the grugq's newsletter

Subscribe
Archives
June 11, 2025

June 11, 2025

June 11, 2025

GitHub - autoscrape-labs/pydoll: Pydoll is a library for automating chromium-based browsers without a WebDriver, offering realistic interactions.

Pydoll is a library for automating chromium-based browsers without a WebDriver, offering realistic interactions. - GitHub - autoscrape-labs/pydoll: Pydoll is a library for automating chromium-base...


https://www.researchgate.net/publication/391704077_You_Can_Drive_But_You_Cannot_Hide_Detection_of_Hidden_Cellular_GPS_Vehicle_Trackers


Details published https://t.co/wCtCcpcykr.

To summarize: the "WorkingDirectory" problem within .url files.

Oh, .url files, my old friend (I previously discovered another .url/IE 0day itw last year).. My thoughts/opinion: no organization should allow any inbound .url files in…

— Haifei Li (@HaifeiLi) June 10, 2025


🚨Binarly is documenting the discovery of CVE-2025-3052, a memory-corruption flaw in a Microsoft-signed UEFI module that lets attackers bypass Secure Boot and run unsigned code before the OS starts.

🔗 Full details: https://t.co/bnojn8RmsV
🛡️ Advisory: https://t.co/0D3CozbyPu pic.twitter.com/dLIo4nBmkt

— BINARLY🔬 (@binarly_io) June 10, 2025


https://x.com/cpresearch/status/1932500982400762242


Leaders at the U.K.'s National Cyber Security Centre are calling for more political attention on cybersecurity, arguing that regulation and legislation aren't keeping up with technology https://t.co/Lh9VemtlzW

— The Record From Recorded Future News (@TheRecord_Media) June 10, 2025


https://www.theregister.com/2025/06/09/china_malware_flip_switch_sentinelone/


Don't miss what's next. Subscribe to the grugq's newsletter:
X