April 6, 2026

https://t.co/so573d0tzG ← my new old talk was released as a standalone; it's a fun story of how you go from being able to write '2' (0x32, 1 byte) anywhere on the FS to full RCE with admin/root privs

— Gynvael Coldwind (@gynvael) April 6, 2026

CTF In A Box ? The Weirdest NETGEAR Network Switch 2021 Exploit Chain - Gynvael Coldwind — GreHack

source: Gynvael Coldwind (@gynvael)

Another example of the changing landscape, following statement from the Linux kernel folks pic.twitter.com/WGbp2znscO

— Gadi Evron (@gadievron) April 6, 2026

An excellent write-up on how Qilin takes out EDR. The fact that 300 different EDR drivers are targeted really caught my attention.

This blog outlines a very robust capability set on the part of Qilin, in terms of AV/EDR bypass/disable, which is an interesting correlation when… https://t.co/N38B2BJ5I2

— Mike Manrod (@CroodSolutions) April 5, 2026

Updated my post about journalist and spy Vicky Peláez yesterday to include some quotes from @gordoncorera’s book, including that the FBI listened in as she discussed Moscow’s feedback on her husband’s intelligence reports. https://t.co/zac1WolBJS

— Runa Sandvik (@runasand) April 6, 2026

Here is a video of a North Korean IT worker being stopped dead in their tracks upon being required to insult Kim Jong Un.

It won't work forever, but right now it's genuinely an effective filter. I'm yet to come across one who can say it. https://t.co/8FFVPxNm8X pic.twitter.com/KXI5efMo5L

— tanuki42 (@tanuki42_) April 6, 2026

Good morning! Just published a blog post exploiting a VMware Guest To Host. A UaF Heap Feng Shui base address leakage to bypass ASLR and a stack-based buffer overflow to achieve RCE.https://t.co/tCARJAKrEx

— ö (@r0keb) April 6, 2026

VMware Guest To Host | r0keb

Good morning! Today we’re going to walk through the complete process of creating a Guest-to-Host exploit in VMware (version 17.0.0). My setup is my laptop with this version installed, along with Ubuntu 20.04 LTS.

#SpyNews - week 14 (March 29-April 4):
A summary of 65 espionage-related stories from week 14 coming from 🇦🇺🇰🇵🇷🇺🇩🇪🇵🇱🇺🇦🇪🇸🇱🇹🇧🇾🇺🇸🇦🇹🇬🇧🇫🇷🇦🇪🇮🇷🇹🇷🇸🇾🇱🇧🇪🇬🇧🇪🇮🇱🇬🇪🇷🇼🇨🇺🇭🇺🇨🇳🇸🇪🇳🇱🇰🇼🇰🇷🇯🇵🇸🇴🇷🇴🇨🇮🇬🇭🇾🇪🇹🇼🇱🇻🇪🇹🇲🇦 https://t.co/Q3z5KB9VPM

— Spy Collection (@SpyCollection1) April 5, 2026

🎉 Hundreds of new malicious browser extensions added to https://t.co/kYGDIyKGGY ! https://t.co/kxL7LHxGbM pic.twitter.com/ztfiqe0Nqy

— mthcht (@mthcht2) April 4, 2026

Recetlly published by the Swedish Psychological Defence Agency. This book provides knowledge, practical guidance, and reflection on how psychological defence can be understood and applied in different contextshttps://t.co/wKnz9bU2hU

— Jorge Maestre Vidal (@J_MaestreVidal) April 5, 2026

PSYCHOLOGICAL DEFENCE AND INFORMATION INFLUENCE – A TEXTBOOK ON THEORY AND PRACTICE | Psychological defence agency

if you’re asking me a question about how to improve opsec you should def check out SEAL Frameworks https://t.co/S3wQ24DAXG

literally all of this was written by real people in this space, for real people on this space. pic.twitter.com/gP7BtXXr2L

— Tay 💖 (@tayvano_) April 5, 2026

Security Frameworks | Security Alliance

Comprehensive security framework documentation for Web3 projects and blockchain security best practices.

Look mom! I made so much trouble that they are making a kernel module named after my naughty OMG Cable! 😂

This is great though. I very intentionally made the default config very detectable. Sure, changing the defaults will circumvent this, but incremental improvement is the… https://t.co/Dk58VcMhFl

— MG (@_MG_) April 6, 2026

This is what happens when I take time off, I actually write silly length blog posts and deep dive things https://t.co/SUgxpGqGFr the post dives into a MCP pipeline I've put together for autonomous 0day hunts.

— Andy Gill (@ZephrFish) April 4, 2026

CTF in 2026 pic.twitter.com/je7cd24TlM

— faulty *ptrrr (@0x_shaq) April 5, 2026

pic.twitter.com/notT2NhuG4

— sudox (@kmcnam1) April 4, 2026

Tey Bannerman counted up all the products and tools that Microsoft has named “Copilot”.

Found 78 of them: “there are now Copilots inside Copilots, Copilots for other Copilots, and a physical Copilot key on your keyboard for summoning them.” pic.twitter.com/wzjD6WkgFa

— Bearly AI (@bearlyai) April 4, 2026

“Highest level since operations began”. https://t.co/J642xGzTZM pic.twitter.com/qwQm3wrXC1

— Ethan Levins 🇺🇸 (@EthanLevins2) April 4, 2026

The US has directed every embassy and consulate worldwide to recruit local influencers, academics and community leaders to carry pro-American messaging designed, in the cable’s own words, to “feel locally organic rather than centrally directed.” The cable instructs diplomatic… pic.twitter.com/KZoChmgA6C

— Lukasz Olejnik (@lukOlejnik) April 5, 2026

US directs embassies to team up against foreign ‘hostility’ – and use X to ‘counter anti-American propaganda’ | US foreign policy | The Guardian

Cable signed by Marco Rubio and seen by Guardian suggests staff work with Pentagon psychological operations unit

Took me almost a month, but it’s finally done.

I completely rewrote the first chapter of linux-insides about the Linux kernel initialization process. Now it should be aligned with modern kernels (up to master).https://t.co/IHwrDtMSpw

— Alex Kuleshov (@0xAX) April 4, 2026

linux-insides/Initialization/linux-initialization-1.md at master · 0xAX/linux-insides · GitHub

A book-in-progress about the Linux kernel and its insides. - 0xAX/linux-insides

0xAX/linux-insides (32,427 stars, Python) A book-in-progress about the Linux kernel and its insides.

source: Alex Kuleshov (@0xAX)

Sun Tzu actually has an entire section in The Art of War about screaming at the other side to open a strategic route on your own personal social media platform

— microplastics rectifier (@facetedcarapace) April 5, 2026

EXCLUSIVE: We've obtained a cache of text messages and recorded conversations between Russian intelligence officers and a student they coerced into becoming an informant.

Here’s a rare insight into Moscow’s efforts to infiltrate opposition groups abroad: https://t.co/dhUE8JDSH3 pic.twitter.com/UIw89UOCCq

— POLITICOEurope (@POLITICOEurope) April 5, 2026

How Russian spies recruit, pressure and run their informants – POLITICO

A leaked cache of messages and recordings offers rare insight into Moscow’s efforts to infiltrate opposition groups in Europe.

Apparently workers in China have been creating “colleagues.skill” to distill their coworkers hoping to make them redundant hence saving themselves. In response someone has recently invented an “anti-distillation.skill” that has gone viral on GitHub.🤣 pic.twitter.com/fcywnLIIhT

— Steve Hou (@stevehou) April 4, 2026