■■■■□ Chinese Backdoor for Telecom Systems Backdoor that the Chinese have been using to maintain persistence across telecom systems. The backdoor attaches itself to a raw network socket and inspects incoming traffic. It sees packets before firewall rules have a chance to process them. So even if your firewall is configured correctly, the backdoor can…
All posts in Uncategorized
July 19, 2026 at 12:52AM
✅CVE-2026-63030: Unauthenticated SQL injection in WordPress core chaining to RCE. No credentials, no configuration. One endpoint: POST /wp-json/batch/v1. The REST batch endpoint builds two parallel arrays ($matches and $validation) that fall out of step when a sub-request path fails wp_parse_url(). A sub-request gets dispatched under a different handler’s context. The PoC nests this route confusion…
July 18, 2026 at 10:02PM
■■■□□ 🇨🇳 China just torched the U.S. AI lead in a single afternoon. Moonshot AI, a little-known Beijing startup, dropped Kimi K3 on Thursday and it instantly kicked into the top tier of global models. It beat Anthropic’s Fable 5 and OpenAI’s GPT-5.6 Sol on coding tests, then edged out Opus 4.8 on a broader…
July 18, 2026 at 11:27AM
■□□□□ A model that reconstructs any scene in 3D from a regular video, in real-time. one camera. no LiDAR. 10,000+ frames without falling apart. just walk around with your camera and watch the entire world get rebuilt in 3D at 20 fps. → runs at ~20 FPS on a single GPU → Stable over 10,000+…
July 18, 2026 at 11:22AM
■□□□□ An interesting 𝕏 thread: AWS users are in shock as the company shows them wildly inflated cost estimates running into billions of dollars per account. AWS has confirmed a global billing console bug as the cause. https://x.com/i/status/2078093372632301879
July 18, 2026 at 12:45AM
■■■■□ This is how macOS devs get compromised by opening a .docx (file opening a resume, opening a p.o. sow whatever) In short: > docx can have a remote template (feature to let it pull styles from an http server) > docx remote template runs VBA in your machine > this VBA can run an…
July 17, 2026 at 05:09PM
🔴Yet another website: privacyguides.org
July 17, 2026 at 11:30AM
💻😯Windows includes a file-system virtualization feature that can redirect one local path to another without modifying the original file or leaving a persistent filesystem artifact. It is implemented by bindflt.sys, the Bind Filter minifilter driver, and used legitimately by Store apps, Windows Sandbox, and Windows containers. https://www.bitdefender.com/en-us/blog/businessinsights/bind-link-abuses-windows-feature-edr-evasion-technique https://x.com/i/status/2078016406856282445
July 17, 2026 at 11:24AM
■■□□□ Vulnerabilities in Election system: Trump releases documents reportedly exposing election interference in U.S. https://www.whitehouse.gov/election-integrity/
July 16, 2026 at 09:17PM
■■■■□ Responsible disclosure report 2022-2025 – Oversecured found 176 vulnerabilities in Samsung preinstalled apps. https://github.com/oversecured/Samsung_Vulnerabilities
