May 2, 2025

                May 2, 2025

            May 2, 2025

            May 2, 2025

It's https://t.co/t7k0vTEBaV time 🎉👇

Wormable zero-click AirPlay bugs from @OligoSecurity @DarkNavyOrg discusses hardware wallet hacking

2024 ITW 0-day review from @Google 

Map exploitation in v8 from @Nyaaaaa_ovo 

+ jobs and MORE 👇https://t.co/95SGFIrdFP
— exploits.club (@exploitsclub) May 1, 2025

👀 I wrote about the wider context to social media and HUMINT recruitment in this RUSI piece ⏬️

Poking the Bear: Social Media and Human Intelligence Recruitment

🔗 https://t.co/PLyHymUfZC https://t.co/7k5C67Auet
— Dr. Dan Lomas (@Sandbagger_01) May 1, 2025

#ESETResearch analyzed the toolset of the China-aligned APT group that we have named #TheWizards. It can move laterally on compromised networks by performing adversary-in-the-middle (AitM) attacks to hijack software updates. @0xfmz https://t.co/D0FiqMrBZ3 1/6
— ESET Research (@ESETresearch) April 30, 2025

`ipsw` has a 🆕 AI powered DECOMPILER 🤯

Check it out! 🎉https://t.co/2roP5bvhWU pic.twitter.com/ClpS7yMsa1
— Blacktop (@blacktop__) May 1, 2025

New blog: Be careful of Your UDP Service: Preauth DoS on Windows Deployment Service (remote, 0-click)https://t.co/5PMwGArTev
— zhiniang peng (@edwardzpeng) May 2, 2025

Rolling in the Deep(Web): Lazarus Tsunami https://t.co/xl5huqhLnY via @hisolutions
— Silas Cutler // p1nk (@silascutler) May 2, 2025

This script automates SQL injection testing using SQLMap with AI-powered decision making.https://t.co/9GVWFonMX1
— Nicolas Krassas (@Dinosn) May 1, 2025

Digital Forensics Lab : Free hands-on digital forensics labs for students and faculty : https://t.co/kV3EaiNp7M
— Binni Shah (@binitamshah) May 1, 2025

That sandbox escape 🪣 took a year to fix!
Two interesting takes:
1. This is a generic sandbox escape for any app using security-scoped bookmarks.
2. Keychain item redefinition attacks are scary - the potential goes beyond this vulnerability. https://t.co/Cy3sN7XgwW
— Jonathan Bar Or (JBO) 🇮🇱🇺🇸🇺🇦🎗️ (@yo_yo_yo_jbo) May 1, 2025

11th LangSec IEEE Security & Privacy workshop is happy to announce its preliminary program: https://t.co/uoG2gzXy3Y Abstracts are posted at https://t.co/ePBp8SZqui Join us on May 15 in San Francisco!
— sergey bratus (@sergeybratus) May 1, 2025

Don't miss what's next. Subscribe to the grugq's newsletter: