All posts by John Doe

🏷️ Critical Windows Graphics Vulnerability Lets Hackers Seize Control with a Single Image. Critical Windows Graphics Vulnerability Lets Hackers Seize Control with a Single Image

■■■■■ CVE-2025-41115: Grafana Patches CVSS 10.0 SCIM Flaw Enabling Impersonation and Privilege Escalation. https://thehackernews.com/2025/11/grafana-patches-cvss-100-scim-flaw.html

■■■■■ Iran: Interesting thread on APT-35 (Charming Kitten’s) elaborate cyber-espionage and HUMINT operation. https://x.com/blackorbird/status/1992075483836744154

■□□□□ Veeam bets on more VMware alternatives, including Red Hat and China’s Sangfor Plans a universal API to back up all hypervisors, too. https://www.theregister.com/2025/11/21/veeam_13_hypervisor_support/

■■■■□ CSA Announces Zigbee 4.0, with New “Suzi” Sub-Gigahertz Long-Range Support New sub-brand offers improved range and penetration at low power, while the main standard enjoys improved security. https://www.hackster.io/news/csa-announces-zigbee-4-0-with-new-suzi-sub-gigahertz-long-range-support-3c6f18540c35

■■■■■ New Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks Devices. https://thehackernews.com/2025/11/new-sturnus-android-trojan-quietly.html

🗜📂 CVE-2025-11001: Hackers Actively Exploiting 7-Zip RCE Vulnerability in the Wild. Hackers Actively Exploiting 7-Zip RCE Vulnerability in the Wild

■■■■□ Interesting thread: ATM Hacking Group UNC2891 Technical Summary. https://x.com/blackorbird/status/1991516037968457814

■■□□□ Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild. https://thehackernews.com/2025/11/fortinet-warns-of-new-fortiweb-cve-2025.html

■■■□□ TaskHound Tool – Detects Windows Scheduled Tasks Running with Elevated Privileges and Stored Credentials. https://github.com/1r0BIT/TaskHound TaskHound Tool – Detects Windows Scheduled Tasks Running with Elevated Privileges and Stored Credentials