📢 “Do not claim to speak for children while ignoring them everywhere else.”
@StopKilingGames is joining a massive global coalition to launch Stop Killing the Internet alongside @BigBrotherWatch , @IndexCensorship , @OpenRightsGroup , @defenddigitalme , @NO2ID , @sflc , @digiges_ch , Hosting Haven, @OpenMediaOrg , IuRe, @LabDRN , @techfdemocracy , Electronic Frontiers Australia, @EuropeanPirates , @AlderonGames , @RWSstudios , @ProgressiveVic and the @EuEthInstitute .
👀 From KOSA to Chat Control, governments worldwide are pushing a synchronized agenda of surveillance, censorship, and digital access restrictions. This infrastructure doesn't just threaten the open web, it puts gaming communities, private servers, and digital preservation directly in the crosshairs.
🤝 We are building a global hub for research and resistance to challenge this dangerous shift toward state-controlled platforms.
💪 We need all hands on deck.
Join the movement: https://t.co/GQ7GgGkPnk
🙌 The answer to online safety cannot be the surveillance and censorship we were warned about in Orwell's 1984. It’s time to fight back!
#StopKillingInternet #StopKillingGames #DigitalRights #InternetFreedom #Privacy
Introducing the new /crawl endpoint - one API call and an entire site crawled.
No scripts. No browser management. Just the content in HTML, Markdown, or JSON.
🚨Iranian 🇮🇷 👩: Islam ☪️ is not our religion. It was forced on us Iranian 🇮🇷 through torture ,killings and raping us into subjugation.
Muslims will post a video of one convert in jubilation but here is an entire nation of 92 million completely rejecting and renouncing Islam ☪️.
𝗝𝘂𝘀𝘁 𝗹𝗮𝘂𝗻𝗰𝗵𝗲𝗱 𝗮𝘄𝗲𝘀𝗼𝗺𝗲-𝗱𝗳𝗶𝗿-𝘀𝗸𝗶𝗹𝗹𝘀 𝘄𝗶𝘁𝗵 @fr0gger_ !
Designed to save time during investigations and everyday DFIR tasks
Thomas has built an excellent malware triage skill, and I’ve added a couple of timeline analysis skills to help you get started. Feel free to contribute and use these skills to save a ton of time, like we already do.
https://t.co/HbT67gyVbb
Learn about skills:
- https://t.co/Wj9yZwv80U
- https://t.co/PVqnvOPdNb
‼️ Meet the guy almost everyone hates for releasing a PoC for a MongoDB unauthenticated memory leak exploit dubbed Mongobleed the day after Christmas.
This is allegedly the vulnerability used to breach Ubisoft, which led to the R6 chaos.
🚨PornHub is being extorted by the ShinyHunters extortion group over the theft of over 200 million Premum member activity data records.
Both PornHub and ShinyHunters claim the data was stolen in the recent Mixpanel breach.
https://t.co/M1mrL20jYd
Piratage du ministère de l'Intérieur: auprès de BFMTV, les équipes de Beauvau confirment que les hackers ont eu accès "à des applicatifs métiers".
Autrement dit, des outils et logiciels internes, avec potentiellement à la clef des accès à des bases de données.
Attackers can bypass identity controls and pivot from on-prem to cloud with ease.
Join @JustinKohler10 & @jaredcatkinson at #GartnerIAM as they break down recent breaches and how Identity Attack Path Management helps teams eliminate exploitable paths. https://t.co/FrqCKBnrcB
🛠️ Malicious PixelCode - a covert technique for encoding executable files into pixel data and storing them inside images or videos.
✅A lightweight loader retrieves the media file, reconstructs the original binary and executes it in memory. https://t.co/TPnD64huKW
GitHub - vvswift/RedTeam-Arsenal: Red Team Arsenal - a comprehensive collection of tools, scripts, and techniques for conducting red team operations and adversary simulations, including custom beacons, malleable C2 profiles, aggressor scripts, https://t.co/rgrR9FKxsD
An OSINT reconnaissance poc powered by Local LLMs (Ollama). You can feed it an:
📧Email
🌐Domain or IP
♻️Automatically performs multiple types of reconnaissance
📄Clean human-readable report
https://t.co/td2CJWahKX
See your network shares the way attackers do. 👀
Meet ShareHound, an OpenGraph collector for BloodHound CE & Enterprise that reveals share-level attack paths at scale. @podalirius_ unpacks all the details in our latest blog post. https://t.co/iNI8WHO0WE
⚠️ Two New Windows Zero-Days Exploited in the Wild
https://t.co/0TzLVtqrea
Microsoft has confirmed two actively exploited zero-day vulnerabilities: CVE-2025-24990 (a privilege escalation in the Agere modem driver present in all Windows versions) and CVE-2025-59230 (an elevation-of-privilege flaw in the Remote Access Connection Manager).
These issues show how even legacy and obscure components embedded in modern Windows environments are being targeted for real-world attacks.
Review systems for signs of unexpected privilege escalations, unknown driver loads, and unauthorized RasMan activity.
#CyberSecurity #WindowsSecurity #ZeroDay #ThreatHunting
New research shows Credential Guard can still leak creds
By abusing Remote Credential Guard, attackers can request NTLMv1 challenge responses and recover NT hashes - even on fully patched Windows 11 with VBS and PPL
- Microsoft confirmed and marked it “won’t fix.”
- PoC called DumpGuard
Full write-up by @SpecterOps https://t.co/Pm6autWZ1a