All posts by John Doe

⚠️Hackers Could Gain Full Control of Your Rooted Android Devices by Exploiting One Vulnerability. https://zimperium.com/blog/the-rooting-of-all-evil-security-holes-that-could-compromise-your-mobile-device Hackers Could Gain Full Control of Your Rooted Android Devices by Exploiting One Vulnerability

■■■□□ A critical security vulnerability in Fortinet’s FortiWeb web application firewall has been discovered that allows unauthenticated attackers to bypass authentication and impersonate any existing user on affected devices. The flaw, tracked as CVE-2025-52970 and dubbed “Fort-Majeure” by its discoverer, stems from improper parameter handling in the application’s cookie parsing mechanism. FortiWeb Authentication Bypass Vulnerability…

■■■■■ Mastering Web Cache Deception Vulnerabilities: An Advanced Bug Hunter’s Guide Advanced Tactics, Payloads and Real-World Methods to Uncover Hidden Cache Deception Flaws. https://infosecwriteups.com/mastering-web-cache-deception-vulnerabilities-an-advanced-bug-hunters-guide-b7b500b482e3

■■■□□ Researchers at cybersecurity firm Profero cracked DarkBit ransomware encryption, allowing victims to recover files for free. Researchers cracked the encryption used by DarkBit ransomware

■■■■■ Palo Alto Networks 》Malware Analysis. https://github.com/PaloAltoNetworks/Unit42-Threat-Intelligence-Article-Information/blob/main/Mega-Malware-Analysis-Tutorial-Featuring-Donut.pdf

■■■■□ Bricked and Baked cameras 📷 Bizarre cyberattack blamed on Russia and China-linked hackers permanently breaks dozens of speed cameras in the Netherlands — authorities decline to reveal location of affected cameras, for obvious reasons. https://www.tomshardware.com/tech-industry/cyber-security/bizarre-cyberattack-blamed-on-russia-and-china-linked-hackers-permanently-breaks-dozens-of-speed-cameras-in-the-netherlands-authorities-decline-to-reveal-location-of-affected-cameras-for-obvious-reasons

■■□□□ Cybersecurity researchers have discovered a new campaign that employs a previously undocumented ransomware family called Charon to target the Middle East’s public sector and aviation industry. https://thehackernews.com/2025/08/charon-ransomware-hits-middle-east.html

■□□□□ Meanwhile, in Kashmir 91 government are down since first week of May because the there is a certificate issue.🙄 Ministers are unable to respond to the situation. https://m.greaterkashmir.com/article/digital-meltdown-in-jk-91-government-websites-officially-down/424225

■■■□□ Azure for Genocide: Microsoft launches inquiry into claims Israel used its tech for mass surveillance of Palestinians. Company says use of its cloud technology to store millions of intercepted calls would breach terms of service. https://www.theguardian.com/world/2025/aug/15/microsoft-launches-inquiry-claims-israel-used-tech-mass-surveillance-palestinians https://www.theguardian.com/world/2025/aug/06/microsoft-israeli-military-palestinian-phone-calls-cloud https://www.972mag.com/microsoft-8200-intelligence-surveillance-cloud-azure/

■■■□□ A Chinese-speaking advanced persistent threat (APT) actor has been observed targeting web infrastructure entities in Taiwan using customized versions of open-sourced tools with an aim to establish long-term access within high-value victim environments. The activity has been attributed by Cisco Talos to an activity cluster it tracks as UAT-7237, which is believed to be…