first brand to coin 'lithium-ion' and make it commercially available for everyone.
https://youtu.be/AGglJehON5g?si=94xAOqrKC1Pasl-b
YouTube
The Perfect Battery Material Is Dangerous
High-energy rechargeable batteries seemed impossible, until we made them. Sponsored by CodeRabbit. Cut code review time and bugs in half. Try CodeRabbit at https://coderabbit.link/veritasium
If you’re looking for a molecular modelling kit, try Snatoms, a…
If you’re looking for a molecular modelling kit, try Snatoms, a…
Forwarded from Tech & Leaks Zone
Realme is touting their upcoming smartphone as a "Chill Fan Phone" with a built-in "AC" feature
Follow @TechLeaksZone
Follow @TechLeaksZone
Forwarded from vx-underground
A disgruntled employee inserted a "kill switch" into his employers network. In the event he was laid off, his malicious code would trigger.
The code included the function "IsDLEnabledInAD"
His name was Davis Lu
Truly an epic gamer moment. He got sentenced to 4 years in prison
The code included the function "IsDLEnabledInAD"
His name was Davis Lu
Truly an epic gamer moment. He got sentenced to 4 years in prison