You can now run full Windows inside a Docker container.
- 129.7 MiB image
- KVM hardware acceleration
- Web-based viewer
This is actually insane.
Legacy apps, testing, isolated environments,,
- https://t.co/8Crqs7skqW
Claude Code Full Sandbox Escape (CVE-2026-55607)
writeup: https://t.co/kzJ04Fqu4Y
prompt injection -> code execution on the host.
works even in read-only permissions mode + full sandbox
(it could be my Pwn2Own bug, but p2o was weird this year lol)
BUC-EE'S GAS EXPOSED. 😳
Creator Madmaxcx7 ran a fuel quality test on Buc-ee’s gas, and the receipts are brutal.
While competitors like Circle K and RaceTrac tested clean and clear, Buc-ee’s sample came back completely foggy at the bottom, showing an ethanol level pushing E14 to E15.
It proves they are heavily cutting their fuel to keep pumps cheap. Absolute engine killer.
An anonymous GitHub account is mass-dropping exploit PoCs framed as undisclosed 0-days, with a note telling readers to report them and "take credit for the CVE" themselves.
Coordinated disclosure, minus the coordination.
‼️🚨 BREAKING: NSA and Cyber Command chief, Gen. Joshua Rudd, said Mythos "broke into almost all of our classified systems, not in weeks, but in hours."
A week after Washington forced Anthropic to disable its most powerful models, the likely reason is sharpening. According to reports Senator Mark Warner told a hearing that the NSA and Cyber Command chief said the firm's Mythos model penetrated almost all of the agency's classified systems within hours during authorized testing.
That demonstration sits behind the June 12 Commerce Department directive, which barred every foreign national, including Anthropic's own non-citizen employees, from using Fable 5 and Mythos 5, leading the company to pull both for all customers. It is the first time the US has export-controlled an AI model itself rather than the chips behind it.
Anthropic disputes the rationale, calling the cited trigger a narrow jailbreak that other models like GPT-5.5 also exhibit and the recall an overreaction.
@androidmalware2 Why place yourself at risk using WhatsApp but instead house your own home infra > create a headless VM > install Claude > give it access your resources > from termux ssh into the Claude host and launch Claude? More efficient.
⚠️ ESP32 BlueJammer Turns a Tiny ESP32 Into a 2.4GHz Chaos Machine — Disrupting Bluetooth, BLE, WiFi, IoT Devices & RC Signals
• Built with ESP32 + dual nRF24L01 modules
• Covers Bluetooth, BLE, WiFi & RC drone frequencies
• OLED mode switching + multi-channel firmware support
• Custom PCB, 3D printed case & battery-powered portable setup
• Includes web flasher, hardware schematics & DIY tutorials
• Range reportedly exceeds 30m with upgraded antennas
Not a toy. RF jamming is illegal in most countries and can interfere with critical communications. Study the hardware, RF concepts and firmware architecture — don’t use it recklessly.
https://t.co/NpzUjA3a8l
#ESP32 #Bluetooth #WiFi #Cybersecurity #HardwareHacking #RF #IoT #OSINT
BREAKING: MICROSOFT JUST ANNOUNCED TO BAN ITS OWN ENGINEERS FROM USING AI DUE TO THE COST OF USING IT.
VP OF NVIDIA SAID, “THE COST OF AI FOR MY TEAM WAS MORE THAN HUMANS”
“AI CAN COST MORE THAN HUMAN WORKERS NOW”
hackers are now hiding malicious code inside .cursorrules and CLAUDE.md files.
invisible Unicode characters, your AI reads them, you don't.
→ 34 malicious packages across npm, PyPI and Crates .io
→ 384 versions designed to steal SSH keys, crypto wallets, and API tokens
→ attackers opened real PRs to LangChain, LlamaIndex, and MetaGPT to sneak these files in
→ your AI runs a fake "security scan" that silently exfiltrates everything
Socket detected it in under 6 minutes.
check your repos.