Very late on getting this video out the door, but a teeny weeny showcase of the recent Docker for Desktop on Windows & MacOS container escape, CVE-2025-9074 -- proof of concept was included so a simple demo of arbitrary file write & file read on the host:

and thank you to video editors @HackerCatProd for exposing the root of my C drive

RT @gleeda: A look at a newer ransomware variant that we've seen here at @HuntressLabs . Thanks to Harlan Carvey and @LindseyOD123. and awe….

clickfix btw

Always curious and full of energy, Beagles turn every walk into an adventure 🐾🎉.

nice

Just Hacking Training Livestream

RT @shitwolfymakes: Thanks @_JohnHammond 😂😂😂

@0xTib3rius @aylacroft @endingwithali @NotNordgaren et. al.

IT'S HERE

I’m a Democrat running for Congress in Virginia's 2nd District because I swore to defend this country. We need a new mission in Congress: one that puts country over party and people over politics. Help us retake this critical swing district now.

Big thanks to @FlareSystems for sponsoring this video and their continued support of the channel! Track data on the dark web and manage threat intelligence for your exposed attack surface with Flare -- try a free trial and see what info is out there:

The fake EUROPOL / Qilin ransomware gang notice that flew around a few weeks ago was a funny story. I yapped about it in a video and briefly peeked into some Telegram channels to see cybercrime kiddos dropping LOLs and LMAOs on their counterintel op:

"Not all heroes wear capes. Some have YouTube channels." . hot DAAYUUMM.CONGRATULATIONS @ScammerPayback !!!!!!.🤩💥🔥🥳🎊🎉.

We've been chugging along with a goal of live and in-person training being a sweet milestone. super stoked to be able to bring an awesome crew to @bsideschicago !! 💪.

Big thanks to @Antisy_Training @BHinfoSecurity for sponsoring this video and their continued support of the channel! Jump into "Pay Forward What You Can" training at Antisyphon Training, at whatever cost makes sense for you!

Video showcase of the recent WinRAR 0-day, CVE-2025-8088, uncovered by ESET after threat actor RomCom exploited it in the wild leveraging alternate data streams & path traversal on Windows -- we examine the uncovered RAR file and a proof-of-concept demo!

@albinowax Big thanks to @PortSwigger for sponsoring this video -- you can read all the details about his insane research here and see what else him and PortSwigger and the whole @Burpsuite team are up to: :).

I FINALLY got a chance to chat with James Kettle @albinowax and hear about his latest research, with a cool caption "HTTP/1.1 Must Die" 😎 Mind-blowing work including desync attacks and critical vulnerabilities affecting websites & CDNs. and a demo!

Caught in the middle of a political battle, @BlackRock reaffirmed its focus is helping millions of Americans save for retirement. They warned that injecting politics from either side risks undermining financial performance.

I don't know if I really want to become another person online who every day tweets."good morning" . but I've been trying to wake up earlier and get a better routine, ya know? 🤡.

the recording of my talk on the Black Hat show floor is up on yout00b :)

RT @gleeda: Occasionally you see a new or newish threat in the SOC. One such example is Syphilis- oops, I mean, Cephalus Ransomware . Eith….