Samer Wleed

I made a personal black hole that makes you take breaks 🕳️ A shader for Ghostty that spawns a small black hole in your terminal - it drifts around, gravitationally lensing your text. The longer you work without stopping, the bigger it gets, until it's basically demanding you go touch grass Take a break and it quietly shrinks away

FULL REMOTE CODE EXECUTION on default nginx 1.30.0 no config changes needed. 🫠 Verichains a deadly exploit chain combining Nginx-Rift (CVE-2026-42945) + Nginx-PoolSlip (CVE-2026-9256). 2-byte heap pointer overwrite & heap over-read then ASLR bypass to arbitrary command execution via system() on connection teardown.

⚠️Windows Search URI Handler Flaw Leaks NTLMv2 Hashes to Attacker-Controlled Servers Source: https://t.co/CaxCINR3Ly A newly disclosed flaw in the Windows search URI handler can silently leak NTLMv2 hashes to attacker-controlled servers with nothing more than a single link click. This behavior is the same bug class as CVE-2026-33829 in the Snipping Tool, but Microsoft has assigned no CVE and shipped no fix for this variant. That bug allowed attackers to supply a filePath parameter pointing to a remote UNC path, triggering outbound SMB authentication and exposing the victim’s Net-NTLMv2 hash. A user could be tricked into clicking what appeared to be a normal link, and their machine would automatically try to “check in” to an attacker’s SMB server. #cybersecuritynews

🚨 A security researcher has just disclosed a one-click GitHub token-stealing exploit that abuses a VS Code bug. https://t.co/pBX7au8tGT Ammar Askar disclosed a one-click GitHub token-stealing issue affecting https://t.co/4ahrVFQWcw and VS Code webviews, where a victim clicking a crafted https://t.co/4ahrVFQWcw link could be led into a malicious notebook/workspace flow that abuses VS Code’s webview keyboard event handling to install attacker-controlled extension behavior. According to the researcher, the exposed GitHub token can read and write repositories the user has access to, including private repositories, because https://t.co/4ahrVFQWcw receives a broad OAuth token from GitHub. The post includes a proof-of-concept, notes that the desktop version of VS Code may also be affected under harder-to-exploit conditions, and recommends clearing https://t.co/4ahrVFQWcw site data as a mitigation while the issue is publicly disclosed.

Microsoft just posted a 400-word statement about how much they respect security researchers. “We have no intention to pursue action against individuals conducting security research.” They are currently pursuing legal action against Nightmare-Eclipse. The researcher they banned from GitHub. Whose account they deleted. Whose bug bounty they denied. Who then dropped six zero-days in six weeks. Three of which were exploited in the wild within days. Microsoft’s legal team sent this statement to the PR team. The PR team posted it anyway. The researchers are still releasing vulnerabilities for free. The statement did not slow them down.