All posts by John Doe

■■□□□ Dubai Police launched a Dh 223,000 cybersecurity contest to attract ethical hackers. Registration opens on October 1, with online qualifiers running from October 5 until the end of the month. https://www.khaleejtimes.com/uae/dubai-police-launch-cybersecurity-competition

■■■■□ GhostSocks: From Initial Access to Residential Proxy. https://synthient.com/blog/ghostsocks-from-initial-access-to-residential-proxy

■■■□□ CVE-2025-32463: Another critical EoP in sudo has been discovered. https://www.bleepingcomputer.com/news/security/cisa-warns-of-critical-linux-sudo-flaw-exploited-in-attacks/

■■□□□ Ransomware group sought BBC reporter’s help in hacking media giant. https://www.bleepingcomputer.com/news/security/ransomware-gang-sought-bbc-reporters-help-in-hacking-media-giant/

■■□□□ Hackers Can Bypass EDR by Downloading a Malicious File as an In-Memory PE Loader. Hackers Can Bypass EDR by Downloading a Malicious File as an In-Memory PE Loader

■■■■□ Zero-Day: DefCon lock picking.

■■■■□ Write-up focuses on bypass of file upload. Known technique. https://infosecwriteups.com/new-technique-bypass-file-upload-4c18cef9f9ed

■■■■□ Iranian State Sponsored Hackers Use SSL.com Certificates to Sign Malware. Security researchers say multiple threat groups, including Iran’s Charming Kitten APT offshoot Subtle Snail, are deploying malware with code-signing certificates from the Houston-based company. https://www.darkreading.com/vulnerabilities-threats/iranian-hackers-ssl-certificates-sign-malware

■■■■□ 🔥CVE-2025-59934: Critical Flaw in Formbricks Allows Unauthorized Password Resets via Forged JWT Tokens 🚀POC -https://github.com/formbricks/formbricks/security/advisories/GHSA-7229-q9pv-j6p4 Dorks: http://product.name=”Formbricks”

■■■□□ Hackers Compromise Active Directory to Steal NTDS.dit that Leads to Full Domain Compromise. Hackers Compromise Active Directory to Steal NTDS.dit that Leads to Full Domain Compromise