It has a name now: phantom squatting. Attackers pre-register the fake domains AI models keep inventing, then wait for the AI to send people in.
Full breakdown:
https://t.co/IoVaEA0JAL
Your AI just sent you to a login page that did not exist a few weeks ago.
Someone registered it first and is collecting every password typed in.
No phishing email.
You trusted the link because your AI gave it to you.
That trust is the attack.
#AISecurity#Phishing
Full breakdown: how the hidden stream drops malware in your startup folder, why the fix never lands, and how to check if you are exposed in 10 seconds.
https://t.co/3TvKvf4Xqa
You opened a RAR file someone emailed you. A CV, nothing weird on screen.
Next login, malware is already running. You didn't click anything, didn't approve an install. Opening the archive was all it took.
WinRAR has had this hole for a year.
#WinRAR#infosec
He broke into 40 of the world's biggest companies and became the FBI's most wanted hacker.
He never needed code. He just picked up the phone and asked.
This was Kevin Mitnick.
#ethicalhacking#socialengineering
Kevin wrote it all down himself. Ghost in the Wires is the fugitive years in his own words.
His books → https://t.co/67MmGkzigS
As an Amazon Associate I earn from qualifying purchases.
A Docker container on a Gitea build runner can break out to root on the host.
You set privileged: false to lock it down. It does nothing.
CVSS 9.9. Public exploit. No patch yet.
#Docker#DevSecOps
A normal Linux user can rewrite /bin/su in memory and become root.
The file on disk never changes.
Every integrity check comes back clean.
pedit COW, CVE-2026-46331.
A working exploit is public, and the flaw has sat in Linux since 2022.
Thousands of company firewalls are open right now. On 2,645 of them, the password was 123456.
That story, the rest of this week's posts, and a subscriber-only tip are in today's newsletter. What I send, you get.
Sign up 👇
Cloudflare Bypass
A site can hide its real server behind Cloudflare, but its mail usually runs on that same machine. Look up the domain's MX record, resolve it, and you often land on the origin IP. Connect to that directly, and you walk around the reason they put Cloudflare up.
Anyone on the internet can send an email that looks like it came from your bank, your boss, or you. The system that delivers it never checks if that is true.
Email was built in 1982 to trust whoever was talking. Phishing has lived in that gap ever since.
Google told a researcher his bug was a nice catch and lined up his payout.
Eleven days later, it called the flaw harmless and paid nothing.
The flaw lets anyone with basic Kubernetes access take over a whole Google Cloud org in five seconds.
Still not fixed.