https://t.co/txBlxmMa61 Anti-cheat evolution in Windows... New Year post while I am in vacation is ready!!! 🎉 Happy 2026!

https://t.co/x6Vx4Hxm6p

“So much fog.” “What can Santa do against such hateful weather?” “Ride out with me.”

"Just use the command line" Gen Z devops who has always used drag and drop tools 👇

Whether you're learning x86 instruction encoding or writing YARA rules, ZydisInfo is an amazing (yet slightly underrated) tool for the job.

🐀 Cracking ValleyRAT: From Builder Secrets to Kernel Rootkits CP<r> reveals: 🔍 Full #ValleyRAT/#Winos teardown 🧩 Leaked builder + artifacts mapped to all plugins 🛠️ Win11-loadable kernel rootkits 💥 Stealthy driver install, APC injection, AV/EDR wipe https://t.co/RLKgbRYjXx

stop using ubuntu 24.04 to host your kernel pwn challenges lmao https://t.co/uCCNthelDn

MaksRAT HKCU\Software\Microsoft\Windows\CurrentVersion\Run\javacom Botnet C2s 📡 104.198.24 .41:6656 avocado .gay www.foldacces .online www.makslove .xyz www.mavenrat .xyz www.blackprofit .online Malware sample shared by @smica83 💪 https://t.co/PaORPNKhNU IOCs are available

Intel 471 observed a new Android banking trojan impersonating an mBank security app in Poland. We named it FvncBot, noting a new codebase and capabilities used for mobile #fraud. Read the full analysis: https://t.co/mUwGZXqpOH #cybersecurity #threatintel #cybercrime

https://t.co/JNXpRozK8i

Mirai botnet #zerobot spreading through 172.86.123.179 (cloudzy 🇦🇪) ⤵️ Mirai botnet C2 domain: 0bot.qzz .io (Gandi SAS 🇫🇷) Mirai botnet C2 server: 140.233.190.96:69 (Internet Magnate 🇿🇦) Payload URLs: 🌐 https://t.co/ZuY2xTCiTE Mirai malware sample: 🤖 https://t.co/5bz3ENhodv

Zscaler ThreatLabz has published a technical analysis of Matanbuchus version 3.0 and has observed recent deployments consistent with hands-on-keyboard ransomware operations. This new version of Matanbuchus implements a number of obfuscation techniques to evade detection such as

Introducing RAPTOR, an Autonomous Offensive/Defensive Research Framework based on Anthropic's Claude Code, written by @dcuthbert, @halvarflake, @mbrg0, and myself. Let's rock. Get it from GitHub, here:

We’ve identified an interesting malware family 🔍, which we’ve named #GrokPy due to its use of a Grok LLM model 🤖 to solve and subsequently bypass CAPTCHAs 🔥 The malware gets dropped by #Amadey and: 🪝 collects information about the infected device, such as screen

https://t.co/DfWSPeQEZW

If you missed HEXACON 2025 or want to rewatch some of the talks, they’re now available on our YouTube channel 📽️ Enjoy the content, and see you in 2026! https://t.co/KHHVAGY48M

Zscaler ThreatLabz has discovered CVE-2025-50165 in the Microsoft Windows Graphics Component. With a CVSS score of 9.8, this vulnerability enables attackers to execute arbitrary code using a specially crafted JPEG image that can be triggered by any application that leverages the

ENDGAME 3.0 REMEDIATION | Following on from the 📢 announcement last week Spamhaus is now sending notification emails 📩 to ISPs associated with infected machines. Here's what to do if you receive one: 👉 Go to this remediation webpage: https://t.co/05by7QtU9d 👉 Enter the

Yet another new stealer in town: #ArkanixStealer 🔥 %AppData%\Arkanix_lol\history.json %AppData%\Arkanix_lol\system_info.json %AppData%\Arkanix_lol\screenshot_monitor_1.png Akranix botnet C2: 📡 https://arkanix .pw/api/session/create 📡 https://arkanix .pw/delivery

⌨️ Introducing HCLI: The Modern Command-Line Interface for IDA. Automate workflows, simplify plugin development across platforms, manage licenses and more. https://t.co/1PWeVZmePY