killface.bsky.social
LightNews LightNews
killface.bsky.social
@killface.bsky.social
9 followers 42 following 0 posts
Posts Replies Media Videos
Reposted by killface.bsky.social
infosec.skyfleet.blue
New EDR-Freeze Tool That Puts EDRs and Antivirus Into A Coma State
New EDR-Freeze Tool That Puts EDRs and Antivirus Into A Coma State
cybersecuritynews.com
September 21, 2025 at 4:23 AM
Reposted by killface.bsky.social
adzebill.bsky.social
Wikipedia editors trying to fend off the onslaught of AI crap have crowdsourced some telltale signs of LLM-generated writing; it might be handy for editors and proofreaders generally. Thanks to @ellenrykers.com for pointing me to it. en.wikipedia.org/wiki/Wikiped...
Wikipedia:Signs of AI writing - Wikipedia
en.wikipedia.org
August 31, 2025 at 11:58 PM
Reposted by killface.bsky.social
jbhall56.bsky.social
Tenable released details of a Google Cloud Run flaw that prior to remediation allowed a threat actor to escalate privileges. www.darkreading.com/cloud-securi...
Google 'ImageRunner' Bug Enabled Privilege Escalation
Tenable released details of a Google Cloud Run flaw that prior to remediation allowed a threat actor to escalate privileges.
www.darkreading.com
April 2, 2025 at 1:04 PM
Reposted by killface.bsky.social
jbhall56.bsky.social
Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks. www.bleepingcomputer.com/news/securit...
Apiiro unveils free scanner to detect malicious code merges
Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks.
www.bleepingcomputer.com
February 21, 2025 at 12:41 PM
Reposted by killface.bsky.social
infosec.skyfleet.blue
0-Day Vulnerabilities in Microsoft Sysinternals Tools Allow Attackers To Launch DLL Injection Attacks on Windows
0-Day Vulnerabilities in Microsoft Sysinternals Tools Allow Attackers To Launch DLL Injection Attacks on Windows
cybersecuritynews.com
February 5, 2025 at 7:44 AM
Reposted by killface.bsky.social
infosec.skyfleet.blue
[SECURITY ADVISORY] curl: CVE-2025-0725: gzip integer overflow
[SECURITY ADVISORY] curl: CVE-2025-0725: gzip integer overflow
Posted by Daniel Stenberg on Feb 05 gzip integer overflow ===================== Project curl Security Advisory, February 5th 2025 - [Permalink]( https://curl.se/docs/CVE-2025-0725.html ) VULNERABILITY ------------- When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, **using zlib 1.2.0.3 or older**, an attacker-controlled integer overflow would make libcurl perform a buffer overflow. INFO ----...
seclists.org
February 5, 2025 at 8:44 AM
Reposted by killface.bsky.social
infosec.skyfleet.blue
TinyZero – Researchers Replicated DeepSeek’s R1-Zero Model for Just $30
TinyZero - Researchers Replicated DeepSeek’s R1-Zero Model for Just $30
cybersecuritynews.com
February 5, 2025 at 8:44 AM
Reposted by killface.bsky.social
infosec.skyfleet.blue
New Cookie Sandwich Technique Let Attackers Bypass HttpOnly Flag On Servers
New Cookie Sandwich Technique Let Attackers Bypass HttpOnly Flag On Servers
cybersecuritynews.com
January 23, 2025 at 8:29 AM
Reposted by killface.bsky.social
infosec.skyfleet.blue
Bypassing major EDRs using Pool Party process injection techniques
Bypassing major EDRs using Pool Party process injection techniques
Researchers devised novel attack vector for process injection, dubbed Pool Party, that evades EDR solutions.
securityaffairs.com
December 8, 2023 at 3:28 PM