Himanshu Anand
@noob.bsky.social
Capturing some flags!!
https://himanshuanand.com
jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()//>\x3e
https://himanshuanand.com
jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()//>\x3e
The lack of common sense among the people, it should be called "uncommon sense".
September 14, 2025 at 2:56 PM
The lack of common sense among the people, it should be called "uncommon sense".
Reposted by Himanshu Anand
Don't forget our Call for Papers (also Rookies and Workshops) is still open!
Have you got something original and interesting to share, but need somewhere to do it?
➡️ #BSidesLDN2025
More information and to submit your proposal: cfp.bsides.london/bsides-londo...
#Security #BSides #London
Have you got something original and interesting to share, but need somewhere to do it?
➡️ #BSidesLDN2025
More information and to submit your proposal: cfp.bsides.london/bsides-londo...
#Security #BSides #London
August 20, 2025 at 7:36 AM
Don't forget our Call for Papers (also Rookies and Workshops) is still open!
Have you got something original and interesting to share, but need somewhere to do it?
➡️ #BSidesLDN2025
More information and to submit your proposal: cfp.bsides.london/bsides-londo...
#Security #BSides #London
Have you got something original and interesting to share, but need somewhere to do it?
➡️ #BSidesLDN2025
More information and to submit your proposal: cfp.bsides.london/bsides-londo...
#Security #BSides #London
Reposted by Himanshu Anand
A web malware campaign tracked as ZuizhongJS has now hijacked over 150,000 websites—and counting—to insert ads and redirect users to Chinese gambling sites: cside.dev/blog/over-15...
This campaign started last month: cside.dev/blog/over-35...
This campaign started last month: cside.dev/blog/over-35...
Over 150K websites hit by full-page hijack linking to Chinese gambling sites
We estimate that approximately 150,000 websites have been impacted by this campaign. The script defines an array of keywords related to betting, gambling, and casino brands both in English and Chinese...
cside.dev
March 27, 2025 at 8:59 AM
A web malware campaign tracked as ZuizhongJS has now hijacked over 150,000 websites—and counting—to insert ads and redirect users to Chinese gambling sites: cside.dev/blog/over-15...
This campaign started last month: cside.dev/blog/over-35...
This campaign started last month: cside.dev/blog/over-35...
I had an stupid thought: since a CSP (Content Security Policy) can be implemented using a <meta> tag, what’s stopping JavaScript from rewriting these meta tags to bypass the CSP?
I knew it was not possible but why not?
I knew it was not possible but why not?
February 26, 2025 at 4:25 PM
I had an stupid thought: since a CSP (Content Security Policy) can be implemented using a <meta> tag, what’s stopping JavaScript from rewriting these meta tags to bypass the CSP?
I knew it was not possible but why not?
I knew it was not possible but why not?
Reposted by Himanshu Anand
Hey cybersecurity folks! As a direct or indirect consequence of the US (and others) cutting foreign aid, there are many who have done cybersecurity for NGOs and at-risk groups who are or will be looking for a job. They often have broad experience, from research to incident response to education 1/2
February 3, 2025 at 8:38 PM
Hey cybersecurity folks! As a direct or indirect consequence of the US (and others) cutting foreign aid, there are many who have done cybersecurity for NGOs and at-risk groups who are or will be looking for a job. They often have broad experience, from research to incident response to education 1/2
Reposted by Himanshu Anand
Hackers are hijacking WordPress sites to push Windows and Mac malware
Hackers are hijacking WordPress sites to push Windows and Mac malware
A cybersecurity company says hackers are pushing Mac and Windows malware through sites that are using outdated versions of WordPress.
© 2024 TechCrunch. All rights reserved. For personal use only.
tcrn.ch
January 29, 2025 at 10:07 PM
Hackers are hijacking WordPress sites to push Windows and Mac malware
Honored to be quoted in @techcrunch.com 's latest article on the hijacking of WordPress sites to distribute Windows and Mac malware. It's crucial for website owners to stay vigilant and implement robust security measures. Read more: techcrunch.com/2025/01/29/h...
Hackers are hijacking WordPress sites to push Windows and Mac malware | TechCrunch
A cybersecurity company says hackers are pushing Mac and Windows malware through sites that are using outdated versions of WordPress.
techcrunch.com
January 30, 2025 at 9:56 AM
Honored to be quoted in @techcrunch.com 's latest article on the hijacking of WordPress sites to distribute Windows and Mac malware. It's crucial for website owners to stay vigilant and implement robust security measures. Read more: techcrunch.com/2025/01/29/h...
We found 2 more domains associated with the same attack:
iogamesl[.]xyz
wp-cdn[.]top
In today we have identified a little over 500 websites that were impacted.
iogamesl[.]xyz
wp-cdn[.]top
In today we have identified a little over 500 websites that were impacted.
Over 5,000 WordPress sites caught in WP3.XYZ malware attack
cside.dev/blog/over-5k...
cside.dev/blog/over-5k...
Over 5,000 WordPress sites caught in WP3.XYZ malware attack
We’ve uncovered a widespread malware campaign targeting WordPress websites, affecting over 5,000 sites globally.
The malicious domain: "https://wp3.xyz/plugin[.]php".
cside.dev
January 29, 2025 at 7:53 PM
We found 2 more domains associated with the same attack:
iogamesl[.]xyz
wp-cdn[.]top
In today we have identified a little over 500 websites that were impacted.
iogamesl[.]xyz
wp-cdn[.]top
In today we have identified a little over 500 websites that were impacted.
I was expecting a crash, but I guess the system's a bit rusty…
January 29, 2025 at 12:30 PM
I was expecting a crash, but I guess the system's a bit rusty…
WP infected website infecting windows users with SocGholish and Mac Users with AMOS.
cside.dev/blog/10-000-...
cside.dev/blog/10-000-...
10,000 WordPress Websites Found Delivering MacOS and Windows Malware
We identified over 10,000 WordPress loading showing fake Google browser update leading to malware downloads.
cside.dev
January 28, 2025 at 10:15 PM
WP infected website infecting windows users with SocGholish and Mac Users with AMOS.
cside.dev/blog/10-000-...
cside.dev/blog/10-000-...
Over 5,000 WordPress sites caught in WP3.XYZ malware attack
cside.dev/blog/over-5k...
cside.dev/blog/over-5k...
Over 5,000 WordPress sites caught in WP3.XYZ malware attack
We’ve uncovered a widespread malware campaign targeting WordPress websites, affecting over 5,000 sites globally.
The malicious domain: "https://wp3.xyz/plugin[.]php".
cside.dev
January 13, 2025 at 8:35 PM
Over 5,000 WordPress sites caught in WP3.XYZ malware attack
cside.dev/blog/over-5k...
cside.dev/blog/over-5k...
This is crazy, everything I say BOTS 1 new bot follows me. 😅🤣
January 13, 2025 at 4:41 PM
This is crazy, everything I say BOTS 1 new bot follows me. 😅🤣
Post about BOTS get more BOTS. 🥲
January 13, 2025 at 3:42 PM
Post about BOTS get more BOTS. 🥲
I got more bots followers than real people. 🤷♂️
January 13, 2025 at 11:35 AM
I got more bots followers than real people. 🤷♂️
When to expect next Ivanti 0day?
> My prediction 1 more this quarter.
> My prediction 1 more this quarter.
January 9, 2025 at 12:19 PM
When to expect next Ivanti 0day?
> My prediction 1 more this quarter.
> My prediction 1 more this quarter.
New year/quarter is incomplete without Ivanti 0day.
January 8, 2025 at 11:47 PM
New year/quarter is incomplete without Ivanti 0day.
Happy CVE-2025-0001
December 31, 2024 at 3:49 PM
Happy CVE-2025-0001
A bit old but I was quoted :D
Cisco merch shoppers stung in Magecart attack
Cisco merch shoppers stung in Magecart attack
The 'security issue' was caused by a 9.8-rated Magento flaw Adobe patched back in June
Bad news for anyone who purchased a Cisco hoodie earlier this month: Suspected Russia-based attackers injected data-stealing JavaScript into the networking giant's…
dlvr.it
December 28, 2024 at 9:05 PM
A bit old but I was quoted :D
Bluesky BOTS: bluebots
December 12, 2024 at 3:34 PM
Bluesky BOTS: bluebots
Can't wait for @bsideslondon.bsky.social !!
I will be there (1st time as mentee and 4th time as a volunteer), feel free to DM if you want to meet.
See you at #Bsides.
I will be there (1st time as mentee and 4th time as a volunteer), feel free to DM if you want to meet.
See you at #Bsides.
December 10, 2024 at 5:26 PM
Can't wait for @bsideslondon.bsky.social !!
I will be there (1st time as mentee and 4th time as a volunteer), feel free to DM if you want to meet.
See you at #Bsides.
I will be there (1st time as mentee and 4th time as a volunteer), feel free to DM if you want to meet.
See you at #Bsides.
Shell code is nothing but C in its native format.
November 29, 2024 at 5:02 PM
Shell code is nothing but C in its native format.
Look at all these conspiracy theories I love reading about.
November 27, 2024 at 9:51 AM
Look at all these conspiracy theories I love reading about.
Reposted by Himanshu Anand
Daniel Grzelak has released Awseye, a so-called Shodan for AWS, an OSINT and reconnaissance service that tracks and analyzes publicly accessible AWS data
awseye.com
awseye.com
November 26, 2024 at 3:36 PM
Daniel Grzelak has released Awseye, a so-called Shodan for AWS, an OSINT and reconnaissance service that tracks and analyzes publicly accessible AWS data
awseye.com
awseye.com