All posts by John Doe

Claude is hacker as it gets Kali tools via MCP

■■■□□ Federal agencies given one day to patch exploited Cisco firewall bugs. https://therecord.media/cisco-asa-firewall-bugs-cisa-federal-agencies-warning

■■■□□ Widespread Infostealer Campaign Targeting macOS Users. Threat actors rely on malicious GitHub repositories to infect LastPass’s macOS users with the Atomic infostealer. https://www.securityweek.com/widespread-infostealer-campaign-targeting-macos-users/

■■■■□ Microsoft terminates services for Israeli military after investigation into mass surveillance of Palestinians. https://edition.cnn.com/2025/09/25/tech/microsoft-israel-surveillance

■■■□□ Update: Data Leak due to Improper Access Control -(4-0000979929) under investigation.

🔦 TOR VPN Beta – Silent release https://play.google.com/store/apps/details?id=org.torproject.vpn https://www.techradar.com/vpn/vpn-services/the-tor-project-quietly-launches-a-beta-android-vpn-and-looks-for-testers

■■■■□ Kali 2025.3 adds a fresh set of tools to its arsenal. This version includes 10 new packages: 🤍Caido & Caido-cli: A web security auditing toolkit with a graphical client and command-line server. 🤍Detect It Easy (DiE): A utility for identifying file types. 🤍Gemini CLI: An open-source AI agent that integrates Google’s Gemini into the…

■■■□□ DELMIA Apriso has a deserialization flaw (CVE-2025-5086) let us turn a SOAP request into full RCE. Blog by nuclei breaks down: 🚫How vulnerable code path was traced 🚫Crafting the payload 🚫Why does it impacts Apriso 2020–2025 https://projectdiscovery.io/blog/remote-code-execution-in-delmia-apriso

■■□□□ BlackLock Ransomware Attacking Windows, Linux, and VMware ESXi Environments. BlackLock Ransomware Attacking Windows, Linux, and VMware ESXi Environments

■■■□□ SonicWall releases SMA100 firmware update to wipe rootkit malware. https://www.bleepingcomputer.com/news/security/sonicwall-releases-sma100-firmware-update-to-wipe-rootkit-malware/