A new phishing campaign targets critical UAE sectors with a Go-based backdoor, Sosano. The attack uses a compromised Indian electronics company to deliver a targeted payload.

Learn more: https://thehackernews.com/2025/03/suspected-iranian-hackers-used.html

Cyberattacks are getting smarter—are you?

Threat-Led Vulnerability Management (TLVM) helps you focus on the vulnerabilities most likely to be exploited, making your defenses stronger and your resources smarter.

Discover how to optimize your strategy: https://thehackernews.com/expert-insights/2025/03/why-now-is-time-to-adopt-threat-led.html

⚠️ ALERT: VMware ESXi, Workstation, and Fusion products have critical vulnerabilities that are being actively exploited.

These flaws could allow remote code execution and information disclosure.

Learn more about the vulnerabilities and fixes here: https://thehackernews.com/2025/03/vmware-security-flaws-exploited-in.html

Credential stuffing is getting harder to stop, but attackers are evolving. Stolen credentials, often just $10, drive 80% of web app attacks, and the threat is growing.

With billions of compromised credentials out there, attacks can spread quickly and widely.

Learn more about this shift in attack strategies: https://thehackernews.com/2025/03/how-new-ai-agents-will-transform.html

Black Basta and CACTUS ransomware groups now share the same BackConnect module, signaling a shift in attack methods.

The overlap in tactics means cybersecurity professionals must watch for threats across multiple ransomware families.

Read here: https://thehackernews.com/2025/03/researchers-link-cactus-ransomware.html

Portable Gaming Made Easy: Use Your USB Drive
https://www.gizchina.com/2025/03/04/portable-gaming-made-easy-use-your-usb-drive/

For all users updated his MIUI to HyperOS
Don't give up 👋🤘

"Well, this is the last dance."

We believe someone has already noticed that in the later versions of HyperOS on some models, downgrading the Settings has been prohibited (blacklisted), which confirms our previous speculation. In HyperOS 2, it is no longer possible to downgrade the Settings to Android 14 one, as the system has now been updated to Android 15.

While the HyperOS BootLoader Bypass project, in conjunction with the new vulnerabilities we already mastered, can still be used in HyperOS 2 to bypass community qualification, we've decided not to disclose the PoC for these new vulnerabilities. This is due to their slightly more dangerous than the previously disclosed.

We recommend that if you still have the requirement to unlock the BootLoader, then the best approach is not to purchase any devices that release with HyperOS, including overseas variants. Stock devices should always be unlocked before upgrading to HyperOS 2 to avoid any inconvenience. If you have already upgraded your device, please consult the after-sales service to request a system downgrade.

We still look forward to the day when Xiaomi rediscovers its geek spirit, just as Xiaomi always believes that something wonderful is about to happen.

By the way, at 00:00 UTC+8 every day, remember to open the Xiaomi community to apply for unlocking.

Create with love, NekoYuzu
February 15, 2025

Telegram Might Start Using CAPTCHA

Changes in the TDLib source code indicate that the messenger may start using a CAPTCHA — an "I'm not a robot" verification for certain actions. According to the code, the verification will be applied only in official Telegram apps.

Generally, CAPTCHA is used to protect against spam and other unwanted requests. Previously, the messenger could only block such suspicious actions.

It is still unknown for which actions and how often the verification may be required. There is a chance Telegram may use an invisible CAPTCHA, which will collect signals in the background and provide Telegram with a bot score when it needs it.

@tginfo editors think CAPTCHA can reduce the number of errors and floodwaits experienced by some users. Alas, if this leads to more abuse, the messenger may tighten the system instead, and in that case, CAPTCHA will become an additional source of annoyance — and if Telegram will use an invisible CAPTCHA, users would not have alternative paths of remedy in cases when their activity is deemed suspicious.

The source code mentions reCAPTCHA — a user verification solution by Google. This is probably the technology that the messenger will be using. This raises some questions about privacy, since reCAPCHA uses extensive data collection to detect bots. Keep in mind that the feature is still in development, and the Telegram team may modify or cancel it.

#tdlib #antispam

But pajeets are cheaper....
In hermoney every hour 0.33 new babies are borning. In India every hours 2450 baby born....😏
And because every of them want to work for big tech companies, in 2050 the average salary will be 350 yuro per month....because they will willing to work for that. 😒

Really interesting article on the dark origins of the technocracy, and how a technocratic government would operate. Seems like we are closer than ever before

As someone who believes in the power of technology, its disturbing to see the technocratic vision of reducing human themes into a formulaic problem to be solved, which requires mass surveillance of a magnitude never seen before.

Technocracy, both then and now, is literally inhuman. It elevates technological development above morality. As Taylor made clear, “the system must be first.”

People like Elon Musk and Jeff Bezos want to install a Technocracy and live in it—or at least make us live in it. Why? Do they hope we will all live “lives of abundance” under Technocracy? Or do they envisage themselves as elitist members of Continental Control, with a free hand to socially engineer the rest of us, whom they view as a herd of “human animals”?

NEW - The Dark MAGA Gov-Corp Technate - Part 1

In this piece, Iain Davis starts off this 2-part series with a masterful explanation of the philosophy and political theory hiding in plain sight behind key figures shaping the policies of the Trump administration. He lays out how Technocracy and the neoreactionary "Dark Enlightenment" are converging to usher in a multipolar "new world order" framed as a libertarian revolution.

https://unlimitedhangout.com/2025/03/investigative-series/the-dark-maga-gov-corp-technate-part-1/

EvilLoader: Yesterday was published PoC for unpatched vulnerability affecting Telegram for Android.
The exploit has been sold on underground forum since January 2025.✅Don't install external players if requested by received corrupted video file on Telegram.
https://www.mobile-hacker.com/2025/03/05/evilloader-unpatched-telegram-for-android-vulnerability-disclosed/

Minimo Launcher

Designed for users who want to de-clutter their home screen, Minimo offers a clean and intuitive interface that prioritizes functionality without unnecessary distractions.

🔗 Links:
- Download
- Screenshots
- Features
- Source code
Developer: VaibhavLakhera

🏷️ Tags: #Android #Launcher

No keys? No worries! You can control your Raspberry Pi with an on-screen keyboard!

https://itsfoss.com/raspberry-pi-os-onscreen-keyboard/