September 15, 2025
September 15, 2025
Say hello to Eternal Tuxπ§, a 0-click RCE exploit against the Linux kernel from KSMBD N-Days (CVE-2023-52440 & CVE-2023-4130)https://t.co/Cbk9MBo91v
β Crusaders of Rust (@cor_ctf) September 14, 2025
Cheers to @u1f383 for finding these CVEs + the OffensiveCon talk from gteissier & @laomaiweng for inspiration! pic.twitter.com/CsE7gv4HgN
All #OrangeCon2025 talks are now online!
β OrangeCon (@OrangeCon_nl) September 13, 2025
Watch them on our YouTube channel: https://t.co/nchTeqVwkP
Bootchain exploit for MediaTek devices
β blackorbird (@blackorbird) September 14, 2025
PoC exploit for a vulnerability in the Nothing Phone (2a) / CMF Phone 1 secure boot chain (and possibly other MediaTek devices).https://t.co/XM7Ausg6gs pic.twitter.com/xF1k4RjNHI
π€― Instagram is testing new iOS push notifications that include a profile photo. Each time the notification is shown on your screen, it triggers a GET request to fetch that image, letting Meta track every on-screen impression.
β Mysk π¨π¦π©πͺ (@mysk_co) September 14, 2025
The app still misuses push notifications to send⦠pic.twitter.com/IUSdpYhdVV
Lockbit ransomware group, Dragonforce ransomware group, and Qilin ransomware group, have established a truce and are all best friends now
β vx-underground (@vxunderground) September 15, 2025
"The enemy of my enemy is my friend" β Ransomware groups regarding law enforcement agencies, probably pic.twitter.com/CH8oeCcAYL
Hackers the movie was released 30 years ago today! September 15th 1995.
β Justin Elze (@HackingLZ) September 15, 2025
Hack the planet! pic.twitter.com/2NK0D0PtG4
Someone at a16z claimed a few weeks ago that 80% of Bay Area startups are building on Chinese open source models. The graphic below shows Chinese model downloads exceeding US models on HuggingFace. pic.twitter.com/wRoGY1dr9V
β Omer Cheema (@OmerCheeema) September 14, 2025
If you're keeping an eye on the Big Sleep issue tracker (https://t.co/1hAhesgXRd) you might have noticed that the detailed reports for some bugs (e.g. https://t.co/xNRb1bxr20) are now public. Note however that all reports are lovingly crafted by a human and not AI-generated.
β Ivan Fratric ππ (@ifsecure) September 15, 2025