06/03
06/04
06/05
6 Posts

RTF Document - Hwangstice

https://hwangstice.github.io/blog/rtf-document/
RTF Document - Hwangstice
5 Posts

GitHub - crixpwn/CVE-2026-8389 · GitHub

https://github.com/crixpwn/CVE-2026-8389
GitHub - crixpwn/CVE-2026-8389 · GitHub
4 Posts

FSB’s matryoshka #3/3: Gamaredon's Gammasteel Infostealer

https://blog.sekoia.io/fsbs-matryoshka-3-3-gamaredons-gifts-that-keeps-unpacking-gammasteel/
FSB’s matryoshka #3/3: Gamaredon's Gammasteel Infostealer
3 Posts

All the passwords were stored in Active Directory description fields

https://www.theregister.com/security/2026/06/04/all-the-passwords-were-stored-in-active-directory-description-fields/5250820
All the passwords were stored in Active Directory description fields
3 Posts

X - The Everything App / X

http://x.com/i/article/2062538153626578944
X - The Everything App / X
3 Posts

Lazarus Group's Latest: Brandjacking Campaign on npm

https://www.sonatype.com/blog/lazarus-groups-latest-brandjacking-campaign-on-npm
Lazarus Group's Latest: Brandjacking Campaign on npm
3 Posts

'Please do not vibe f--- up this software': Broken backups spark AI coding row in rsync project

https://www.theregister.com/software/2026/06/04/please-do-not-vibe-f-up-this-software-broken-backups-spark-ai-coding-row-in-rsync-project/5251189
'Please do not vibe f--- up this software': Broken backups spark AI coding row in rsync project
3 Posts

Trump considers Palantir exec to lead CISA | The Record from Recorded Future News

https://therecord.media/trump-considers-palantir-exec-to-lead-cisa
Trump considers Palantir exec to lead CISA | The Record from Recorded Future News
3 Posts

Async PICOs and Custom Beacon Wakeups in Cobalt Strike | NCC Group

https://www.nccgroup.com/research/async-picos-and-custom-beacon-wakeups-in-cobalt-strike/
Async PICOs and Custom Beacon Wakeups in Cobalt Strike | NCC Group
3 Posts

PoisonXドライバを用いた日本組織への攻撃キャンペーン | LAC WATCH

https://www.lac.co.jp/lacwatch/report/20260604_004759.html
PoisonXドライバを用いた日本組織への攻撃キャンペーン | LAC WATCH
3 Posts

From bootloader to kernel

https://0xax.dev/books/linux-inside
From bootloader to kernel
3 Posts

VS Code Vulnerability Allows One-Click GitHub Token Theft - SecurityWeek

https://www.securityweek.com/vs-code-vulnerability-allows-one-click-github-token-theft/
VS Code Vulnerability Allows One-Click GitHub Token Theft - SecurityWeek
3 Posts

Police dismantles fake ID marketplace used by migrant smugglers

https://www.bleepingcomputer.com/news/security/police-dismantles-fake-id-marketplace-used-by-migrant-smugglers/
Police dismantles fake ID marketplace used by migrant smugglers
3 Posts

Cisco warns of critical Unified CM flaw with PoC exploit code

https://www.bleepingcomputer.com/news/security/cisco-warns-of-critical-unified-cm-flaw-with-poc-exploit-code/
Cisco warns of critical Unified CM flaw with PoC exploit code
3 Posts

Gemini Voice Assistant Hijacked via Messaging Notifications - SecurityWeek

https://www.securityweek.com/gemini-voice-assistant-hijacked-via-messaging-notifications/
Gemini Voice Assistant Hijacked via Messaging Notifications - SecurityWeek
3 Posts

Hexacon - Register

https://www.hexacon.fr/register/
Hexacon - Register
3 Posts

ComoDoS - Exploiting a Remote Kernel Vulnerability in Comodo Internet Security

https://malwaretech.com/2026/06/exploiting-a-remote-kernel-vulnerability-in-comodo-internet-security.html
ComoDoS - Exploiting a Remote Kernel Vulnerability in Comodo Internet Security
3 Posts

Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS

https://thehackernews.com/2026/06/fake-sites-mimicking-open-source-tools.html
Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS