All posts by John Doe

■■■□□ Researchers reveal a collection of bugs known as AirBorne that would allow any hacker on the same Wi-Fi network as a third-party AirPlay-enabled device to surreptitiously run their own code on it. https://www.wired.com/story/airborne-airplay-flaws/

■■■□□ Pwnagotchi, cheap wifi hacking device. 📹https://youtu.be/puOkriFPVtQ

■□□□□ Kali Linux warns of update failures after losing repo signing key. https://www.bleepingcomputer.com/news/linux/kali-linux-warns-of-update-failures-after-losing-repo-signing-key/

■■■■□ Cyber-War on Iran 🇮🇷 Iran repelled a large cyber-attack on its infrastructure on Sunday, said the head of its Infrastructure Communications Company, a day after a powerful explosion damaged its most important container port and another round of talks with the U.S. over Tehran’s disupted nuclear programme. https://www.reuters.com/world/middle-east/iran-repelled-large-cyber-attack-sunday-2025-04-28/

■■■□□ DPRK: Jamf Threat Labs discovered malware samples believed to be tied to the Democratic People’s Republic of Korea (DPRK), aka North Korea, that are built using Flutter, which by design provides obfuscation to the malicious code. JTL performs a deep dive into how the malicious code works to help protect users on macOS devices.…

🟥Microsoft Zero-Day drop: Server MS-TNAP Authentication Bypass [RCE 0day] A critical 0-click remote authentication bypass vulnerability in Microsoft Telnet Server that allows attackers to gain access as any user, including Administrator, without requiring valid credentials. The vulnerability exploits a misconfiguration in the NTLM Authentication processes of the Telnet MS-TNAP extension allowing remote unauthenticated attackers to…

■■■■□ China 🇨🇳 Investigation of a spearphishing campaign targeting members of @UyghurCongress reveals a highly-customized attack. Its aim: to deliver Windows-based malware capable of conducting remote surveillance against its targets. Weaponized Words: Uyghur Language Software Hijacked to Deliver Malware

■■□□□ Telegram is forced to operate under the dictatorship of United States Government’s 🇺🇸 hegemony. The Zionist controlled corporations have asked to not display certain content violating their own ‘First Amendment’ (freedom of speech). Telegram responded by creating separate apps; one for application stores of Google and Apple and another on their websites. To test;…

■□□□□ Samsung admits Galaxy devices can leak passwords through clipboard wormhole. https://www.theregister.com/2025/04/28/security_news_in_brief/

■■■■□ ShadowDumper https://github.com/Offensive-Panda/ShadowDumper It uses 7 advanced techniques to dump LSASS memory. Capabilities: • Unhooked Injection (Modified Mimikatz Binary) – Utilizes unhooking to inject a modified Mimikatz binary, bypassing EDR hooks and evading detection. • Unhooked Injection (Direct Syscalls with MDWD) – Implements direct syscalls for stealthy injection using MDWD, reducing the footprint left behind.…