2025-06-26 | Hacker Trends

06/25

06/26

06/27

12 Posts

The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction | Blog

https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html

The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction | Blog

6 Posts

Google CTF

http://g.co/ctf

Google CTF

5 Posts

Entra ID First Party Apps & Scope Browser

https://entrascopes.com/

Entra ID First Party Apps & Scope Browser

4 Posts

Cisco warns of max severity RCE flaws in Identity Services Engine

https://www.bleepingcomputer.com/news/security/cisco-warns-of-max-severity-rce-flaws-in-identity-services-engine/

Cisco warns of max severity RCE flaws in Identity Services Engine

4 Posts

Microsoft 365 'Direct Send' abused to send phishing as internal users

https://www.bleepingcomputer.com/news/security/microsoft-365-direct-send-abused-to-send-phishing-as-internal-users/

Microsoft 365 'Direct Send' abused to send phishing as internal users

4 Posts

GitHub - temp43487580/EntraPassTheCert: tool for requesting Entra ID's P2P certificate and authenticating remote Entra joinned devices with it

https://github.com/temp43487580/EntraPassTheCert

GitHub - temp43487580/EntraPassTheCert: tool for requesting Entra ID's P2P certificate and authenticating remote Entra joinned devices with it

3 Posts

Critical RCE Flaws in Cisco ISE and ISE-PIC Allow Unauthenticated Attackers to Gain Root Access

https://thehackernews.com/2025/06/critical-rce-flaws-in-cisco-ise-and-ise.html

Critical RCE Flaws in Cisco ISE and ISE-PIC Allow Unauthenticated Attackers to Gain Root Access

3 Posts

Glasgow council yanks services offline amid attack cleanup • The Register

https://go.theregister.com/feed/www.theregister.com/2025/06/26/glasgow_city_council_cyberattack/

Glasgow council yanks services offline amid attack cleanup • The Register

3 Posts

Cyber Criminals Exploit Open-Source Tools to Compromise Financial Institutions Across Africa

https://thehackernews.com/2025/06/cyber-criminals-exploit-open-source.html

Cyber Criminals Exploit Open-Source Tools to Compromise Financial Institutions Across Africa

3 Posts

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

https://thehackernews.com/2025/06/cisa-adds-3-flaws-to-kev-catalog.html

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

3 Posts

GitHub - trh4ckn0n/CVE-2025-48703: Remote code exec cent os web panel by trhacknon

https://github.com/trh4ckn0n/CVE-2025-48703

GitHub - trh4ckn0n/CVE-2025-48703: Remote code exec cent os web panel by trhacknon

3 Posts

Microsoft confirms Family Safety blocks Google Chrome from launching

https://www.bleepingcomputer.com/news/microsoft/microsoft-confirms-family-safety-blocks-google-chrome-from-launching/

Microsoft confirms Family Safety blocks Google Chrome from launching

3 Posts

Double-fetch of root_size in fastrpc_pack_root_sharedpage leads to buffer overflow [399463073] - Project Zero

https://project-zero.issues.chromium.org/issues/399463073

Double-fetch of root_size in fastrpc_pack_root_sharedpage leads to buffer overflow [399463073] - Project Zero

3 Posts

Windows Registry Manipulation. Episode 01 | by ONESithuation | Jun, 2025 | Medium

https://onesithuation.medium.com/windows-registry-manipulation-48e6b4bab676

Windows Registry Manipulation. Episode 01 | by ONESithuation | Jun, 2025 | Medium