Last Week in Security (LWiS) - 2024-11-18
Arc browser RCE (@RenwaX23), more Fortinet woes (@SinSinology), PowerHuntShares v2 (@_nullbind), make_token_cert (@freefirex2), BOFs without DFR (@netbiosX), and more!
Last Week in Security (LWiS) - 2024-11-12
🕵️📱 Mysterious iPhone reboots, Tor under attack, Citrix Unauth RCE (@SinSinology), GitHub Actions attack (@adnanthekhan), and more!
Last Week in Security (LWiS) - 2024-11-04
WAF bypasses (@MDSecLabs), sastsweep (@_chebuya), Early Cascade injection (@DaWouw), and more!
Last Week in Security (LWiS) - 2024-10-28
Delta Sues Crowdstrike (@CrowdStrike), Jenkins Post-Exploitation (@TrustedSec), PE embedded within a PNG (@MalDevAcademy), Prompt Injection to C2 (@wunderwuzzi23), and more!
Last Week in Security (LWiS) - 2024-10-21
VNC-Like over SCCM (@netero_1010), Use LLMs to find CVEs (@ProtectAICorp), New process 💉 technique (@OutflankNL), 💰 Big acquisition (@Sophos), and more!
Last Week in Security (LWiS) - 2024-10-14
FortiGate exploit (@watchtowrcyber), Azure admin approval bypass (@PedroGabaldon), dylib 💉 in Teams (@Coiffeur0x90), Ivanti Connect Secure vuln (@buffaloverflow), and more!
Last Week in Security (LWiS) - 2024-10-07
I-XRAY doxxing 🕶️ (@AnhPhuNguyen1 + @CaineArdayfio), TeamViewer LPE (@PedroGabaldon), C# source generators (@DragoQcc), ⏲️-based user enum (@nyxgeek), and more!
Last Week in Security (LWiS) - 2024-09-30
CUPS RCE (@evilsocket), driver vulns (@vinopaljiri), NamelessC2 release (@trickster012), liveness detection bypass (@CaptMeelo), Windows LPE (@ricnar456), and more!
Last Week in Security (LWiS) - 2024-09-23
0-click macOS RCE (@Turmio_), sudo iptables LPE (@suidpit + @smaury92), SkeletonCookie ☠️🍪 (@buffaloverflow), and more!
Last Week in Security (LWiS) - 2024-09-16
MSSQL domain privesc (@_nullbind), .mobi whois takeover (@watchtowrcyber), LLM CTF (@bishopfox), mac filesystem 🪄 (@gergely_kalman), AlcaWASM writeup (@suidpit), and more!
« newer articles | page 2 | older articles »