While investigating an incident involving the BellaCiao .NET malware, Kaspersky researchers discovered a C++ version they dubbed "BellaCPP".

A vulnerability in DigiEver DS-2105 Pro DVRs is being exploited to spread a Mirai variant that has been modified to use improved encryption algorithms.

🥧 Savoury implementation of the QUIC transport protocol and HTTP/3 - cloudflare/quiche

Zwei Jahre nach der vermeintlichen Behebung einer Lücke kann diese weiterhin genutzt werden, um BitLocker-geschützte Festplatten von Windows 11 zu entschlüsseln

Multi-Path TCP (MPTCP) leverages multiple network interfaces, like Wi-Fi and cellular, to provide seamless mobility for more reliable connectivity. While promising, MPTCP is still in its early stages, with limited support and practical use cases. This post…

Adversary Emulation Framework. Contribute to BishopFox/sliver development by creating an account on GitHub.

For months now, a growing chorus of frustrated voices has been echoing through online forums, all pointing to a bizarre issue: outgoing WhatsApp calls go mute the moment users switch to another app or let their screens dim. And no, it’s not just an isolated…

Rsync contains six vulnerabilities

Since the end of 2024, we have been continuously monitoring large-scale DDoS attacks orchestrated by an IoT botnet exploiting vulnerable IoT devices such as wireless routers and IP cameras.

By: Joshua Platt, Jason Reaves and Jonathan McCay

Security advisories for vulnerabilities. Contribute to bf/security-advisories development by creating an account on GitHub.

This blog post looks into how 63 malicious extensions circumvent Google’s restrictions of remote code execution in extensions. One group of extensions is associated with the company Phoenix Invicta. The other groups around Netflix Party and Sweet VPN haven’t…

ChatGPT-4o contains security bypass vulnerability through time and search functions called "Time Bandit"

Introduction