Top Security News for Today
Local privilege escalation on Zyxel USG FLEX H Series (CVE-2025-1731)
https://www.reddit.com/r/netsec/comments/1k5roqe/local_privilege_escalation_on_zyxel_usg_flex_h/
Regulating AI Behavior with a Hypervisor
https://www.schneier.com/blog/archives/2025/04/regulating-ai-behavior-with-a-hypervisor.html
Understanding the threat landscape for Kubernetes and containerized assets
https://www.microsoft.com/en-us/security/blog/2025/04/23/understanding-the-threat-landscape-for-kubernetes-and-containerized-assets/
XRP Supplychain attack: Official NPM package infected with crypto stealing backdoor
https://www.reddit.com/r/netsec/comments/1k54dna/xrp_supplychain_attack_official_npm_package/
DOGE Worker’s Code Supports NLRB Whistleblower
https://krebsonsecurity.com/2025/04/doge-workers-code-supports-nlrb-whistleblower/
Authenticated Remote Code Execution on USG FLEX H Series (CVE-2025-1731 / CVE-2025-1732)
https://www.reddit.com/r/netsec/comments/1k6f52p/authenticated_remote_code_execution_on_usg_flex_h/
Operation SyncHole: Lazarus APT goes back to the well
https://securelist.com/operation-synchole-watering-hole-attacks-by-lazarus/116326/
Scams 2.0: How Technology Is Powering the Next Generation of Fraud
https://www.tripwire.com/state-of-security/scams-how-technology-powering-next-generation-fraud
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Local privilege escalation on Zyxel USG FLEX H Series (CVE-2025-1731)
https://www.reddit.com/r/netsec/comments/1k5roqe/local_privilege_escalation_on_zyxel_usg_flex_h/
Regulating AI Behavior with a Hypervisor
https://www.schneier.com/blog/archives/2025/04/regulating-ai-behavior-with-a-hypervisor.html
Understanding the threat landscape for Kubernetes and containerized assets
https://www.microsoft.com/en-us/security/blog/2025/04/23/understanding-the-threat-landscape-for-kubernetes-and-containerized-assets/
XRP Supplychain attack: Official NPM package infected with crypto stealing backdoor
https://www.reddit.com/r/netsec/comments/1k54dna/xrp_supplychain_attack_official_npm_package/
DOGE Worker’s Code Supports NLRB Whistleblower
https://krebsonsecurity.com/2025/04/doge-workers-code-supports-nlrb-whistleblower/
Authenticated Remote Code Execution on USG FLEX H Series (CVE-2025-1731 / CVE-2025-1732)
https://www.reddit.com/r/netsec/comments/1k6f52p/authenticated_remote_code_execution_on_usg_flex_h/
Operation SyncHole: Lazarus APT goes back to the well
https://securelist.com/operation-synchole-watering-hole-attacks-by-lazarus/116326/
Scams 2.0: How Technology Is Powering the Next Generation of Fraud
https://www.tripwire.com/state-of-security/scams-how-technology-powering-next-generation-fraud
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Local privilege escalation on Zyxel USG FLEX H Series (CVE-2025-1731)
Explore this post and more from the netsec community
Top Security News for Today
Certifying Knowledge Comprehension in LLMs
https://arxiv.org/abs/2402.15929
Fire In The Hole, We’re Breaching The Vault - Commvault Remote Code Execution (CVE-2025-34028) - watchTowr Labs
https://www.reddit.com/r/netsec/comments/1k6ogjy/fire_in_the_hole_were_breaching_the_vault/
GitHub potential leaking of private emails and Hacker One
https://www.reddit.com/r/netsec/comments/1k6owdl/github_potential_leaking_of_private_emails_and/
SonicWall Sonicos Versions 7.1.x and 8.0.x
https://bishopfox.com/blog/sonicwall-sonicos-versions-7-1-x-and-8-0-x
New whitepaper outlines the taxonomy of failure modes in AI agents
https://www.microsoft.com/en-us/security/blog/2025/04/24/new-whitepaper-outlines-the-taxonomy-of-failure-modes-in-ai-agents/
2 New UAF Vulnerabilities in Chrome
https://www.reddit.com/r/netsec/comments/1k6r7r8/2_new_uaf_vulnerabilities_in_chrome/
New Linux Rootkit
https://www.schneier.com/blog/archives/2025/04/new-linux-rootkit.html
io_uring Is Back, This Time as a Rootkit
https://www.reddit.com/r/netsec/comments/1k73fcr/io_uring_is_back_this_time_as_a_rootkit/
Tyton – Kernel-Mode Rootkit Hunter for Linux
https://www.darknet.org.uk/2025/04/tyton-kernel-mode-rootkit-hunter-for-linux/
Addressing a Large-Scale Data Breach: Seeking Network Security Expertise
https://www.reddit.com/r/netsec/comments/1k77q6j/addressing_a_largescale_data_breach_seeking/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Certifying Knowledge Comprehension in LLMs
https://arxiv.org/abs/2402.15929
Fire In The Hole, We’re Breaching The Vault - Commvault Remote Code Execution (CVE-2025-34028) - watchTowr Labs
https://www.reddit.com/r/netsec/comments/1k6ogjy/fire_in_the_hole_were_breaching_the_vault/
GitHub potential leaking of private emails and Hacker One
https://www.reddit.com/r/netsec/comments/1k6owdl/github_potential_leaking_of_private_emails_and/
SonicWall Sonicos Versions 7.1.x and 8.0.x
https://bishopfox.com/blog/sonicwall-sonicos-versions-7-1-x-and-8-0-x
New whitepaper outlines the taxonomy of failure modes in AI agents
https://www.microsoft.com/en-us/security/blog/2025/04/24/new-whitepaper-outlines-the-taxonomy-of-failure-modes-in-ai-agents/
2 New UAF Vulnerabilities in Chrome
https://www.reddit.com/r/netsec/comments/1k6r7r8/2_new_uaf_vulnerabilities_in_chrome/
New Linux Rootkit
https://www.schneier.com/blog/archives/2025/04/new-linux-rootkit.html
io_uring Is Back, This Time as a Rootkit
https://www.reddit.com/r/netsec/comments/1k73fcr/io_uring_is_back_this_time_as_a_rootkit/
Tyton – Kernel-Mode Rootkit Hunter for Linux
https://www.darknet.org.uk/2025/04/tyton-kernel-mode-rootkit-hunter-for-linux/
Addressing a Large-Scale Data Breach: Seeking Network Security Expertise
https://www.reddit.com/r/netsec/comments/1k77q6j/addressing_a_largescale_data_breach_seeking/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
arXiv.org
Certifying Knowledge Comprehension in LLMs
Large Language Models (LLMs) are increasingly deployed in safety-critical systems where they provide answers based on in-context information derived from knowledge bases. As LLMs are increasingly...
Top Security News for Today
Triada strikes back
https://securelist.com/triada-trojan-modules-analysis/116380/
5 CVEs and a CISA Advisory for Planet Technology industrial switches
https://www.reddit.com/r/netsec/comments/1k7hcog/5_cves_and_a_cisa_advisory_for_planet_technology/
Cryptocurrency Thefts Get Physical
https://www.schneier.com/blog/archives/2025/04/cryptocurrency-thefts-get-physical.html
Three new vulnerabilities found related to IXON VPN client resulting in Local Privilege Escalation (LPE)
https://www.reddit.com/r/netsec/comments/1k7ilys/three_new_vulnerabilities_found_related_to_ixon/
Is airplane mode lying? A browser behavior demo that messes with expectations.
https://www.reddit.com/r/netsec/comments/1k7il8o/is_airplane_mode_lying_a_browser_behavior_demo/
Remote Code Execution on Viasat Modems (CVE-2024-6198)
https://www.reddit.com/r/netsec/comments/1k7knmy/remote_code_execution_on_viasat_modems_cve20246198/
Explore practical best practices to secure your data with Microsoft Purview
https://www.microsoft.com/en-us/security/blog/2025/04/25/explore-practical-best-practices-to-secure-your-data-with-microsoft-purview/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Triada strikes back
https://securelist.com/triada-trojan-modules-analysis/116380/
5 CVEs and a CISA Advisory for Planet Technology industrial switches
https://www.reddit.com/r/netsec/comments/1k7hcog/5_cves_and_a_cisa_advisory_for_planet_technology/
Cryptocurrency Thefts Get Physical
https://www.schneier.com/blog/archives/2025/04/cryptocurrency-thefts-get-physical.html
Three new vulnerabilities found related to IXON VPN client resulting in Local Privilege Escalation (LPE)
https://www.reddit.com/r/netsec/comments/1k7ilys/three_new_vulnerabilities_found_related_to_ixon/
Is airplane mode lying? A browser behavior demo that messes with expectations.
https://www.reddit.com/r/netsec/comments/1k7il8o/is_airplane_mode_lying_a_browser_behavior_demo/
Remote Code Execution on Viasat Modems (CVE-2024-6198)
https://www.reddit.com/r/netsec/comments/1k7knmy/remote_code_execution_on_viasat_modems_cve20246198/
Explore practical best practices to secure your data with Microsoft Purview
https://www.microsoft.com/en-us/security/blog/2025/04/25/explore-practical-best-practices-to-secure-your-data-with-microsoft-purview/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Top Security News for Today
A Novel Graph Transformer Framework for Gene Regulatory Network Inference
https://arxiv.org/abs/2504.16961
RomHack 2025 Call for Papers
https://www.reddit.com/r/netsec/comments/1k8xj1s/romhack_2025_call_for_papers/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
A Novel Graph Transformer Framework for Gene Regulatory Network Inference
https://arxiv.org/abs/2504.16961
RomHack 2025 Call for Papers
https://www.reddit.com/r/netsec/comments/1k8xj1s/romhack_2025_call_for_papers/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
arXiv.org
A Novel Graph Transformer Framework for Gene Regulatory Network Inference
The inference of gene regulatory networks (GRNs) is a foundational stride towards deciphering the fundamentals of complex biological systems. Inferring a possible regulatory link between two genes...
Top Security News for Today
RomHack 2025 Call for Papers
https://www.reddit.com/r/netsec/comments/1k8xj1s/romhack_2025_call_for_papers/
Comprehensive 2025 Report: Software Security Market Trends and User Pain Points in China
https://www.reddit.com/r/netsec/comments/1k96wqs/comprehensive_2025_report_software_security/
Symbol Database for Reverse Engineers
https://www.reddit.com/r/netsec/comments/1k9bdh2/symbol_database_for_reverse_engineers/
RSAC Freeroll Poker Tournament
https://www.reddit.com/r/netsec/comments/1k9focg/rsac_freeroll_poker_tournament/
How a Single Line Of Code Could Brick Your iPhone
https://www.reddit.com/r/netsec/comments/1k9hxj1/how_a_single_line_of_code_could_brick_your_iphone/
DataSurgeon – Fast, Flexible Data Extraction and Transformation Tool for Linux
https://www.darknet.org.uk/2025/04/datasurgeon-fast-flexible-data-extraction-and-transformation-tool-for-linux/
NVIDIA Riva Vulnerabilities Leave AI-Powered Speech and Translation Services at Risk
https://www.trendmicro.com/en_us/research/25/d/nvidia-riva-vulnerabilities.html
28th April – Threat Intelligence Report
https://research.checkpoint.com/2025/28th-april-threat-intelligence-report/
New Bill Mandates Cybersecurity Overhaul for Federal Contractors
https://www.tripwire.com/state-of-security/new-bill-mandates-cybersecurity-overhaul-federal-contractors
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
RomHack 2025 Call for Papers
https://www.reddit.com/r/netsec/comments/1k8xj1s/romhack_2025_call_for_papers/
Comprehensive 2025 Report: Software Security Market Trends and User Pain Points in China
https://www.reddit.com/r/netsec/comments/1k96wqs/comprehensive_2025_report_software_security/
Symbol Database for Reverse Engineers
https://www.reddit.com/r/netsec/comments/1k9bdh2/symbol_database_for_reverse_engineers/
RSAC Freeroll Poker Tournament
https://www.reddit.com/r/netsec/comments/1k9focg/rsac_freeroll_poker_tournament/
How a Single Line Of Code Could Brick Your iPhone
https://www.reddit.com/r/netsec/comments/1k9hxj1/how_a_single_line_of_code_could_brick_your_iphone/
DataSurgeon – Fast, Flexible Data Extraction and Transformation Tool for Linux
https://www.darknet.org.uk/2025/04/datasurgeon-fast-flexible-data-extraction-and-transformation-tool-for-linux/
NVIDIA Riva Vulnerabilities Leave AI-Powered Speech and Translation Services at Risk
https://www.trendmicro.com/en_us/research/25/d/nvidia-riva-vulnerabilities.html
28th April – Threat Intelligence Report
https://research.checkpoint.com/2025/28th-april-threat-intelligence-report/
New Bill Mandates Cybersecurity Overhaul for Federal Contractors
https://www.tripwire.com/state-of-security/new-bill-mandates-cybersecurity-overhaul-federal-contractors
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: RomHack 2025 Call for Papers
Explore this post and more from the netsec community
Top Security News for Today
Introducing HANAlyzer: An Open-Source Tool to Secure Your HANA databases - Anvil Secure
https://www.reddit.com/r/netsec/comments/1k9t61b/introducing_hanalyzer_an_opensource_tool_to/
Fuzzing Windows ARM64 closed-source binary with QBDI and libFuzzer
https://www.reddit.com/r/netsec/comments/1k9ui2q/fuzzing_windows_arm64_closedsource_binary_with/
Windscribe Acquitted on Charges of Not Collecting Users’ Data
https://www.schneier.com/blog/archives/2025/04/windscribe-acquitted-on-charges-of-not-collecting-users-data.html
Using an LLM with MCP for Threat Hunting
https://www.reddit.com/r/netsec/comments/1kad8eg/using_an_llm_with_mcp_for_threat_hunting/
Ransomware Attacks on Critical Infrastructure Surge, Reports FBI
https://www.tripwire.com/state-of-security/ransomware-attacks-critical-infrastructure-surge-reports-fbi
The Growing Threat of Ransomware to the Manufacturing Sector
https://www.tripwire.com/state-of-security/growing-threat-ransomware-manufacturing-sector
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Introducing HANAlyzer: An Open-Source Tool to Secure Your HANA databases - Anvil Secure
https://www.reddit.com/r/netsec/comments/1k9t61b/introducing_hanalyzer_an_opensource_tool_to/
Fuzzing Windows ARM64 closed-source binary with QBDI and libFuzzer
https://www.reddit.com/r/netsec/comments/1k9ui2q/fuzzing_windows_arm64_closedsource_binary_with/
Windscribe Acquitted on Charges of Not Collecting Users’ Data
https://www.schneier.com/blog/archives/2025/04/windscribe-acquitted-on-charges-of-not-collecting-users-data.html
Using an LLM with MCP for Threat Hunting
https://www.reddit.com/r/netsec/comments/1kad8eg/using_an_llm_with_mcp_for_threat_hunting/
Ransomware Attacks on Critical Infrastructure Surge, Reports FBI
https://www.tripwire.com/state-of-security/ransomware-attacks-critical-infrastructure-surge-reports-fbi
The Growing Threat of Ransomware to the Manufacturing Sector
https://www.tripwire.com/state-of-security/growing-threat-ransomware-manufacturing-sector
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Introducing HANAlyzer: An Open-Source Tool to Secure Your HANA databases - Anvil Secure
Posted by tlxio - 8 votes and 0 comments
Top Security News for Today
Outlaw cybergang attacking targets worldwide
https://securelist.com/outlaw-botnet/116444/
Applying Security Engineering to Prompt Injection Security
https://www.schneier.com/blog/archives/2025/04/applying_security_engineering_to_prompt_injection_security.html
AirBorne: Wormable Zero-Click RCE in Apple AirPlay Puts Billions of Devices at Risk
https://www.reddit.com/r/netsec/comments/1kapirk/airborne_wormable_zeroclick_rce_in_apple_airplay/
Microsoft announces the 2025 Security Excellence Awards winners
https://www.microsoft.com/en-us/security/blog/2025/04/29/microsoft-announces-the-2025-security-excellence-awards-winners/
Shadow Roles: AWS Defaults Can Open the Door to Service Takeover
https://www.reddit.com/r/netsec/comments/1kas6ia/shadow_roles_aws_defaults_can_open_the_door_to/
Hello 0-Days, My Old Friend: A 2024 Zero-Day Exploitation Analysis
https://www.reddit.com/r/netsec/comments/1kawg9i/hello_0days_my_old_friend_a_2024_zeroday/
Understanding the Deep Web, Dark Web, and Darknet (2025 Guide)
https://www.darknet.org.uk/2025/04/understanding-the-deep-web-dark-web-and-darknet-2025-guide/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Outlaw cybergang attacking targets worldwide
https://securelist.com/outlaw-botnet/116444/
Applying Security Engineering to Prompt Injection Security
https://www.schneier.com/blog/archives/2025/04/applying_security_engineering_to_prompt_injection_security.html
AirBorne: Wormable Zero-Click RCE in Apple AirPlay Puts Billions of Devices at Risk
https://www.reddit.com/r/netsec/comments/1kapirk/airborne_wormable_zeroclick_rce_in_apple_airplay/
Microsoft announces the 2025 Security Excellence Awards winners
https://www.microsoft.com/en-us/security/blog/2025/04/29/microsoft-announces-the-2025-security-excellence-awards-winners/
Shadow Roles: AWS Defaults Can Open the Door to Service Takeover
https://www.reddit.com/r/netsec/comments/1kas6ia/shadow_roles_aws_defaults_can_open_the_door_to/
Hello 0-Days, My Old Friend: A 2024 Zero-Day Exploitation Analysis
https://www.reddit.com/r/netsec/comments/1kawg9i/hello_0days_my_old_friend_a_2024_zeroday/
Understanding the Deep Web, Dark Web, and Darknet (2025 Guide)
https://www.darknet.org.uk/2025/04/understanding-the-deep-web-dark-web-and-darknet-2025-guide/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Securelist
Outlaw botnet detected in an incident contained by Kaspersky
The Kaspersky Global Emergency Response Team (GERT) detected an Outlaw mining botnet in a customer incident. In this article, we share insights into this botnet's SSH-based infection chain.
Top Security News for Today
Samsung MagicINFO Unauthenticated RCE
https://www.reddit.com/r/netsec/comments/1kbc6vd/samsung_magicinfo_unauthenticated_rce/
A Technical Review of AI-Infra-Guard V2: New MCP Server Security Analysis Tool
https://www.reddit.com/r/netsec/comments/1kbbu88/a_technical_review_of_aiinfraguard_v2_new_mcp/
WhatsApp Case Against NSO Group Progressing
https://www.schneier.com/blog/archives/2025/04/whatsapp-case-against-nso-group-progressing.html
I tried out vibe hacking with Cursor. It kinda worked and I ultimately found RCE.
https://www.reddit.com/r/netsec/comments/1kbet3a/i_tried_out_vibe_hacking_with_cursor_it_kinda/
Exploring the State of AI in Cyber Security: Past, Present, and Future
https://research.checkpoint.com/2025/sate-of-ai-in-cyber-security/
Using AI to find Web App vulnerabilities: hacking expert John Hammond takes Burp AI for a Spin
https://portswigger.net/blog/using-ai-to-find-web-app-vulnerabilities-hacking-expert-john-hammond-takes-burp-ai-for-a-spin
The Growing Threat of Ransomware-as-a-Service (RaaS) on Healthcare Infrastructure
https://www.tripwire.com/state-of-security/growing-threat-ransomware-service-raas-healthcare-infrastructure
Supercharging Ghidra: Using Local LLMs with GhidraMCP via Ollama and OpenWeb-UI
https://www.reddit.com/r/netsec/comments/1kbfaer/supercharging_ghidra_using_local_llms_with/
14 secure coding tips: Learn from the experts at Microsoft Build
https://techcommunity.microsoft.com/blog/microsoft-security-blog/14-secure-coding-tips-learn-from-the-experts-at-build/4407147
Hijacking NodeJS’ Jenkins Agents For Code Execution and More
https://www.reddit.com/r/netsec/comments/1kbpj9h/hijacking_nodejs_jenkins_agents_for_code/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Samsung MagicINFO Unauthenticated RCE
https://www.reddit.com/r/netsec/comments/1kbc6vd/samsung_magicinfo_unauthenticated_rce/
A Technical Review of AI-Infra-Guard V2: New MCP Server Security Analysis Tool
https://www.reddit.com/r/netsec/comments/1kbbu88/a_technical_review_of_aiinfraguard_v2_new_mcp/
WhatsApp Case Against NSO Group Progressing
https://www.schneier.com/blog/archives/2025/04/whatsapp-case-against-nso-group-progressing.html
I tried out vibe hacking with Cursor. It kinda worked and I ultimately found RCE.
https://www.reddit.com/r/netsec/comments/1kbet3a/i_tried_out_vibe_hacking_with_cursor_it_kinda/
Exploring the State of AI in Cyber Security: Past, Present, and Future
https://research.checkpoint.com/2025/sate-of-ai-in-cyber-security/
Using AI to find Web App vulnerabilities: hacking expert John Hammond takes Burp AI for a Spin
https://portswigger.net/blog/using-ai-to-find-web-app-vulnerabilities-hacking-expert-john-hammond-takes-burp-ai-for-a-spin
The Growing Threat of Ransomware-as-a-Service (RaaS) on Healthcare Infrastructure
https://www.tripwire.com/state-of-security/growing-threat-ransomware-service-raas-healthcare-infrastructure
Supercharging Ghidra: Using Local LLMs with GhidraMCP via Ollama and OpenWeb-UI
https://www.reddit.com/r/netsec/comments/1kbfaer/supercharging_ghidra_using_local_llms_with/
14 secure coding tips: Learn from the experts at Microsoft Build
https://techcommunity.microsoft.com/blog/microsoft-security-blog/14-secure-coding-tips-learn-from-the-experts-at-build/4407147
Hijacking NodeJS’ Jenkins Agents For Code Execution and More
https://www.reddit.com/r/netsec/comments/1kbpj9h/hijacking_nodejs_jenkins_agents_for_code/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Samsung MagicINFO Unauthenticated RCE
Posted by Straight-Zombie-646 - 2 votes and 0 comments
Top Security News for Today
Inside the Latest Espionage Campaign of Nebulous Mantis
https://www.reddit.com/r/netsec/comments/1kc2cae/inside_the_latest_espionage_campaign_of_nebulous/
US as a Surveillance State
https://www.schneier.com/blog/archives/2025/05/us-as-a-surveillance-state.html
Pushing passkeys forward: Microsoft’s latest updates for simpler, safer sign-ins
https://www.microsoft.com/en-us/security/blog/2025/05/01/pushing-passkeys-forward-microsofts-latest-updates-for-simpler-safer-sign-ins/
Analyzing CVE-2025-31191: A macOS security-scoped bookmarks-based sandbox escape
https://www.microsoft.com/en-us/security/blog/2025/05/01/analyzing-cve-2025-31191-a-macos-security-scoped-bookmarks-based-sandbox-escape/
xAI Dev Leaks API Key for Private SpaceX, Tesla LLMs
https://krebsonsecurity.com/2025/05/xai-dev-leaks-api-key-for-private-spacex-tesla-llms/
Shell3r – Powerful Shellcode Obfuscator for Offensive Security
https://www.darknet.org.uk/2025/05/shell3r-powerful-shellcode-obfuscator-for-offensive-security/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Inside the Latest Espionage Campaign of Nebulous Mantis
https://www.reddit.com/r/netsec/comments/1kc2cae/inside_the_latest_espionage_campaign_of_nebulous/
US as a Surveillance State
https://www.schneier.com/blog/archives/2025/05/us-as-a-surveillance-state.html
Pushing passkeys forward: Microsoft’s latest updates for simpler, safer sign-ins
https://www.microsoft.com/en-us/security/blog/2025/05/01/pushing-passkeys-forward-microsofts-latest-updates-for-simpler-safer-sign-ins/
Analyzing CVE-2025-31191: A macOS security-scoped bookmarks-based sandbox escape
https://www.microsoft.com/en-us/security/blog/2025/05/01/analyzing-cve-2025-31191-a-macos-security-scoped-bookmarks-based-sandbox-escape/
xAI Dev Leaks API Key for Private SpaceX, Tesla LLMs
https://krebsonsecurity.com/2025/05/xai-dev-leaks-api-key-for-private-spacex-tesla-llms/
Shell3r – Powerful Shellcode Obfuscator for Offensive Security
https://www.darknet.org.uk/2025/05/shell3r-powerful-shellcode-obfuscator-for-offensive-security/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Inside the Latest Espionage Campaign of Nebulous Mantis
Posted by small_talk101 - 17 votes and 0 comments
Top Security News for Today
AI hiveminds can exploit vulnerabilities 25% faster—here’s how they work
https://www.reddit.com/r/netsec/comments/1kcwgxl/ai_hiveminds_can_exploit_vulnerabilities_25/
NCSC Guidance on “Advanced Cryptography”
https://www.schneier.com/blog/archives/2025/05/ncsc-guidance-on-advanced-cryptography.html
Privacy for Agentic AI
https://www.schneier.com/blog/archives/2025/05/privacy-for-agentic-ai.html
Friday Squid Blogging: Pyjama Squid
https://www.schneier.com/blog/archives/2025/05/friday-squid-blogging-pyjama-squid.html
Rosetta-PL: Propositional Logic as a Benchmark for Large Language Model Reasoning
https://arxiv.org/abs/2505.00001
Symbol grounding in computational systems: A paradox of intentions
https://arxiv.org/abs/2505.00002
Triggering Hallucinations in LLMs: A Quantitative Study of Prompt-Induced Hallucination in Large Language Models
https://arxiv.org/abs/2505.00557
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
AI hiveminds can exploit vulnerabilities 25% faster—here’s how they work
https://www.reddit.com/r/netsec/comments/1kcwgxl/ai_hiveminds_can_exploit_vulnerabilities_25/
NCSC Guidance on “Advanced Cryptography”
https://www.schneier.com/blog/archives/2025/05/ncsc-guidance-on-advanced-cryptography.html
Privacy for Agentic AI
https://www.schneier.com/blog/archives/2025/05/privacy-for-agentic-ai.html
Friday Squid Blogging: Pyjama Squid
https://www.schneier.com/blog/archives/2025/05/friday-squid-blogging-pyjama-squid.html
Rosetta-PL: Propositional Logic as a Benchmark for Large Language Model Reasoning
https://arxiv.org/abs/2505.00001
Symbol grounding in computational systems: A paradox of intentions
https://arxiv.org/abs/2505.00002
Triggering Hallucinations in LLMs: A Quantitative Study of Prompt-Induced Hallucination in Large Language Models
https://arxiv.org/abs/2505.00557
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: AI hiveminds can exploit vulnerabilities 25% faster—here’s how they work
Explore this post and more from the netsec community
Top Security News for Today
Perhaps Beyond Human Translation: Harnessing Multi-Agent Collaboration for Translating Ultra-Long Literary Texts
https://arxiv.org/abs/2405.11804
The Chromium Security Paradox
https://www.reddit.com/r/netsec/comments/1kdptq1/the_chromium_security_paradox/
Base Models Beat Aligned Models at Randomness and Creativity
https://arxiv.org/abs/2505.00047
The Malware That Outsmarted Antivirus, Firewalls, and Humans — Meet Chimera
https://www.reddit.com/r/netsec/comments/1ke6yjz/the_malware_that_outsmarted_antivirus_firewalls/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Perhaps Beyond Human Translation: Harnessing Multi-Agent Collaboration for Translating Ultra-Long Literary Texts
https://arxiv.org/abs/2405.11804
The Chromium Security Paradox
https://www.reddit.com/r/netsec/comments/1kdptq1/the_chromium_security_paradox/
Base Models Beat Aligned Models at Randomness and Creativity
https://arxiv.org/abs/2505.00047
The Malware That Outsmarted Antivirus, Firewalls, and Humans — Meet Chimera
https://www.reddit.com/r/netsec/comments/1ke6yjz/the_malware_that_outsmarted_antivirus_firewalls/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
arXiv.org
(Perhaps) Beyond Human Translation: Harnessing Multi-Agent...
Literary translation remains one of the most challenging frontiers in machine translation due to the complexity of capturing figurative language, cultural nuances, and unique stylistic elements....
Top Security News for Today
YARA Playground - Client Side WASM
https://www.reddit.com/r/netsec/comments/1kem25a/yara_playground_client_side_wasm/
Upload Bypass – Bypass Upload Restrictions During Penetration Testing
https://www.darknet.org.uk/2025/05/upload_bypass-bypass-upload-restrictions-during-penetration-testing/
Learning resourcez
https://0x00sec.org/t/learning-resourcez/43812
Reddit shadowban architecture creates silent data harvesting risk, undermines trust boundaries
https://www.reddit.com/r/netsec/comments/1kf1ujt/reddit_shadowban_architecture_creates_silent_data/
Strengthening Cybersecurity Incident Response Part 2: From Detection to Recovery
https://www.tripwire.com/state-of-security/strengthening-cybersecurity-incident-response-part-2-detection-recovery
Getting Email Security Right
https://www.tripwire.com/state-of-security/getting-email-security-right
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
YARA Playground - Client Side WASM
https://www.reddit.com/r/netsec/comments/1kem25a/yara_playground_client_side_wasm/
Upload Bypass – Bypass Upload Restrictions During Penetration Testing
https://www.darknet.org.uk/2025/05/upload_bypass-bypass-upload-restrictions-during-penetration-testing/
Learning resourcez
https://0x00sec.org/t/learning-resourcez/43812
Reddit shadowban architecture creates silent data harvesting risk, undermines trust boundaries
https://www.reddit.com/r/netsec/comments/1kf1ujt/reddit_shadowban_architecture_creates_silent_data/
Strengthening Cybersecurity Incident Response Part 2: From Detection to Recovery
https://www.tripwire.com/state-of-security/strengthening-cybersecurity-incident-response-part-2-detection-recovery
Getting Email Security Right
https://www.tripwire.com/state-of-security/getting-email-security-right
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: YARA Playground - Client Side WASM
Posted by Diligent_Desk5592 - 16 votes and 3 comments
Top Security News for Today
Threat Intelligence Report
https://research.checkpoint.com/2025/5th-may-threat-intelligence-report/
A Basic Guide to Fuzzing with AFL++ Unicorn Mode
https://www.reddit.com/r/netsec/comments/1kfbnrp/a_basic_guide_to_fuzzing_with_afl_unicorn_mode/
Shuffling the Greatest Hits: How DragonForce Ransomware Samples LockBit and Conti Into a Ransomware Jukebox
https://www.reddit.com/r/netsec/comments/1kfbwf7/shuffling_the_greatest_hits_how_dragonforce/
Another Move in the Deepfake Creation/Detection Arms Race
https://www.schneier.com/blog/archives/2025/05/another-move-in-the-deepfake-creation-detection-arms-race.html
Microsoft partners with Global Anti-Scam Alliance to fight cybercrime
https://www.microsoft.com/en-us/security/blog/2025/05/05/microsoft-partners-with-global-anti-scam-alliance-to-fight-cybercrime/
FIRST HOPE TALKS ANNOUNCED
https://www.2600.com/content/first-hope-talks-announced
Snowflake’s AI Bypasses Access Controls
https://www.reddit.com/r/netsec/comments/1kfwve5/snowflakes_ai_bypasses_access_controls/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Threat Intelligence Report
https://research.checkpoint.com/2025/5th-may-threat-intelligence-report/
A Basic Guide to Fuzzing with AFL++ Unicorn Mode
https://www.reddit.com/r/netsec/comments/1kfbnrp/a_basic_guide_to_fuzzing_with_afl_unicorn_mode/
Shuffling the Greatest Hits: How DragonForce Ransomware Samples LockBit and Conti Into a Ransomware Jukebox
https://www.reddit.com/r/netsec/comments/1kfbwf7/shuffling_the_greatest_hits_how_dragonforce/
Another Move in the Deepfake Creation/Detection Arms Race
https://www.schneier.com/blog/archives/2025/05/another-move-in-the-deepfake-creation-detection-arms-race.html
Microsoft partners with Global Anti-Scam Alliance to fight cybercrime
https://www.microsoft.com/en-us/security/blog/2025/05/05/microsoft-partners-with-global-anti-scam-alliance-to-fight-cybercrime/
FIRST HOPE TALKS ANNOUNCED
https://www.2600.com/content/first-hope-talks-announced
Snowflake’s AI Bypasses Access Controls
https://www.reddit.com/r/netsec/comments/1kfwve5/snowflakes_ai_bypasses_access_controls/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Check Point Research
5th May – Threat Intelligence Report - Check Point Research
For the latest discoveries in cyber research for the week of 5th May, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Three major UK retailers – Co-op, Harrods and Marks & Spencer (M&S) – were hit by cyberattacks that disrupted…
Top Security News for Today
Fake Student Fraud in Community Colleges
https://www.schneier.com/blog/archives/2025/05/fake-student-fraud-in-community-colleges.html
SonicBoom, From Stolen Tokens to Remote Shells - SonicWall SMA100 (CVE-2023-44221, CVE-2024-38475) - watchTowr Labs
https://www.reddit.com/r/netsec/comments/1kclo6p/sonicboom_from_stolen_tokens_to_remote_shells/
My Zero Day Quest
https://www.reddit.com/r/netsec/comments/1kfxobk/my_zero_day_quest/
Snowflake’s AI Bypasses Access Controls
https://www.reddit.com/r/netsec/comments/1kfwve5/snowflakes_ai_bypasses_access_controls/
The Cloud Hunting Games
https://www.reddit.com/r/netsec/comments/1kgcq32/the_cloud_hunting_games/
AI-Powered Cybercrime in 2025 – The Dark Web’s New Arms Race
https://www.darknet.org.uk/2025/05/ai-powered-cybercrime-in-2025-the-dark-webs-new-arms-race/
Essential Cybersecurity Controls (ECC-1:2018) – A Comprehensive Guide
https://www.tripwire.com/state-of-security/essential-cybersecurity-controls-ecc-12018-comprehensive-guide
Inferno Drainer Reloaded: Deep Dive into the Return of the Most Sophisticated Crypto Drainer
https://research.checkpoint.com/2025/inferno-drainer-reloaded-deep-dive-into-the-return-of-the-most-sophisticated-crypto-drainer/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Fake Student Fraud in Community Colleges
https://www.schneier.com/blog/archives/2025/05/fake-student-fraud-in-community-colleges.html
SonicBoom, From Stolen Tokens to Remote Shells - SonicWall SMA100 (CVE-2023-44221, CVE-2024-38475) - watchTowr Labs
https://www.reddit.com/r/netsec/comments/1kclo6p/sonicboom_from_stolen_tokens_to_remote_shells/
My Zero Day Quest
https://www.reddit.com/r/netsec/comments/1kfxobk/my_zero_day_quest/
Snowflake’s AI Bypasses Access Controls
https://www.reddit.com/r/netsec/comments/1kfwve5/snowflakes_ai_bypasses_access_controls/
The Cloud Hunting Games
https://www.reddit.com/r/netsec/comments/1kgcq32/the_cloud_hunting_games/
AI-Powered Cybercrime in 2025 – The Dark Web’s New Arms Race
https://www.darknet.org.uk/2025/05/ai-powered-cybercrime-in-2025-the-dark-webs-new-arms-race/
Essential Cybersecurity Controls (ECC-1:2018) – A Comprehensive Guide
https://www.tripwire.com/state-of-security/essential-cybersecurity-controls-ecc-12018-comprehensive-guide
Inferno Drainer Reloaded: Deep Dive into the Return of the Most Sophisticated Crypto Drainer
https://research.checkpoint.com/2025/inferno-drainer-reloaded-deep-dive-into-the-return-of-the-most-sophisticated-crypto-drainer/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Schneier on Security
Fake Student Fraud in Community Colleges - Schneier on Security
Reporting on the rise of fake students enrolling in community college courses: The bots’ goal is to bilk state and federal financial aid money by enrolling in classes, and remaining enrolled in them, long enough for aid disbursements to go out. They often…
Top Security News for Today
We Got Tired of Labs NOT preparing us for Real Targets… So We Built This (Seeking Beta Feedback!)
https://www.reddit.com/r/netsec/comments/1kgsx1p/we_got_tired_of_labs_not_preparing_us_for_real/
State of ransomware in 2025
https://securelist.com/state-of-ransomware-in-2025/116475/
Drag and pwnd: Exploiting VS Code with ASCII
https://www.reddit.com/r/netsec/comments/1kgty8a/drag_and_pwnd_exploiting_vs_code_with_ascii/
SysOwned, Your Friendly Support Ticket - SysAid On-Premise Pre-Auth RCE Chain (CVE-2025-2775 And Friends) - watchTowr Labs
https://www.reddit.com/r/netsec/comments/1kgt99x/sysowned_your_friendly_support_ticket_sysaid/
Chinese AI Submersible
https://www.schneier.com/blog/archives/2025/05/chinese-ai-submersible.html
Meet the Deputy CISOs who help shape Microsoft’s approach to cybersecurity: Part 2
https://www.microsoft.com/en-us/security/blog/2025/05/07/meet-the-deputy-cisos-who-help-shape-microsofts-approach-to-cybersecurity-part-2/
AI Slop Is Polluting Bug Bounty Platforms with Fake Vulnerability Reports
https://www.reddit.com/r/netsec/comments/1kh0bps/ai_slop_is_polluting_bug_bounty_platforms_with/
Pakistani Firm Shipped Fentanyl Analogs, Scams to US
https://krebsonsecurity.com/2025/05/pakistani-firm-shipped-fentanyl-analogs-scams-to-us/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
We Got Tired of Labs NOT preparing us for Real Targets… So We Built This (Seeking Beta Feedback!)
https://www.reddit.com/r/netsec/comments/1kgsx1p/we_got_tired_of_labs_not_preparing_us_for_real/
State of ransomware in 2025
https://securelist.com/state-of-ransomware-in-2025/116475/
Drag and pwnd: Exploiting VS Code with ASCII
https://www.reddit.com/r/netsec/comments/1kgty8a/drag_and_pwnd_exploiting_vs_code_with_ascii/
SysOwned, Your Friendly Support Ticket - SysAid On-Premise Pre-Auth RCE Chain (CVE-2025-2775 And Friends) - watchTowr Labs
https://www.reddit.com/r/netsec/comments/1kgt99x/sysowned_your_friendly_support_ticket_sysaid/
Chinese AI Submersible
https://www.schneier.com/blog/archives/2025/05/chinese-ai-submersible.html
Meet the Deputy CISOs who help shape Microsoft’s approach to cybersecurity: Part 2
https://www.microsoft.com/en-us/security/blog/2025/05/07/meet-the-deputy-cisos-who-help-shape-microsofts-approach-to-cybersecurity-part-2/
AI Slop Is Polluting Bug Bounty Platforms with Fake Vulnerability Reports
https://www.reddit.com/r/netsec/comments/1kh0bps/ai_slop_is_polluting_bug_bounty_platforms_with/
Pakistani Firm Shipped Fentanyl Analogs, Scams to US
https://krebsonsecurity.com/2025/05/pakistani-firm-shipped-fentanyl-analogs-scams-to-us/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: We Got Tired of Labs NOT preparing us for Real Targets… So We Built This (Seeking Beta Feedback!)
Posted by RogueSMG - 2 votes and 0 comments
Top Security News for Today
CVE-2024-11477 - 7-Zip ZSTD Buffer Overflow Vulnerability - Crowdfense
https://www.reddit.com/r/netsec/comments/1khsld0/cve202411477_7zip_zstd_buffer_overflow/
Hijacked: How Cybercriminals Are Turning Anti-Virus Software Against You
https://levelblue.com/blogs/labs-research/hijacked-how-cybercriminals-are-turning-anti-virus-software-against-you
Ngioweb Remains Active 7 Years Later
https://levelblue.com/blogs/labs-research/ngioweb-remains-active-7-years-later
HOPE WORKSHOP SUBMISSIONS WILL CLOSE ON TUESDAY
https://www.2600.com/content/hope-workshop-submissions-will-close-tuesday
SCIM Hunting. Finding bugs in SCIM implementations
https://www.reddit.com/r/netsec/comments/1ki0zau/scim_hunting_finding_bugs_in_scim_implementations/
Inside LockBit: Defense Lessons from the Leaked LockBit Negotiations
https://blog.qualys.com/vulnerabilities-threat-research/2025/05/08/inside-lockbit-defense-lessons-from-the-leaked-lockbit-negotiations
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
CVE-2024-11477 - 7-Zip ZSTD Buffer Overflow Vulnerability - Crowdfense
https://www.reddit.com/r/netsec/comments/1khsld0/cve202411477_7zip_zstd_buffer_overflow/
Hijacked: How Cybercriminals Are Turning Anti-Virus Software Against You
https://levelblue.com/blogs/labs-research/hijacked-how-cybercriminals-are-turning-anti-virus-software-against-you
Ngioweb Remains Active 7 Years Later
https://levelblue.com/blogs/labs-research/ngioweb-remains-active-7-years-later
HOPE WORKSHOP SUBMISSIONS WILL CLOSE ON TUESDAY
https://www.2600.com/content/hope-workshop-submissions-will-close-tuesday
SCIM Hunting. Finding bugs in SCIM implementations
https://www.reddit.com/r/netsec/comments/1ki0zau/scim_hunting_finding_bugs_in_scim_implementations/
Inside LockBit: Defense Lessons from the Leaked LockBit Negotiations
https://blog.qualys.com/vulnerabilities-threat-research/2025/05/08/inside-lockbit-defense-lessons-from-the-leaked-lockbit-negotiations
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: CVE-2024-11477- 7-Zip ZSTD Buffer Overflow Vulnerability - Crowdfense
Explore this post and more from the netsec community
Top Security News for Today
LockBit Ransomware Gang Breached, Secrets Exposed
https://www.tripwire.com/state-of-security/lockbit-ransomware-gang-breached-secrets-exposed
Tripwire Patch Priority Index for April 2025
https://www.tripwire.com/state-of-security/tripwire-patch-priority-index-april-2025
ASURA-FDPS-ML: Star-by-star Galaxy Simulations Accelerated by Surrogate Modeling for Supernova Feedback
https://arxiv.org/abs/2410.23346
An Approximate-Master-Equation Formulation of the Watts Threshold Model on Hypergraphs
https://arxiv.org/abs/2503.04020
Investigating Popularity Bias Amplification in Recommender Systems Employed in the Entertainment Domain
https://arxiv.org/abs/2504.04752
Breaking the Sound Barrier Part I: Fuzzing CoreAudio with Mach Messages
https://googleprojectzero.blogspot.com/2025/05/breaking-sound-barrier-part-i-fuzzing.html
Before You Red Team: Fix These 5 Common Mistakes
https://bishopfox.com/blog/before-red-team-fix-these-5-common-mistakes
Friday Squid Blogging: Japanese Divers Video Giant Squid
https://www.schneier.com/blog/archives/2025/05/friday-squid-blogging-japanese-divers-video-giant-squid.html
XG-NID: Dual-Modality Network Intrusion Detection using a Heterogeneous Graph Neural Network and Large Language Model
https://arxiv.org/abs/2408.16021
Stealthy .NET Malware: Hiding Malicious Payloads as Bitmap Resources
https://www.reddit.com/r/netsec/comments/1kivxei/stealthy_net_malware_hiding_malicious_payloads_as/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
LockBit Ransomware Gang Breached, Secrets Exposed
https://www.tripwire.com/state-of-security/lockbit-ransomware-gang-breached-secrets-exposed
Tripwire Patch Priority Index for April 2025
https://www.tripwire.com/state-of-security/tripwire-patch-priority-index-april-2025
ASURA-FDPS-ML: Star-by-star Galaxy Simulations Accelerated by Surrogate Modeling for Supernova Feedback
https://arxiv.org/abs/2410.23346
An Approximate-Master-Equation Formulation of the Watts Threshold Model on Hypergraphs
https://arxiv.org/abs/2503.04020
Investigating Popularity Bias Amplification in Recommender Systems Employed in the Entertainment Domain
https://arxiv.org/abs/2504.04752
Breaking the Sound Barrier Part I: Fuzzing CoreAudio with Mach Messages
https://googleprojectzero.blogspot.com/2025/05/breaking-sound-barrier-part-i-fuzzing.html
Before You Red Team: Fix These 5 Common Mistakes
https://bishopfox.com/blog/before-red-team-fix-these-5-common-mistakes
Friday Squid Blogging: Japanese Divers Video Giant Squid
https://www.schneier.com/blog/archives/2025/05/friday-squid-blogging-japanese-divers-video-giant-squid.html
XG-NID: Dual-Modality Network Intrusion Detection using a Heterogeneous Graph Neural Network and Large Language Model
https://arxiv.org/abs/2408.16021
Stealthy .NET Malware: Hiding Malicious Payloads as Bitmap Resources
https://www.reddit.com/r/netsec/comments/1kivxei/stealthy_net_malware_hiding_malicious_payloads_as/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Tripwire
LockBit Ransomware Gang Breached, Secrets Exposed
LockBit ransomware gang breached—affiliate data, negotiations, and secrets leaked in a major blow to the cybercriminal group.
Top Security News for Today
The Honeynet Workshop Conference 2025 is in June in Prague.
https://www.reddit.com/r/netsec/comments/1kjjueq/the_honeynet_workshop_conference_2025_is_in_june/
When Bad Data Leads to Good Models
https://arxiv.org/abs/2505.04741
Advancing Conversational Diagnostic AI with Multimodal Reasoning
https://arxiv.org/abs/2505.04653
Putting the Value Back in RL: Better Test-Time Scaling by Unifying LLM Reasoners With Verifiers
https://arxiv.org/abs/2505.04842
Help use and invite opl who might be interested
https://0x00sec.org/t/help-use-and-invite-opl-who-might-be-interested/43890
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
The Honeynet Workshop Conference 2025 is in June in Prague.
https://www.reddit.com/r/netsec/comments/1kjjueq/the_honeynet_workshop_conference_2025_is_in_june/
When Bad Data Leads to Good Models
https://arxiv.org/abs/2505.04741
Advancing Conversational Diagnostic AI with Multimodal Reasoning
https://arxiv.org/abs/2505.04653
Putting the Value Back in RL: Better Test-Time Scaling by Unifying LLM Reasoners With Verifiers
https://arxiv.org/abs/2505.04842
Help use and invite opl who might be interested
https://0x00sec.org/t/help-use-and-invite-opl-who-might-be-interested/43890
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: The Honeynet Workshop Conference 2025 is in June in Prague.
Posted by sebagarcia - 4 votes and 0 comments
Top Security News for Today
One-Click RCE in ASUS’s Preinstalled Driver Software
https://www.reddit.com/r/netsec/comments/1kjwfuh/oneclick_rce_in_asuss_preinstalled_driver_software/
Perception, Reason, Think, and Plan: A Survey on Large Multimodal Reasoning Models
https://arxiv.org/abs/2505.04921
Fair Uncertainty Quantification for Depression Prediction
https://arxiv.org/abs/2505.04931
Large Language Models are Autonomous Cyber Defenders
https://arxiv.org/abs/2505.04843
Imagining and building wise machines: The centrality of AI metacognition
https://arxiv.org/abs/2411.02478
XG-NID: Dual-Modality Network Intrusion Detection using a Heterogeneous Graph Neural Network and Large Language Model
https://arxiv.org/abs/2408.16021
Assessment Frameworks for NIS Directive Compliance
https://www.tripwire.com/state-of-security/assessment-frameworks-nis-directive-compliance
A Subtle Form of Siege: DDoS Smokescreens as a Cover for Quiet Data Breaches
https://www.tripwire.com/state-of-security/subtle-form-siege-ddos-smokescreens-cover-quiet-data-breaches
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
One-Click RCE in ASUS’s Preinstalled Driver Software
https://www.reddit.com/r/netsec/comments/1kjwfuh/oneclick_rce_in_asuss_preinstalled_driver_software/
Perception, Reason, Think, and Plan: A Survey on Large Multimodal Reasoning Models
https://arxiv.org/abs/2505.04921
Fair Uncertainty Quantification for Depression Prediction
https://arxiv.org/abs/2505.04931
Large Language Models are Autonomous Cyber Defenders
https://arxiv.org/abs/2505.04843
Imagining and building wise machines: The centrality of AI metacognition
https://arxiv.org/abs/2411.02478
XG-NID: Dual-Modality Network Intrusion Detection using a Heterogeneous Graph Neural Network and Large Language Model
https://arxiv.org/abs/2408.16021
Assessment Frameworks for NIS Directive Compliance
https://www.tripwire.com/state-of-security/assessment-frameworks-nis-directive-compliance
A Subtle Form of Siege: DDoS Smokescreens as a Cover for Quiet Data Breaches
https://www.tripwire.com/state-of-security/subtle-form-siege-ddos-smokescreens-cover-quiet-data-breaches
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: One-Click RCE in ASUS’s Preinstalled Driver Software
Posted by AlmondOffSec - 109 votes and 10 comments
Top Security News for Today
How I ruined my vacation by reverse engineering WSC
https://www.reddit.com/r/netsec/comments/1kkpyuu/how_i_ruined_my_vacation_by_reverse_engineering/
Alt Syscalls for Windows 11
https://www.reddit.com/r/lowlevel/comments/1kknjre/alt_syscalls_for_windows_11/
12th May – Threat Intelligence Report
https://research.checkpoint.com/2025/12th-may-threat-intelligence-report/
SUDO_KILLER – Auditing Sudo Configurations for Privilege Escalation Paths
https://www.darknet.org.uk/2025/05/sudo_killer-auditing-sudo-configurations-for-privilege-escalation-paths/
Statistical Analysis to Detect Uncommon Code
https://www.reddit.com/r/netsec/comments/1kktwfv/statistical_analysis_to_detect_uncommon_code/
Marbled Dust leverages zero-day in Output Messenger for regional espionage
https://www.microsoft.com/en-us/security/blog/2025/05/12/marbled-dust-leverages-zero-day-in-output-messenger-for-regional-espionage/
I built Mithra: a security scanner for LLM-integrated APIs (detects prompt injection, DAN..)
https://www.reddit.com/r/netsec/comments/1kkydpv/i_built_mithra_a_security_scanner_for/
LiteLMGuard: Seamless and Lightweight On-Device Prompt Filtering for Safeguarding Small Language Models against Quantization-induced Risks and Vulnerabilities
https://arxiv.org/abs/2505.05485
Bringing Forensic Readiness to Modern Computer Firmware
https://arxiv.org/abs/2505.05486
Invariant-Based Cryptography
https://arxiv.org/abs/2505.05487
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
How I ruined my vacation by reverse engineering WSC
https://www.reddit.com/r/netsec/comments/1kkpyuu/how_i_ruined_my_vacation_by_reverse_engineering/
Alt Syscalls for Windows 11
https://www.reddit.com/r/lowlevel/comments/1kknjre/alt_syscalls_for_windows_11/
12th May – Threat Intelligence Report
https://research.checkpoint.com/2025/12th-may-threat-intelligence-report/
SUDO_KILLER – Auditing Sudo Configurations for Privilege Escalation Paths
https://www.darknet.org.uk/2025/05/sudo_killer-auditing-sudo-configurations-for-privilege-escalation-paths/
Statistical Analysis to Detect Uncommon Code
https://www.reddit.com/r/netsec/comments/1kktwfv/statistical_analysis_to_detect_uncommon_code/
Marbled Dust leverages zero-day in Output Messenger for regional espionage
https://www.microsoft.com/en-us/security/blog/2025/05/12/marbled-dust-leverages-zero-day-in-output-messenger-for-regional-espionage/
I built Mithra: a security scanner for LLM-integrated APIs (detects prompt injection, DAN..)
https://www.reddit.com/r/netsec/comments/1kkydpv/i_built_mithra_a_security_scanner_for/
LiteLMGuard: Seamless and Lightweight On-Device Prompt Filtering for Safeguarding Small Language Models against Quantization-induced Risks and Vulnerabilities
https://arxiv.org/abs/2505.05485
Bringing Forensic Readiness to Modern Computer Firmware
https://arxiv.org/abs/2505.05486
Invariant-Based Cryptography
https://arxiv.org/abs/2505.05487
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: How I ruined my vacation by reverse engineering WSC
Posted by AlmondOffSec - 5 votes and 0 comments
Top Security News for Today
Using a Mythic agent to optimize penetration testing
https://securelist.com/agent-for-mythic-c2-with-beacon-object-files/115259/
Court Rules Against NSO Group
https://www.schneier.com/blog/archives/2025/05/court-rules-against-nso-group.html
Azure Managed Identities Abuse: Security Research - Defense strategies
https://www.reddit.com/r/netsec/comments/1kll5as/azure_managed_identities_abuse_security_research/
Microsoft Patch Tuesday, May 2025 Security Update Review
https://blog.qualys.com/vulnerabilities-threat-research/2025/05/13/microsoft-patch-tuesday-may-2025-security-update-review
May 2025 Patch Tuesday Analysis
https://www.tripwire.com/state-of-security/may-2025-patch-tuesday-analysis
Trend Micro Puts a Spotlight on AI at Pwn2Own Berlin
https://www.trendmicro.com/en_us/research/25/e/pwn2own-berlin-2025.html
Best Open Source HIDS Tools for Linux in 2025 (Compared & Ranked)
https://www.darknet.org.uk/2025/05/best-open-source-hids-tools-for-linux-in-2025-compared-ranked/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Using a Mythic agent to optimize penetration testing
https://securelist.com/agent-for-mythic-c2-with-beacon-object-files/115259/
Court Rules Against NSO Group
https://www.schneier.com/blog/archives/2025/05/court-rules-against-nso-group.html
Azure Managed Identities Abuse: Security Research - Defense strategies
https://www.reddit.com/r/netsec/comments/1kll5as/azure_managed_identities_abuse_security_research/
Microsoft Patch Tuesday, May 2025 Security Update Review
https://blog.qualys.com/vulnerabilities-threat-research/2025/05/13/microsoft-patch-tuesday-may-2025-security-update-review
May 2025 Patch Tuesday Analysis
https://www.tripwire.com/state-of-security/may-2025-patch-tuesday-analysis
Trend Micro Puts a Spotlight on AI at Pwn2Own Berlin
https://www.trendmicro.com/en_us/research/25/e/pwn2own-berlin-2025.html
Best Open Source HIDS Tools for Linux in 2025 (Compared & Ranked)
https://www.darknet.org.uk/2025/05/best-open-source-hids-tools-for-linux-in-2025-compared-ranked/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Securelist
Using an agent for the Mythic framework: pros and cons in pentesting
Kaspersky experts discuss optimizing penetration testing with an agent for the Mythic framework and object files for Cobalt Strike.