The UK’s Information Commissioner’s Office (ICO) has raised alarm over a troubling trend: schoolchildren are increasingly responsible for cyberattacks and data breaches within educational institutions. An analysis of 215 incidents recorded between January 2022...
deepce Docker Enumeration, Escalation of Privileges, and Container Escapes (DEEPCE) In order for it to be compatible with the maximum number of containers DEEPCE is written in pure sh with no dependencies. It will make...
EvilTree A standalone python3 remake of the classic “tree” command with the additional feature of searching for user-provided keywords/regex in files, highlighting those that contain matches. Created for two main reasons: While searching for...
GitFive GitFive is an OSINT tool to investigate GitHub profiles. Main features : Usernames / names history Usernames / names variations Email address to GitHub account Find GitHub’s accounts from a list of email...
A European DDoS mitigation provider has been struck by an unprecedented attack, with traffic volumes peaking at 1.5 billion packets per second. The massive wave originated from thousands of compromised IoT devices and MikroTik...
Researchers at Oligo Security have uncovered a vulnerability in Apple CarPlay that enables remote code execution with root privileges, granting attackers full control over a vehicle’s multimedia system. The flaw, registered as CVE-2025-24132, resides...
Two Kenyan documentary filmmakers have come under surveillance by state security services for their work on a film about youth-led protests. Digital forensics experts revealed that their phones had been infected with the spyware...
U.S. Senator Ron Wyden has sent a letter to the Federal Trade Commission (FTC) demanding an investigation into Microsoft, accusing the company of “gross negligence” in the field of cybersecurity. The concern stems from...
A new tool called SpamGPT has emerged on underground forums and quickly become a focal point of discussion within the cybersecurity community. The platform combines the capabilities of generative AI with a fully fledged...
In August 2024, SonicWall issued security advisory SNWLID-2024-0015, disclosing an improper access control vulnerability in SSLVPN across Gen5, Gen6, and Gen7 devices. The flaw enabled attackers to bypass restrictions and gain access under specific...