today i learned.https://t.co/zNcUATyhEo pic.twitter.com/QIfHEdYqcN

— J⩜⃝mie Williams (@jamieantisocial) June 11, 2025

Every time I read something like this, I feel like we’re no longer securing systems – we’re just trying to keep a pile of API keys, tokens, and bucket URLs from falling into the wrong hands.

We moved from guarded fortresses to glass houses with GitHub credentials taped to the… https://t.co/ctPiFXf96g

— Florian Roth ⚡️ (@cyb3rops) June 12, 2025

“Leaked AWS [creds] allowed .. to register an unclaimed S3 bucket referenced in the OneLogin API that began receiving logs from a ..customer. These logs leaked the customer API key .. to .. generate valid JWT tokens, enabling arbitrary user impersonation.” https://t.co/1iGp2yLfr3

— Florian Roth ⚡️ (@cyb3rops) June 12, 2025

The "Objective-C helper" IDA plugin presented during the @sth4ck talk "Demystifying Objective-C internals" given by @v1csec is now publicly available on GitHub at https://t.co/XVmzIkYwn6
The slides are also available on our website: https://t.co/Y7p0PBS43D

— Synacktiv (@Synacktiv) June 12, 2025

New EC out NOW 👇

🎉 @vector35 Binary Ninja GIVEAWAY! 🎉

Popping smart speakers from @ret2systems @Synacktiv hacks an old video game

Intro to browser security research from @ifsecure @NikolajSchlej SecureBoot bypass

+ Jobs AND MORE 👇https://t.co/FbSGfYcr6a

— exploits.club (@exploitsclub) June 12, 2025

This analysis from @kloosha examines how Russia has increasingly employed sabotage, intelligence collection, and influence operations, marking a shift from the traditional Soviet-style military approach. #UkraineWar, #RussiaUkraineWar

Grossfeld is a PhD candidate in the… pic.twitter.com/uFmjNwADFo

— CNA (@CNA_org) June 12, 2025