❏ </Mr. SAM/> ❏
░▒▓█ Bleeping Computer █▓▒░
Elastic rejects claims of a zero-day RCE flaw in Defend EDR
🔗 ➢➣➤ More ...
📢 @NullError_ir
░▒▓█ Bleeping Computer █▓▒░
Elastic rejects claims of a zero-day RCE flaw in Defend EDR
🔗 ➢➣➤ More ...
📢 @NullError_ir
BleepingComputer
Elastic rejects claims of a zero-day RCE flaw in Defend EDR
Enterprise search and security company Elastic is rejecting reports of a zero-day vulnerability impacting its Defend endpoint detection and response (EDR) product.
❏ </Mr. SAM/> ❏
░▒▓█ cybersecurity █▓▒░
OpenAI Launches $4 ChatGPT Go Plan with Unlimited Access to GPT-5
🔗 ➢➣➤ More ...
📢 @NullError_ir
░▒▓█ cybersecurity █▓▒░
OpenAI Launches $4 ChatGPT Go Plan with Unlimited Access to GPT-5
🔗 ➢➣➤ More ...
📢 @NullError_ir
Cyber Security News
OpenAI Launches $4 ChatGPT Go Plan with Unlimited Access to GPT-5
OpenAI has unveiled ChatGPT Go, a budget-friendly subnoscription plan priced at just ₹399 per month (approximately $4 USD, GST included).
❏ </Mr. SAM/> ❏
░▒▓█ DarkReading █▓▒░
PipeMagic Backdoor Resurfaces as Part of Play Ransomware Attack Chain
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ DarkReading █▓▒░
PipeMagic Backdoor Resurfaces as Part of Play Ransomware Attack Chain
🔗 ➢➣➤ More ...
@NullError_ir 📢
Dark Reading
PipeMagic Backdoor Resurfaces as Part of Play Ransomware Attack Chain
Attackers are wielding the sophisticated modular malware while exploiting CVE-2025-29824, a previously zero-day flaw in Windows Common Log File System (CLFS) that allows attackers to gain system-level privileges on compromised systems.
❏ </Mr. SAM/> ❏
░▒▓█ hackday █▓▒░
Food Irradiation Is Not As Bad As It Sounds
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ hackday █▓▒░
Food Irradiation Is Not As Bad As It Sounds
🔗 ➢➣➤ More ...
@NullError_ir 📢
Hackaday
Food Irradiation Is Not As Bad As It Sounds
Radiation is a bad thing that we don’t want to be exposed to, or so the conventional wisdom goes. We’re most familiar with it in the context of industrial risks and the stories of nucle…
cai
این پروژه توسط یک شرکت اسپانیایی متخصص در امنیت رباتها به نام Alias Robotics ساخته شده.
به طور خلاصه،
cai یک جعبه ابزار امنیت سایبری برای رباتهای صنعتی است.۔
cai مخفف Cybersecurity Armory for Industrial robots به معنی زَرادخانه امنیت سایبری برای رباتهای صنعتی است.وظیفه اصلی این ابزار، کمک به متخصصان امنیت و مهندسان رباتیک برای تست و ارزیابی امنیت رباتها است.
۔
cai یک ابزار واحد نیست، بلکه یک فریمورک (Framework) است که شامل چندین ابزار (ماژول) مختلف برای کارهای گوناگون مثل اسکن شبکه، تحلیل پروتکلهای ارتباطی ربات و پیدا کردن ضعفهای امنیتی میشود.این پروژه بیشتر برای گروههای زیر کاربرد دارد:
متخصصان امنیت سایبری
مهندسان رباتیک
محققان دانشگاهی
به طور خلاصه، پس از نصب کارهایی که میتوانید با آن انجام دهید به چند دسته اصلی تقسیم میشوند:
۱. اکتشاف و شناسایی 🕵️
پیدا کردن رباتها در شبکه: شبکههای کارخانهها را اسکن کنید تا دستگاههایی که ربات هستند یا با رباتها در ارتباطند را شناسایی کنید.
جمعآوری اطلاعات از ربات ها
۲. اسکن آسیبپذیری 🛡
بعد از شناسایی، نوبت به پیدا کردن اسکن خودکار آسیبپذیریهای شناختهشده در رباتها مثل:
بررسی رمزهای عبور پیشفرض
شناسایی نرمافزارهای قدیمی
پیکربندیهای ناامن
۳. تحلیل و دستکاری پروتکلهای صنعتی ⚙️
رباتها از پروتکلهای ارتباطی خاصی استفاده میکنند که در شبکههای IT معمولی رایج نیستند (مثل EtherNet/IP, PROFINET و غیره).
cai به شما اجازه میدهد:شنود ترافیک
ارسال بستههای مخرب (Fuzzing)
تزریق دستور (Command Injection)
۴. تست نفوذ و بهرهبرداری 💥
در صورت پیدا کردن یک آسیبپذیری، یک متخصص میتواند با
cai:ربات را متوقف کند (Denial of Service):
کنترل ربات را به دست بگیرد .
اطلاعات حساس را سرقت کند
سیستمهای ایمنی را دور بزند
جمعبندی
به زبان ساده، با نصب
cai: شما میتوانید همان تستهای امنیتی که با ابزارهایی مثل Nmap, Metasploit و Wireshark روی سرورها و وبسایتها انجام میدهید را به شکلی کاملاً تخصصی روی رباتهای صنعتی پیادهسازی کنید.@NullError_ir
Please open Telegram to view this post
VIEW IN TELEGRAM
GitHub
GitHub - aliasrobotics/cai: Cybersecurity AI (CAI), the framework for AI Security
Cybersecurity AI (CAI), the framework for AI Security - aliasrobotics/cai
❏ </Mr. SAM/> ❏
░▒▓█ Bleeping Computer █▓▒░
Okta open-sources catalog of Auth0 rules for threat detection
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ Bleeping Computer █▓▒░
Okta open-sources catalog of Auth0 rules for threat detection
🔗 ➢➣➤ More ...
@NullError_ir 📢
BleepingComputer
Okta open-sources catalog of Auth0 rules for threat detection
Okta has open-sourced ready-made Sigma-based queries for Auth0 customers to detect account takeovers, misconfigurations, and suspicious behavior in event logs.
❏ </Mr. SAM/> ❏
░▒▓█ cybersecurity █▓▒░
New Research Unmask DPRK IT Workers Email Address and Hiring Patterns
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ cybersecurity █▓▒░
New Research Unmask DPRK IT Workers Email Address and Hiring Patterns
🔗 ➢➣➤ More ...
@NullError_ir 📢
Cyber Security News
New Research Unmask DPRK IT Workers Email Address and Hiring Patterns
Jasper Sleet hackers use fake jobs to infiltrate Web3 firms; leaks expose 1,389 DPRK emails and documents revealing large-scale ops.
❏ </Mr. SAM/> ❏
░▒▓█ TheHackersNews █▓▒░
Apache ActiveMQ Flaw Exploited to Deploy DripDropper Malware on Cloud Linux Systems
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ TheHackersNews █▓▒░
Apache ActiveMQ Flaw Exploited to Deploy DripDropper Malware on Cloud Linux Systems
🔗 ➢➣➤ More ...
@NullError_ir 📢
Telegram
Mr. SAM
یکشنبه
۷ ( دی = ۱۰ ) ۱٤۰٤
28 ( دسامبر = december = 12 ) 2025
تکنیکها ، کالبدشکافی ، درک عمیق ، یک قدم جلوتر ...
https://news.1rj.ru/str/boost/NullError_ir
۷ ( دی = ۱۰ ) ۱٤۰٤
28 ( دسامبر = december = 12 ) 2025
تکنیکها ، کالبدشکافی ، درک عمیق ، یک قدم جلوتر ...
https://news.1rj.ru/str/boost/NullError_ir
❏ </Mr. SAM/> ❏
░▒▓█ DarkReading █▓▒░
Millions Allegedly Affected in Allianz Insurance Breach
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ DarkReading █▓▒░
Millions Allegedly Affected in Allianz Insurance Breach
🔗 ➢➣➤ More ...
@NullError_ir 📢
Darkreading
Millions Allegedly Affected in Allianz Insurance Breach
Have I Been Pwned claims that the compromised data includes physical addresses, dates of birth, phone numbers, and more, for life insurance customers.
❏ </Mr. SAM/> ❏
░▒▓█ hackday █▓▒░
2025 One Hertz Challenge: Atomic Decay Clock is Accurate But Not Precise
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ hackday █▓▒░
2025 One Hertz Challenge: Atomic Decay Clock is Accurate But Not Precise
🔗 ➢➣➤ More ...
@NullError_ir 📢
Hackaday
2025 One Hertz Challenge: Atomic Decay Clock Is Accurate But Not Precise
At this point, atomic clocks are old news. They’ve been quietly keeping our world on schedule for decades now, and have been through several iterations with each generation gaining more accur…
❏ </Mr. SAM/> ❏
░▒▓█ TheRecord █▓▒░
Business Council of New York State says nearly 50,000 had data leaked in February cyberattack
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ TheRecord █▓▒░
Business Council of New York State says nearly 50,000 had data leaked in February cyberattack
🔗 ➢➣➤ More ...
@NullError_ir 📢
therecord.media
Business Council of New York State says nearly 50,000 had data leaked in February cyberattack
The Business Council of New York State, which works with more than 3,000 organizations, told regulators in multiple states that it suffered a cyberattack in February.
❏ </Mr. SAM/> ❏
░▒▓█ DarkReading █▓▒░
AI Agents Access Everything, Fall to Zero-Click Exploit
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ DarkReading █▓▒░
AI Agents Access Everything, Fall to Zero-Click Exploit
🔗 ➢➣➤ More ...
@NullError_ir 📢
Darkreading
AI Agents Access Everything, Fall to Zero-Click Exploit
Zenity CTO Michael Bargury joins the Black Hat USA 2025 News Desk to discuss research on a dangerous exploit, how generative AI technology has "grown arms and legs" — and what that means for cyber-risk.
❏ </Mr. SAM/> ❏
░▒▓█ SANS █▓▒░
Increased Elasticsearch Recognizance Scans, (Tue, Aug 19th)
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ SANS █▓▒░
Increased Elasticsearch Recognizance Scans, (Tue, Aug 19th)
🔗 ➢➣➤ More ...
@NullError_ir 📢
SANS Internet Storm Center
Increased Elasticsearch Recognizance Scans - SANS ISC
Increased Elasticsearch Recognizance Scans, Author: Johannes Ullrich
❏ </Mr. SAM/> ❏
░▒▓█ citizenlab █▓▒░
Ron Deibert Warns Cybersecurity Industry About U.S. Authoritarian Descent
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ citizenlab █▓▒░
Ron Deibert Warns Cybersecurity Industry About U.S. Authoritarian Descent
🔗 ➢➣➤ More ...
@NullError_ir 📢
The Citizen Lab
Ron Deibert Warns Cybersecurity Industry About U.S. Authoritarian Descent
Ahead of his keynote at Black Hat USA, Citizen Lab director Ron Deibert spoke with TechCrunch reporter Lorenzo Franceschi-Bicchierai about what he describes as a “descent into a kind of fusion of tech and fascism.”
❏ </Mr. SAM/> ❏
░▒▓█ Bleeping Computer █▓▒░
PyPI now blocks domain resurrection attacks used for hijacking accounts
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ Bleeping Computer █▓▒░
PyPI now blocks domain resurrection attacks used for hijacking accounts
🔗 ➢➣➤ More ...
@NullError_ir 📢
BleepingComputer
PyPI now blocks domain resurrection attacks used for hijacking accounts
The Python Package Index (PyPI) has introduced new protections against domain resurrection attacks that enable hijacking accounts through password resets.
❏ </Mr. SAM/> ❏
░▒▓█ KrebsOnSecurity █▓▒░
Oregon Man Charged in ‘Rapper Bot’ DDoS Service
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ KrebsOnSecurity █▓▒░
Oregon Man Charged in ‘Rapper Bot’ DDoS Service
🔗 ➢➣➤ More ...
@NullError_ir 📢
Krebs on Security
Oregon Man Charged in ‘Rapper Bot’ DDoS Service
A 22-year-old Oregon man has been arrested on suspicion of operating "Rapper Bot," a massive botnet used to power a service for launching distributed denial-of-service (DDoS) attacks against targets -- including a March 2025 DDoS that knocked Twitter/X offline.…
❏ </Mr. SAM/> ❏
░▒▓█ DarkReading █▓▒░
How to Vibe Code With Security in Mind
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ DarkReading █▓▒░
How to Vibe Code With Security in Mind
🔗 ➢➣➤ More ...
@NullError_ir 📢
Dark Reading
How to Vibe Code With Security in Mind
As more organizations integrate vibe coding and AI-assisted coding into their application development processes, it's important to remember to put security first.
❏ </Mr. SAM/> ❏
░▒▓█ DarkReading █▓▒░
Russian Hacktivists Take Aim at Polish Power Plant, Again
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ DarkReading █▓▒░
Russian Hacktivists Take Aim at Polish Power Plant, Again
🔗 ➢➣➤ More ...
@NullError_ir 📢
Dark Reading
Russian Hacktivists Take Aim at Polish Power Plant, Again
This attack was seemingly more successful than the first iteration, causing disruptions at the plant.
yekdast_یکدست
یه کاری پیش اومد که توی یه اپ نوشته شده با rust نیاز بود فارسی بنویسم .یه کتابخونه کوچیک واسه اینکار نوشتم و گذاشتم توی مخازن rust واسه انتشار عمومی . شاید بدرد کسی بخوره
Please open Telegram to view this post
VIEW IN TELEGRAM
GitHub
GitHub - Null-Err0r/yekdast: Yekdast ( یکدست )
Yekdast ( یکدست ). Contribute to Null-Err0r/yekdast development by creating an account on GitHub.
❏ </Mr. SAM/> ❏
░▒▓█ DarkReading █▓▒░
Asian Orgs Shift Cybersecurity Requirements to Suppliers
🔗 ➢➣➤ More ...
@NullError_ir 📢
░▒▓█ DarkReading █▓▒░
Asian Orgs Shift Cybersecurity Requirements to Suppliers
🔗 ➢➣➤ More ...
@NullError_ir 📢
Darkreading
Asian Orgs Shift Cybersecurity Requirements to Suppliers
The uptick in breaches in Asia has prompted a Japanese chipmaker and the Singaporean government to require vendors to pass cybersecurity checks to do business.