Spying On Screen Activity Using Chromium Browsers | mr.d0x
https://mrd0x.com/spying-with-chromium-browsers-screensharing/
New Chrome Zero-Day Actively Exploited; Google Issues Emergency Out-of-Band Patch
https://thehackernews.com/2025/06/new-chrome-zero-day-actively-exploited.html
Hypervisors for Memory Introspection and Reverse Engineering | secret club
https://secret.club/2025/06/02/hypervisors-for-memory-introspection-and-reverse-engineering.html
Android malware Crocodilus adds fake contacts to spoof trusted callers
https://www.bleepingcomputer.com/news/security/android-malware-crocodilus-adds-fake-contacts-to-spoof-trusted-callers/
Coinbase breach tied to bribed TaskUs support agents in India
https://www.bleepingcomputer.com/news/security/coinbase-breach-tied-to-bribed-taskus-support-agents-in-india/
Tracking AyySSHush: a Newly Discovered ASUS Router Botnet Campaign
https://censys.com/blog/tracking-ayysshush-a-newly-discovered-asus-router-botnet-campaign
Microsoft and CrowdStrike partner to link hacking group names
https://www.bleepingcomputer.com/news/security/microsoft-and-crowdstrike-partner-to-link-hacking-group-names/
Google patches new Chrome zero-day bug exploited in attacks
https://www.bleepingcomputer.com/news/security/google-patches-new-chrome-zero-day-bug-exploited-in-attacks/
Victoria’s Secret delays earnings release after security incident
https://www.bleepingcomputer.com/news/security/victorias-secret-delays-earnings-release-after-security-incident/
CVE 2025 31200 | A Strange Blog
https://blog.noahhw.dev/posts/cve-2025-31200/
Malicious RubyGems pose as Fastlane to steal Telegram API data
https://www.bleepingcomputer.com/news/security/malicious-rubygems-pose-as-fastlane-to-steal-telegram-api-data/
Root Shell on Credit Card Terminal
https://stefan-gloor.ch/yomani-hack
The North Face warns customers of April credential stuffing attack
https://www.bleepingcomputer.com/news/security/the-north-face-warns-customers-of-april-credential-stuffing-attack/
Critical 10-Year-Old Roundcube Webmail Bug Allows Authenticated Users Run Malicious Code
https://thehackernews.com/2025/06/critical-10-year-old-roundcube-webmail.html
Detecting BadSuccessor: Shorcut to Domain Admin
https://academy.bluraven.io/blog/detecting-badsuccessor
Over 30 Vulnerabilities Patched in Android - SecurityWeek
https://www.securityweek.com/over-30-vulnerabilities-patched-in-android/
XSS like you’ve never seen before - YouTube
http://youtube.com/watch?v=RLyhPGsEMz4
Roundcube ≤ 1.6.10 Post-Auth RCE via PHP Object Deserialization [CVE-2025-49113] PoC demonstration - YouTube
https://youtu.be/TBkTbMJWHJY![Roundcube ≤ 1.6.10 Post-Auth RCE via PHP Object Deserialization [CVE-2025-49113] PoC demonstration - YouTube](/image/screenshot/031018d2d4c016fbd09b77287b1a185b.webp)
Mozilla launches new system to detect Firefox crypto drainer add-ons
https://www.bleepingcomputer.com/news/security/mozilla-launches-new-system-to-detect-firefox-crypto-drainer-add-ons/
MalwareBazaar | SHA256 cd95a19bea3a4847ab0e9df8e112d1de951aa4a95a3f0435f5287043026f58cb (Braodo)
https://bazaar.abuse.ch/sample/cd95a19bea3a4847ab0e9df8e112d1de951aa4a95a3f0435f5287043026f58cb/
V8 Exploit Tracker - Google ドキュメント
https://docs.google.com/document/d/1njn2dd5_6PB7oZGTmkmoihYnVcJEgRwEFxhHnGoptLk/edit?usp=sharing
Smartfren Allegedly Breached: Internal SIM Registration Panel Access for Sale - Daily Dark Web
https://dailydarkweb.net/smartfren-allegedly-breached-internal-sim-registration-panel-access-for-sale/
Chrome Releases: Stable Channel Update for Desktop
https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop.html