lets be honest, we’re doing you a favor making your pc unbootable.
RE: https://infosec.exchange/@nemokamui/116919449162115047
Perfect 10 in SonicWALL SMA1000! 🥳
sev:CRIT 10.0 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
A Server-side request forgery (SSRF) vulnerability has been identified in the SMA1000 Appliance Work Place interface. A remote unauthenticated attacker could potentially cause the appliance to make requests to unintended location.
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0008
Edit to add that it's EITW:
IMPORTANT: SonicWall PSIRT has investigated multiple cases indicating the active exploitation of the vulnerabilities described in this advisory. Customers are strongly urged to upgrade to the hotfix release as soon as possible to remediate these vulnerabilities.
It's landed. The bug apocalypse is upon us as #Microsoft releases patches for 620+ CVEs to go along with #Adobe's 88. @TheDustinChilds has done his best to make sense of it all. Read his analysis at https://www.zerodayinitiative.com/blog/2026/7/14/the-july-2026-security-update-review
@cR0w when I need to do substitutions or otherwise want to push bash to its limits, my first reference was always the Bash Hacker's Wiki, which is now defunct but I'm thankful for flokoe for being back the content: https://flokoe.github.io/bash-hackers-wiki/
NEW: The Iranian government abused well-known flaws in the global telecoms infrastructure — specifically SS7 — to locate U.S. military personnel in the Middle East at the beginning of the war.
So, @Rapid7Official is shutting down AttackerKB (https://attackerkb.com/) soon.
I view this as a case where an initially promising idea became overwhelmed by low‑quality reports from contributors.
Anyway, archive any data you wish to retain.
Firefox Security & Privacy Newsletter 2026 Q2 | Attack & Defense
https://attackanddefense.dev/2026/07/12/firefox-security-privacy-newsletter-2026-q2.html
CVE-2026-42980: Reversing and Exploiting the Windows Kernel WMI Underflow https://blog.grunt.ar/bin-exploitation/binary-gecko-academy/cve-2026-42980-wmi-underflow-en/
So @chompie1337 and I are on a mission to find creative artists who want to help design the cover for Phrack #73.
retro sci-fi & chrome futures
▸ cyberpunk / terminal aesthetics
▸ dystopian systems
▸ hacker manuals from an alternate timeline
▸ weird cool stuff and machines
Keen? Fancy helping?
📮 arts@phrack.org
⏰ Deadline: August 15
Show HN: Sx 2.0 – Share AI skills with your team through a Dropbox folder
Wait a moment. Aren't "AI" "skills" just markdown files in a skills directory? So to share them through Dropbox, you'd... drop them in your dropbox folder? And doing so needs a tool? What happened to cp? Or selecting files with your mouse, right click, copy, and paste it somewhere? Or I dunno, any of the myriad ways you can get files from one place to another on the same computer?
Oh, right, yes. We do not touch computers anymore. We let our agents do that! Right, right, sorry. I got left behind y'know, still have this mushy thing in my skull, so sorry. I'll try to use it less to keep up with "progress".
First batch of 44CON 2026 tickets are available now.
These are the lowest-priced tickets we'll offer.
Prices go up with each batch, so if you want in early, now is the time...
Get yours: https://44con.com/product/44con-2026-ticket/