All posts in Uncategorized

■■■□□ United States 🇺🇸 Space Force receives first satellite jamming system. https://defence-blog.com/u-s-space-force-receives-first-satellite-jamming-system/

■■■■□ Notepad++ Vulnerability Let Attackers Hijack Network Traffic to Install Malware via Updates. Notepad++ Vulnerability Let Attackers Hijack Network Traffic to Install Malware via Updates

■■■■□ When you use Remote Desktop (RDP), Windows secretly takes screenshots of what you are doing. It’s called the RDP Bitmap Cache. To make the connection faster, Windows saves small tiles (images) of the remote screen to your hard drive in a bin file. Even if the session is over and the remote server is…

■■□□□ Windows PowerShell Zero-Day Vulnerability Let Attackers Execute Malicious Code. Windows PowerShell 0-Day Vulnerability Let Attackers Execute Malicious Code

■■■■□ React²Shell search query. → Censys (+270K assets): services.http.response.headers: (key: Vary and value.headers: RSC, Next-Router-State-Tree) → Shodan (+380K assets): “Vary: RSC, Next-Router-State-Tree” 𝕏 | 1ZRR4H

■■■■□ Israel is intensively spying on United States’ forces in Israel – The Guardian According to The Guardian, Israeli operatives have been spying on American forces and allies stationed at the U.S. base in Israel, the ‘Civil-Military Coordination Center’ (CMCC) The intelligence gathering is so pervasive that it prompted the U.S. commander of the base,…

■■■□□ NETREAPER Offensive Security Toolkit That Wraps 70+ Penetration Testing Tools. NETREAPER Offensive Security Toolkit That Wraps 70+ Penetration Testing Tools

■■■■□ Portugal updates cybercrime law to exempt security researchers. https://www.bleepingcomputer.com/news/security/portugal-updates-cybercrime-law-to-exempt-security-researchers/

■■□□□ New wave of VPN login attempts targets Palo Alto GlobalProtect portals. https://www.bleepingcomputer.com/news/security/new-wave-of-vpn-login-attempts-targets-palo-alto-globalprotect-portals/

Below is the exact list of CVEs publicly attributed to Intellexa / Cytrox / Predator by Apple, Google TAG, Citizen Lab, Amnesty, and other confirmed research. ✅ Confirmed Predator / Intellexa Exploit CVEs (OSINT-verified) iOS Zero-days These were confirmed by Apple + Citizen Lab as Predator delivery vectors: 2021–2023 chains CVE-2023-41991 – Certificate validation bypass.…