Collaborate Disseminate
I spotted an interesting piece of JavaScript code that was delivered via a phishing email in a RAR archive. The file was called “cbmjlzan.JS†(SHA256:a8ba9ba93b4509a86e3d7dd40fd0652c2743e32277760c5f7942b788b74c5285) and is only identified as malicious by 15 AV’s on VirusTotal[1].
Continue reading Obfuscated JavaScript or Nothing, (Thu, Apr 9th)
In this Help Net Security interview, Aqsa Taylor, Chief Security Evangelist, Exaforce, explains vibe hunting, an AI-driven approach to threat detection that inverts traditional hypothesis-driven methods. Instead of analysts defining attack vectors upfr… Continue reading What vibe hunting gets right about AI threat hunting, and where it breaks down
Lead generation websites that offer health insurance quotes collect sensitive personal data and sell it to multiple buyers within seconds of a user clicking submit. A study by researchers at UC Davis, Stanford University, and Maastricht University mapp… Continue reading Health insurance lead sites sell personal data within seconds of form submission
It’s a bit of an understatement that at release Windows Vista rather fell flat. Much of the problem was due to how rushed of a release it was, with incomplete …read more Continue reading Reflecting on Microsoft Windows Vista in 2026
Instant messaging has been around for decades, but it became widely adopted with the emergence of smartphones. Earlier, communication was limited to basic text messages. Messaging expanded to include photos, videos, and video calls without relying on t… Continue reading Product showcase: Session, a messenger without phone numbers or metadata
Here’s a look at the most interesting products from the past week, featuring releases from Advenica, Intruder, Mallory, and Secureframe. Mallory brings contextual threat intelligence to security operations Mallory is launching an AI-native threat intel… Continue reading New infosec products of the week: April 10, 2026
An anonymous reader quotes a report from NPR: Women in the U.S. gave birth to roughly 710,000 fewer children last year compared with the nation’s peak in 2007, according to preliminary data released (PDF) this week by the Centers for Disease Control an… Continue reading US Fertility Rate Falls To All-Time Low
I’m using Ropper to find ROP gadgeds in both in ctf flag or real world exploit dev stuff. I’m not expert in that area. So is there any way to exclude some instruction from Ropper output for example I need mov rcx, rbp gadged but I don’t wa… Continue reading Exclude results those contains some Instructions in Ropper output
Lenovo’s Yoga 7a 2-in-1 is a versatile and well-built PC, though its mid-tier hardware makes it hard to recommend over rivals. Continue reading Surprise: Not every Lenovo laptop is worth recommending in 2026 – the Yoga 7i is proof
Modern technology builds on abstractions. Most application programmers today don’t know what a non-maskable interrupt is, nor should they have to. Even fewer understand register coloring or reservation stations for …read more Continue reading USB, Abstracted