All posts by John Doe

■■■■□ Cryptology firm cancels elections after losing encryption key. https://www.bbc.co.uk/news/articles/c62vl05rz0ko

■□□□□ UAE: Public falls for ‘Free WiFi’ QR trap in Sharjah cybersecurity experiment. https://gulfnews.com/uae/public-falls-for-free-wifi-qr-trap-in-sharjah-cybersecurity-experiment-1.500359662 The QR redirected to: https://scanned.page/p/xD86lz

■■■■□ New Fluent Bit Flaws Expose Cloud to RCE and Stealthy Infrastructure Intrusions. https://thehackernews.com/2025/11/new-fluent-bit-flaws-expose-cloud-to.html

■■■■□ Chinese DeepSeek-R1 AI Generates Insecure Code When Prompts Mention Tibet or Uyghurs. New research from CrowdStrike has revealed that DeepSeek’s artificial intelligence (AI) reasoning model DeepSeek-R1 produces more security vulnerabilities in response to prompts that contain topics deemed politically sensitive by China. https://thehackernews.com/2025/11/chinese-ai-model-deepseek-r1-generates.html

■□□□□ IoT: Dashboards for Home Assistant. https://github.com/Madelena/hass-config-public/?tab=readme-ov-file

■■■■■ Shai Hulud is a self-replicating npm worm that executes malicious code via the postinstall script during package installation. It uses the TruffleHog tool to scan the system, steal sensitive information (such as API keys and tokens), and upload it to randomly named repositories on GitHub. These repositories have a uniform description of “Sha1-Hulud: The…

■■□□□ Wireshark Vulnerabilities Let Attackers Crash by Injecting a Malformed Packet. cybersecuritynews.com/wireshark-vulnerabilities-4-6-1

■■■□□ The Octopus-Packing Multi-Functional High Boy Aims to Beat the Flipper Zero Built-in Wi-Fi gives the High Boy an edge over the competition, and an open source release has been promised post-crowdfunding. https://www.hackster.io/news/the-octopus-packing-multi-functional-high-boy-aims-to-beat-the-flipper-zero-1c95c36da7e3

■■■■□ Weaponized file name flaw makes updating glob an urgent job. https://www.theregister.com/2025/11/23/infosec_news_in_brief/

■■■■□ OSINT on social media accounts of Israelis allowed Palestinian army (Hamas) to get technical knowledge of Merkava 4 tanks of postal including a kill switch. An interesting thread: https://x.com/grok/status/1992604660516241461