All posts by John Doe

■■■□□ 7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. – Dutch Operation A joint law enforcement operation undertaken by Dutch and U.S. authorities has dismantled a criminal proxy network that’s powered by thousands of infected Internet of Things (IoT) and end-of-life (EoL) devices, enlisting them into a botnet for providing anonymity to malicious…

■■■■□ Ransomware as a Service group, LockBit, suffered an internal database leaked. While the dump is a goldmine for researchers – revealing BTC addresses, victim chat logs, ransomware build info, and many other datapoints – there’s one detail that stands out: They stored their passwords in plaintext. For a group that prides itself on encryption,…

■□□□□ An official account of 𝕏 itself is withheld in India 🇮🇳 amid ongoing information war order by the government of India. https://x.com/zoo_bear/status/1920705872742830319

■■■■□ 𝕏 reports that Indian government has asked to block 8,000 accounts, which are causing hindrances in disinformation campaigns run by the state on its people. https://x.com/GlobalAffairs/status/1920522981744238814

■■■■□ Cyber-Kinetic warfare. Pakistan 🇵🇰 uses EW (electronic warfare) to take out Israel 🇮🇱 made Harop drones fired by India 🇮🇳 in Pakistan’s Lahore area amid ongoing conflict, which is still not a full-scale war. 🛩 30 drones from India were taken out in defenseive measures. Around 5% seem to have made it through.

❤️ Running code on Tesla security ECU from tire: dlDetails on new CVE-2025-2082 vulnerability. Security researchers Thomas Imbert, Vincent Dehors, and David Bérard found and responsibly disclosed recently a remote code execution (RCE) vulnerability in Tesla’s VCSEC ECU. Technical overview: By manipulating the response sent from the Tire Pressure Monitoring System (TPMS), an attacker can…

■■■■□ Cybersecurity researchers have disclosed multiple security flaw in the on-premise version of SysAid IT support software that could be exploited to achieve pre-authenticated remote code execution with elevated privileges. The vulnerabilities, tracked as CVE-2025-2775, CVE-2025-2776, and CVE-2025-2777, have all been described as XML External Entity (XXE) injections, which occur when an attacker is able…

■■■■□ OSINT: The New York Times investigations 🔎

■□□□□ Potential target for Hacktivists. AG Bondi says the FBI has “tens of thousands of videos of Epstein with children or child porn. There are hundreds of victims.” https://x.com/disclosetv/status/1920114771577241911

■■□□□ Phase II of the Drone War. A Jam-Proof Russian Drone showcasing Russia’s fiber-optic drones. https://www.forbes.com/sites/davidaxe/2025/05/06/a-jam-proof-russian-drone-just-blew-up-a-ukrainian-himars/