TikTok videos now push infostealer malware in ClickFix attacks
https://www.bleepingcomputer.com/news/security/tiktok-videos-now-push-infostealer-malware-in-clickfix-attacks/
Sliver EDR Bypass: Customizing Open Source Tools - Cyber Security Services - London
https://fortbridge.co.uk/research/reforging-sliver-how-simple-code-edits-can-outmaneuver-edr/
Project Zero: The Windows Registry Adventure #7: Attack surface analysis
https://googleprojectzero.blogspot.com/2025/05/the-windows-registry-adventure-7-attack-surface.html
URL and website scanner - urlscan.io
http://urlscan.io
300 Servers and €3.5M Seized as Europol Strikes Ransomware Networks Worldwide
https://thehackernews.com/2025/05/300-servers-and-35m-seized-as-europol.html
Operation ENDGAME strikes again: the ransomware kill chain broken at its source | Europol
https://www.europol.europa.eu/media-press/newsroom/news/operation-endgame-strikes-again-ransomware-kill-chain-broken-its-source
DanaBot Botnet Disrupted, 16 Suspects Charged - SecurityWeek
https://www.securityweek.com/danabot-botnet-disrupted-by-law-enforcement-16-suspects-charged/
Anthropic's new AI model turns to blackmail when engineers try to take it offline | TechCrunch
https://techcrunch.com/2025/05/22/anthropics-new-ai-model-turns-to-blackmail-when-engineers-try-to-take-it-offline/
How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation – Sean Heelan's Blog
https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/
Windows 11 Notepad gets AI-powered text writing capabilities
https://www.bleepingcomputer.com/news/microsoft/windows-11-notepad-gets-ai-powered-text-writing-capabilities/
OffensiveCon-2025-Breaking-the-Sound-Barrier.pdf
https://www.dillonfrankesecurity.com/OffensiveCon-2025-Breaking-the-Sound-Barrier.pdf
China-Nexus Threat Actor Actively Exploiting Ivanti Endpoint Manager Mobile (CVE-2025-4428) Vulnerability
https://blog.eclecticiq.com/china-nexus-threat-actor-actively-exploiting-ivanti-endpoint-manager-mobile-cve-2025-4428-vulnerability
GitLab Duo Vulnerability Enabled Attackers to Hijack AI Responses with Hidden Prompts
https://thehackernews.com/2025/05/gitlab-duo-vulnerability-enabled.html
Russian Qakbot Gang Leader Indicted in US - SecurityWeek
https://www.securityweek.com/russian-qakbot-gang-leader-indicted-in-us/
OffensiveCon25 - Dillon Franke - YouTube
https://youtu.be/USQtPedx9Xg?feature=shared
CISA Warns of Suspected Broader SaaS Attacks Exploiting App Secrets and Cloud Misconfigs
https://thehackernews.com/2025/05/cisa-warns-of-suspected-broader-saas.html
GitHub - NightBloodz/CVE-2025-4123: Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF
https://github.com/NightBloodz/CVE-2025-4123
Office of Public Affairs | Leader of Qakbot Malware Conspiracy Indicted for Involvement in Global Ransomware Scheme | United States Department of Justice
https://www.justice.gov/opa/pr/leader-qakbot-malware-conspiracy-indicted-involvement-global-ransomware-scheme
FBI warns of Luna Moth extortion attacks targeting law firms
https://www.bleepingcomputer.com/news/security/fbi-warns-of-luna-moth-extortion-attacks-targeting-law-firms/
Hacker steals $223 million in Cetus Protocol cryptocurrency heist
https://www.bleepingcomputer.com/news/security/hacker-steals-223-million-in-cetus-protocol-cryptocurrency-heist/