December 10, 2025
December 10, 2025
Could be worse - imagine how the janitor feels https://t.co/B4tzPPmHlE pic.twitter.com/EtLfTQ47KV
— Havoc (@Havoc_Six) December 8, 2025
DOJ confirms our earlier assessment of ties between hacktivist front Cyber Army of Russia Reborn (CARR) and Russia’s military intelligence service, the GRU. CARR carried out cyberattacks on US and European critical infrastructure but hid behind this false persona.…
— John Hultquist (@JohnHultquist) December 10, 2025
Crazy XSS chain. Very impressive find by @H4R3L, @BrunoModificato and @sudhanshur705
— André Baptista (@0xacb) December 9, 2025
Read at👇
https://t.co/FFAzuzz3hN
Errybody screaming about React2Shell so we wanted to give ya something you haven't already heard😁
— John Hammond (@_JohnHammond) December 9, 2025
Here's a beast of a blog post on malware we've seen from post-exploitation, detailing a wild Linux backdoor and more -- all from the amazing & incredible @RussianPanda9xx & co.😎… https://t.co/5j2QpJFNYt pic.twitter.com/Z6zqaeyBCV
Assembly code visualizerhttps://t.co/5owxpvPfz4 pic.twitter.com/S2msAzDNXx
— Vivek Galatage (@vivekgalatage) December 10, 2025
Blame CloudFlare for Website Issues
— blackorbird (@blackorbird) December 9, 2025
The Cloudflare Error Page Generator (https://t.co/mog6LogZuV) is an open-source tool for creating highly customizable error pages in the style of Cloudflare.⁰It perfectly mimics Cloudflare’s famous error page designs (such as the 5xx internal… pic.twitter.com/nDgxhq6xi8
China using cyber weapons to instill societal havoc, chaos across US and West - CISA official
— 780th Military Intelligence Brigade (Cyber) (@780thC) December 9, 2025
The Jerusalem Posthttps://t.co/XQMfVGogoL@Jerusalem_Post
This highlighted part is very subtle and very important: https://t.co/jCUn4Vv0bn pic.twitter.com/Ot758nMXV5
— Dino A. Dai Zovi (@dinodaizovi) December 9, 2025
Why do researchers keep finding so many prompt injection issues?
— NCSC UK (@NCSC) December 8, 2025
Perhaps it is because many AI system designers and defenders are misunderstanding the risks.🚨
Find out more⬇️ https://t.co/j7eAFszNcl
Love DT doing history of the early ransomware-like attempts like the KOH virus (which was for good) https://t.co/IN85rW0iL1 pic.twitter.com/K2tGHw31eF
— Daniel Cuthbert (@dcuthbert) December 10, 2025
An RbTree Family Drama
— Linux Kernel Security (@linkersec) December 10, 2025
Talk by William Liu and Savino Dicanosa @cor_ctf about exploiting CVE-2025-38001 — a use-after-free in the network packet scheduler.
Slides: https://t.co/9uzwjmQilt
Video: https://t.co/umCg8CshIO
Babe, wake up, new fun activity to do on the internet just dropped. https://t.co/cNWlCneBlI
— Lain on the Blockchain (@CryptoCyberia) December 9, 2025
I spoke with @Williamrt of @ComputerWeekly on NDA bug bounties failing to increase security & the effects of gov disclosure requirements on national security, plus how AI threatens the human expert labor pipeline of tomorrow & why UBI may be our best bet https://t.co/z9QIezelsF
— Katie🌻Moussouris (she/her/she-ra/she-hulk) 🪷 (@k8em0) December 9, 2025
An Attribution Framework in #DFIR.https://t.co/WW0yJTrpdl pic.twitter.com/GrnQi85YrC
— Brett Shavers 🙄 (@Brett_Shavers) December 8, 2025
🚨 Pro-Russia hacktivists are manipulating minimally secured, internet facing VNC connections to gain access to OT control devices within #CriticalInfrastructure systems. Review our joint Cybersecurity Advisory for mitigations, TTPs, & IOCs. 👉 https://t.co/8GcsGkmugi pic.twitter.com/Jpdgbw38Mg
— CISA Cyber (@CISACyber) December 9, 2025
Apparently there is an extension for Chrome/Chromium called "Secure Shell" which has a terminal emulator with SSH and SFTP 🤠https://t.co/ZZLAZV2yXL pic.twitter.com/hLOPyUbdJT
— 🕳 (@sekurlsa_pw) December 9, 2025
Add a comment: