All posts by John Doe

■■■■□ Artificial intelligence tech giant OpenAI has raised its maximum bug bounty payout to $100,000 (up from $20,000) as part of plans to outsource the discovery of critical, high-impact vulnerabilities in its infrastructure and products. https://www.securityweek.com/openai-offering-100k-bounties-for-critical-vulnerabilities/

■■■□□ Chrome Zero-Day Flaw Also Affects Firefox. The finding is surprising since Firefox uses a different browser engine. But it looks like the flaw relates more to how browsers communicate with the Windows OS. https://me.pcmag.com/en/browsers/29074/chrome-zero-day-flaw-also-affects-firefox

■□□□□ Signal Gate: United States’ 🇺🇸 classified military Europe data on Yemen 🇾🇪 was leaked by defence secretary Hehseth. https://edition.cnn.com/2025/03/26/politics/the-atlantic-publishes-signal-messages-yemen-strike/index.html

■■□□□ Vuln Checklist. https://github.com/Az0x7/vulnerability-Checklist/

■■■■□ Yemeni 🇾🇪 hacker group claims their first cyber-kinetic attack. This is our first cyber physical attack to Haifa port. From now on with the obtained data from all partners of Israel via cyber breach to the infrastructures of Haifa port none of them would be safe. All of your data are in our hands.

■■■■□ Fallout: The UAE’s Cyber Security Council on Monday confirmed that 634 public and private companies and organisations were targeted of a huge global hack. The attacks leaked data from vital and strategic national sectors, state news agency. A threat actor known as rose87168 claimed to have breached Oracle Cloud’s servers, according to Dr Mohamed…

■■■■□ This Simple URL Encoding Made a researcher $50,000 in Bounties. https://www.youtube.com/watch

■■■■□ Chinese Weaver Ant hackers spied on telco network for 4 years. Researchers investigating the intrusion found multiple variants of the China Chopper backdoor and a previously undocumented custom web-shell called ‘INMemory’ that executes payloads in the host’s memory. https://www.bleepingcomputer.com/news/security/chinese-weaver-ant-hackers-spied-on-telco-network-for-4-years/

■■■■■ The Oracle Cloud Supply Chain Hack. The Oracle Cloud Supply Chain Hack

■■■■□ Cloudflare is luring web-scraping bots into an ‘AI Labyrinth’Rather than block web scrapers, Cloudflare invites them to trawl a web of useless ‘AI-generated nonsense.’ https://www.theverge.com/news/634345/cloudflare-ai-labyrinth-web-scraping-bots-training-data