All posts by John Doe

■■■■■ Caido v0.47.0 Released – Burp Suite Alternative Web Pentesting Tool Brings New Features. Caido v0.47.0 Released – Burp Suite Alternative Web Pentesting Tool Brings New Features

■■■■□ Find open Juice S3 Bucket using lazys3 Tool Link: https://github.com/nahamsec/lazys3 Some writeups https://medium.com/p/f6ae24cdcdfa https://medium.com/securing/exploring-25k-aws-s3-buckets-f22ec87c3f2a https://suleyman-celik8.medium.com/enumerate-s3-buckets-using-lazys3-d2f5de14d31

■■■□□ HTTP Hacking 101 An interesting 𝕏 thread https://x.com/0xAsm0d3us/status/1903162621869822146

■■■□□ RansomHub ransomware uses a new Betruger ‘multi-function’ backdoor. https://www.bleepingcomputer.com/news/security/ransomhub-ransomware-uses-new-betruger-multi-function-backdoor/

■■□□□ Noam Brown, who leads AI reasoning research at OpenAI, says certain forms of “reasoning” AI models could’ve arrived 20 years earlier had researchers “known [the right] approach” and algorithms. OpenAI research lead Noam Brown thinks certain AI ‘reasoning’ models could’ve arrived decades ago

■■■■□ Researchers have found that large language models (LLMs) tend to parrot buggy code when tasked with completing flawed snippets. That is to say, when shown a snippet of shoddy code and asked to fill in the blanks, AI models are just as likely to repeat the mistake as to fix it. https://www.theregister.com/2025/03/19/llms_buggy_code/

■■■□□ DPRK launches new unit with a focus on AI hacking, per report. The North Korean government is reportedly establishing a new hacking group within the intelligence agency Reconnaissance General Bureau (RGB). North Korea launches new unit with a focus on AI hacking, per report

■■■■□ Activist alerts ICC to spyware attack while sharing Libya torture victims’ details David Yambio, founder of Refugees in Libya, urges international criminal court members to have phones checked. https://www.theguardian.com/world/2025/mar/19/italian-activist-david-yambio-alerts-icc-spyware-attack

■■■■□ Microsoft isn’t fixing 8-year-old shortcut exploit abused for spying. ‘Only’ a local access bug but important part of N Korea, Russia, and China attack picture. https://www.theregister.com/2025/03/18/microsoft_trend_flaw/

■■■■□ Investigation into Israel-based spyware company Paragon Solutions reveals multiple threads linked to the proliferation of its mercenary spyware operations across the globe. Virtue or Vice? A First Look at Paragon’s Proliferating Spyware Operations