Cracking ValleyRAT: From Builder Secrets to Kernel Rootkits - Check Point Research
https://research.checkpoint.com/2025/cracking-valleyrat-from-builder-secrets-to-kernel-rootkits/
Bad OPSEC Considered Harmful
https://buttondown.com/grugq/archive/bad-opsec-considered-harmful/
ZeroDay Cloud: Cloud Security Hacking Competition
http://zeroday.cloud
GitHub - 3lp4tr0n/SessionHop: Windows Session Hijacking via COM
https://github.com/3lp4tr0n/SessionHop/
New ConsentFix attack hijacks Microsoft accounts via Azure CLI
https://www.bleepingcomputer.com/news/security/new-consentfix-attack-hijacks-microsoft-accounts-via-azure-cli/
NANOREMOTE, cousin of FINALDRAFT — Elastic Security Labs
https://www.elastic.co/security-labs/nanoremote
Google ads for shared ChatGPT, Grok guides push macOS infostealer malware
https://www.bleepingcomputer.com/news/security/google-ads-for-shared-chatgpt-grok-guides-push-macos-infostealer-malware/
Chrome Releases: Stable Channel Update for Desktop
https://chromereleases.googleblog.com/2025/12/stable-channel-update-for-desktop_10.html
WIRTE Leverages AshenLoader Sideloading to Install the AshTag Espionage Backdoor
https://thehackernews.com/2025/12/wirte-leverages-ashenloader-sideloading.html
Wild West Hackin' Fest @ Mile High 2026 - Wild West Hackin' Fest
https://wildwesthackinfest.com/wild-west-hackin-fest-mile-high-2026/
Active Attacks Exploit Gladinet's Hard-Coded Keys for Unauthorized Access and Code Execution
https://thehackernews.com/2025/12/hard-coded-gladinet-keys-let-attackers.html
Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw
https://thehackernews.com/2025/12/chrome-targeted-by-active-in-wild.html
Microsoft Outlook Vulnerability Let Attackers Execute Malicious Code Remotely
https://cybersecuritynews.com/microsoft-outlook-vulnerability/
Over 10,000 Docker Hub images found leaking credentials, auth keys
https://www.bleepingcomputer.com/news/security/over-10-000-docker-hub-images-found-leaking-credentials-auth-keys/
Malicious VSCode Marketplace extensions hid trojan in fake PNG file
https://www.bleepingcomputer.com/news/security/malicious-vscode-marketplace-extensions-hid-trojan-in-fake-png-file/
GeminiJack and Agentic Security with Sasi Levi (Ep. 152) - YouTube
https://youtu.be/6JZsoJnqSxE
APT_REPORT/cybercrime/2025/kaspersky-dfi-dark-telegram.pdf at master · blackorbird/APT_REPORT · GitHub
https://github.com/blackorbird/APT_REPORT/blob/master/cybercrime/2025/kaspersky-dfi-dark-telegram.pdf
Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks
https://thehackernews.com/2025/12/unpatched-gogs-zero-day-exploited.html
Malicious Apprentice | How Two Hackers Went From Cisco Academy to Cisco CVEs | SentinelOne
https://www.sentinelone.com/labs/malicious-apprentice-how-two-hackers-went-from-cisco-academy-to-cisco-cves/
UK fines LastPass over 2022 data breach impacting 1.6 million users
https://www.bleepingcomputer.com/news/security/uk-fines-lastpass-over-2022-data-breach-impacting-16-million-users/
Google fixes eighth Chrome zero-day exploited in attacks in 2025
https://www.bleepingcomputer.com/news/security/google-fixes-eighth-chrome-zero-day-exploited-in-attacks-in-2025/
Gogs Zero-Day RCE (CVE-2025-8110) Actively Exploited | Wiz Blog
https://www.wiz.io/blog/wiz-research-gogs-cve-2025-8110-rce-exploit
GitHub - breakfix/SharpSCOM: A C# utility for interacting with SCOM
https://github.com/breakfix/SharpSCOM