Zero-Click iPhone Hack via WhatsApp Images :
Quarkslab blog post analyzing the patch for Apple's iOS CVE-2025-43300 (a zero-click vulnerability in ImageIO via malformed DNG images, potentially exploitable through apps like WhatsApp)
Fascinating patch analysis: Incredible how just 2 bytes patched CVE-2025-43300, a zero-click out-of-bounds write in Apple's ImageIO. Triggered by sneaky DNG images,
CVE-2025-43300 stemmed from a mismatch in DNG/JPEG parsing, causing double writes and potential code execution. that could hijack your device via rogue images. Apple's August 2025 patch
- https://t.co/n5xmYSdISi
🚨 There’s a large-scale supply chain attack in progress: the NPM account of a reputable developer has been compromised. The affected packages have already been downloaded over 1 billion times, meaning the entire JavaScript ecosystem may be at risk.
The malicious payload works by silently swapping crypto addresses on the fly to steal funds.
If you use a hardware wallet, pay attention to every transaction before signing and you're safe.
If you don’t use a hardware wallet, refrain from making any on-chain transactions for now.
It’s still unclear whether the attacker is also stealing seeds from software wallets directly at this stage.
Excellent report here: https://t.co/5CtiZJHYsN
Inspired by https://t.co/AsQNB209Xp: ai‑security‑agents - plug‑and‑play system prompts that enhance AI outputs for security. Roles: Web App Pentester, AppSec Architect, Threat Intel Hunter. Try it 👉 https://t.co/e6QpNg4RpK #AI#Cybersecurity#AppSec
When a SSRF is enough: Full Docker Escape on Windows Docker Desktop (CVE-2025-9074)
https://t.co/2CGY8UV7fy
"How was it found
It was by mistake actually, I did not know much about container separations and its implication"
@deel speed in action 🚨 P1 in Monza this weekend!
Building at @deel is like racing: speed wins - but safety keeps you in the game
Engineers ship fast.
The Security team rides shotgun, especially offensive 🫣
Zero brakes on features, zero compromise on security. 🏎️
‼️Procurele su konfiguracije i VPN šifre Fortigate firewalla širom sveta. Za Srbiju je tu 31 uređaj. ODMAH promenite sve šifre na Fortigate uređajima ukoliko ih koristite. Više info na https://t.co/8hgkPrt46a