Given the recent data breach and Coinbase’s user agreement that aims to force customers into arbitration rather than individual or class action lawsuits, it’s interesting to read the outcome of a recent arbitration case against Coinbase.

https://www.courtlistener.com/docket/69741499/1/coinbase-inc-v-spilker/

#crypto #cryptocurrency #Coinbase

Five of CISA’s six operational divisions and six of its 10 regional offices will have lost top leaders by the end of the month, the agency’s new deputy director, Madhu Gottumukkala, informed employees in an email on Thursday.

https://www.cybersecuritydive.com/news/cisa-senior-official-departures/748992/

I swear to god, I am starting to understand John McAfee.

BGP handling bug causes widespread internet routing instability

On May 20th 2025 a BGP message was propagated that triggered some surprising (to many) behaviors with two major BGP implementations that are often used for carrying internet traffic.

In a new blog post, I will dissect what that message was, and my thoughts on how it happened:

---

https://blog.benjojo.co.uk/post/bgp-attr-40-junos-arista-session-reset-incident

The DWARF debug format is well-known for debugging executables,
but it is also an effective format for sharing reverse engineering information
across various tools, such as IDA, BinaryNinja, Ghidra, and Radare2.

In this blog post, I introduce a new high-level API in LIEF that allows the
creation of DWARF files. Additionally, I present two plugins designed to export
program information from Ghidra and BinaryNinja into a DWARF file.

https://lief.re/blog/2025-05-27-dwarf-editor/

(Bonus: The blog post includes a DWARF file detailing my reverse engineering work on DroidGuard)

Don't forget to patch your GIMPs for sev:HIGH BoFs and UAFs today.

https://access.redhat.com/security/cve/CVE-2025-48796

https://access.redhat.com/security/cve/CVE-2025-48797

https://access.redhat.com/security/cve/CVE-2025-48798

On zero days & exploit engineering, part 1

https://www.youtube.com/watch?v=QFWPxji5egI

Video by Alisa Esage

[oss-security] Xen Security Advisory 468 v3 (CVE-2025-27462,CVE-2025-27463,CVE-2025-27464) - WinPVDrivers: Excessive permissions on user-exposed devices

https://www.openwall.com/lists/oss-security/2025/05/27/1

New Rapid7 Analysis on AttackerKB topic: CVE-2024-58136

"Yii framework is a component-based MVC web application framework, providing developers with the building blocks to create complex web applications including modules for authentication, database access, REST etc ..."

Link: https://attackerkb.com/topics/622fff34-7ccf-4193-8a78-60e6b21d8811

Defcon forums have to be RCE’d once a year, I don’t make the rules!
https://chaos.social/@christopherkunz/114579265339897261

[RSS] Windows IRQL explained

https://haxo.games/blog/10/windows-irql-explained

Fine, I made my own Markdown to HTML document generator (with Blackjack and hookers):

https://github.com/v-p-b/sugardocy

It takes a single MD file, and outputs a single, self-contained HTML file without downloading the kitchen sink.

Contributions are welcome, esp. if you have better taste and frontend skills than I do.

@chungyc @alios @troed That's what I'm trying to do rn, and I will probably get there at some point, but what I'm looking for is a complete solution.

[RSS] Micropatches Released for Microsoft Management Console Security Feature Bypass Vulnerability (CVE-2025-26633)

https://blog.0patch.com/2025/05/micropatches-released-for-microsoft.html

I need a tool that can generate self-contained HTML pages from #Markdown with different styles.

markdown-styles looks really close, but I wonder if there are alternatives (preferably not requiring NodeJS):

https://github.com/mixu/markdown-styles

V now supports 3 more architectures:

- loongarch64
- riscv32
- s390x (IBM Z)

I always find it a bit surprising that "looking up executables in PATH" isn't implemented in one central place (there are at least 3 implementations that I use regularly: in libc, my shell, in Go, and probably more that I don't know about)

it's a weird thing because there are actually many different implementations, but I think in general the implementations act similarly enough that you can pretend there's only 1 implementation, I've never actually run into a problem caused by this

CatSynth Pic: CoCo with massive modular 😻🎛 https://catsynth.com/2025/05/coco-with-massive-modular/ #CatsOfMastodon #eurorack #modular

Check it out. I just published TeleMessage Explorer: a new open source research tool https://micahflee.com/telemessage-explorer-a-new-open-source-research-tool/