Portugal updates cybercrime law to exempt security researchers
https://www.bleepingcomputer.com/news/security/portugal-updates-cybercrime-law-to-exempt-security-researchers/
x-84592.pdf
https://powerofcommunity.net/2025/slide/x-84592.pdf
GitHub - Malayke/Next.js-RSC-RCE-Scanner-CVE-2025-66478: A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability.
https://github.com/Malayke/Next.js-RSC-RCE-Scanner-CVE-2025-66478?tab=readme-ov-file#-runtime-memory-shell-
Porsche outage in Russia serves as a reminder of the risks in connected vehicle security
https://securityaffairs.com/185398/security/porsche-outage-in-russia-serves-as-a-reminder-of-the-risks-in-connected-vehicle-security.html
OpenAI denies rolling out ads on ChatGPT paid plans
https://www.bleepingcomputer.com/news/artificial-intelligence/openai-denies-rolling-out-ads-on-chatgpt-paid-plans/
TP-Link firmware decryption and TP-Link C210 V2 cloud camera
https://watchfulip.github.io/28-12-24/tp-link_c210_v2.html
Stillepost - Or: How to Proxy your C2s HTTP-Traffic through Chromium | mischief
https://x90x90.dev/posts/stillepost/
LockBit 5.0 Infrastructure Exposed in New Server, IP and Domain Leak
https://cybersecuritynews.com/lockbit-5-0-infrastructure-exposed/
React2Shell flaw exploited to breach 30 orgs, 77k IP addresses vulnerable
https://www.bleepingcomputer.com/news/security/react2shell-flaw-exploited-to-breach-30-orgs-77k-ip-addresses-vulnerable/