CIRCLE WITH A DOT

"Wi-Fi controlled hacking USB cable stealthily packs in a microcontroller, microSD storage, and more — cable executes remote payload execution, keystroke injection, and more, but is 'built for makers, developers, enthusiasts, and cybersecurity learners'""A device that 'looks like a normal USB cable' but packs in an ESP32-S3 microcontroller, micro SD card storage, and Wi-Fi capabilities has enjoyed great success on Kickstarter."https://www.tomshardware.com/maker-stem/microcontrollers-projects/wi-fi-controlled-hacking-usb-cable-stealthily-packs-in-an-esp32-s3-microsd-storage-and-more-cable-can-execute-remote-payload-execution-keystroke-injection-and-more-but-is-built-for-makers-developers-enthusiasts-and-cybersecurity-learners#Cybersecurity

Spanish court rejects LaLiga’s request to fine NordVPN over IPTV blocking compliance claims.The dispute is intensifying concerns around overblocking after reports of disruptions affecting platforms like Cloudflare, GitHub, Docker & Vercel in Spain.https://www.technadu.com/nordvpn-blocking-dispute-faces-new-spanish-court-ruling/628323/#Cybersecurity #VPN #DigitalRights

Major cybercrime operations were dismantled this week, including malware-signing services, DDoS botnets, phishing infrastructure, and criminal VPN networks.At the same time, researchers warned about AI-driven exploitation, poisoned VS Code extensions, Linux telecom malware, and healthcare data breaches.https://www.technadu.com/cybersecurity-roundup-defenders-score-major-wins-against-cybercrime-networks-while-legacy-risks-deepen/628319/#CyberSecurity #InfoSec #ThreatIntel #Ransomware

#chrome extension 1Vpn рабочий Vpn для Chro seems malicious. Its #cybersecurity badness score is 96/100!```json{"id": "ccnplnlglcgmpageepmemnfkolonindp", "score": 96, "platform": "chrome", "name": "1Vpn \u0440\u0430\u0431\u043e\u0447\u0438\u0439 Vpn \u0434\u043b\u044f Chro"}```

Station Casinos Discloses Data Breach Following March Hacking IncidentStation Casinos LLC disclosed a data breach occurring in March 2026 that exposed sensitive customer information, including names and potentially Social Security numbers, following an external hacking incident. The company began notifying affected individuals in May 2026 and is offering identity protection services.****#cybersecurity #infosec #incident #databreachhttps://beyondmachines.net/event_details/station-casinos-discloses-data-breach-following-march-hacking-incident-d-m-a-7-v/gD2P6Ple2L

24 hours of MIRE/C³; the latest stats (Runmode: Neutral 404, delay-only) 7,410 requests from 850 unique IPs Attacker bandwidth cost: 39.6MB Attacker total delay: 10h 51m server time Slowest response: 13.0s #MIREC3 #CyberSecurity #FightingBack

After the hyping of data breaches and now that's a regular item on daily news. The spotlight switches to infostealers. A brief explanatory piece on what it is and how they work using #Redline as example. #databreach #infosec #cybersecurity #opsec https://privacyinsightsolutions.com/blog/how-infostealers-work-2026

Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malwarehttps://thehackernews.com/2026/05/ghostwriter-targets-ukraine-government.htmlRead on HackerWorkspace: https://hackerworkspace.com/article/ghostwriter-targets-ukraine-government-entities-with-prometheus-phishing-malware#malware #cybersecurity #threatintelligence

First VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groupshttps://thehackernews.com/2026/05/first-vpn-dismantled-in-global-takedown.htmlRead on HackerWorkspace: https://hackerworkspace.com/article/first-vpn-dismantled-in-global-takedown-over-use-by-25-ransomware-groups#ransomware #cybersecurity #incidentresponse

Shift-left compliance checking ️Catch violations before deployment, not during audits ️https://anchore.com/platform/enforce/#SoftwareSupplyChain #SBOM #CyberSecurity #Compliance

We’re proud to share that the FreeBSD Foundation has joined the Open Source Security Foundation (OpenSSF) as an Associate Member. We look forward to collaborating with the OpenSSF community to strengthen the resilience and sustainability of open-source security worldwide.Read the full announcement from the Linux Foundation:https://www.linuxfoundation.org/press/openssf-notes-quarter-of-growth-with-new-members-added-ai-security-resources-and-growing-community#FreeBSD #OpenSSF #CyberSecurity #LinuxFoundation

CVE-2026-1802: When `os.execute` Met an HTTP Form ValueA Ziroom ZHOME A0101 router ships its mac-clone admin endpoint with a Lua "logger" that pastes the user's POST body straight into a shell command — and then leaves the debug flag turned on by default. The fix never landed: the vendor was contacted and went silent.https://www.ehabhussein.com/p/cve-2026-1802-when-os-execute-met-an-http-form-value#TheResident #ehabhussein #cybersecurity #infosec #vulnerability #CVE #hacking #security #CVE20261802

New ransom group blog posts!Group name: akiraPost title: GitisInfo: https://cti.fyi/groups/akira.htmlGroup name: akiraPost title: Karlin FoodsInfo: https://cti.fyi/groups/akira.htmlGroup name: qilinPost title: SemgrepInfo: https://cti.fyi/groups/qilin.htmlGroup name: worldleaksPost title: BMJ PaperpackInfo: https://cti.fyi/groups/worldleaks.html#ransomware #cti #threatintelligence #cybersecurity #infosec

Update Chrome now: Critical bugs could let attackers run codehttps://www.malwarebytes.com/blog/bugs/2026/05/update-chrome-now-critical-bugs-could-let-attackers-run-codeRead on HackerWorkspace: https://hackerworkspace.com/article/update-chrome-now-critical-bugs-could-let-attackers-run-code#cybersecurity #vulnerability #exploit

Authorities arrest 23-year-old accused of running the Kimwolf botnethttps://securityaffairs.com/192533/cyber-crime/authorities-arrest-23-year-old-accused-of-running-the-kimwolf-botnet.htmlRead on HackerWorkspace: https://hackerworkspace.com/article/authorities-arrest-23-year-old-accused-of-running-the-kimwolf-botnet#malware #cybersecurity #threatintelligence

GitHub breach: The development ecosystem is in the hot seat | RL Bloghttps://www.reversinglabs.com/blog/github-compromise-development-ecosystemRead on HackerWorkspace: https://hackerworkspace.com/article/github-breach-the-development-ecosystem-is-in-the-hot-seat-rl-blog#databreach #cybersecurity #vulnerability

Black Lotus Labs identified “Showboat,” a Linux post-exploitation framework tied to PRC-aligned telecom targeting campaigns.Researchers say the malware enabled persistence, proxying, remote shell execution, and maintained a 0% VirusTotal detection rate for months.https://www.technadu.com/showboat-a-novel-linux-post-exploitation-framework-targeting-telecommunications/628291/#Cybersecurity #Linux #Malware #ThreatIntel

@harrysintonen I’m curious, even when the WAL is synced to the data file (i.e. after restarting the app), is it possible that the deleted row data is still present in the data file as unreclaimed space?It would be difficult/impossible to reach via SQLite CLI, but the bytes could still be present and available to anyone able to decrypt and read the raw file.DuckDB on CHECKPOINT will apply the WAL to the data file and delete the WAL (similar to what it sounds like SQLite does on restart). But the newly unused space in the data file isn’t guaranteed to be reclaimed immediately, leaving open the possibility of recovery.

#FlipperOne project needs community help to build open #Linux platformhttps://www.bleepingcomputer.com/news/hardware/flipper-one-project-needs-community-help-to-build-open-linux-platform/#Flipper #FlipperZero #cybersecurity #hacking

A Hacker Group Is Poisoning #OpenSource Code at an Unprecedented Scalehttps://www.wired.com/story/teampcp-software-supply-chain-attack-spree-github/#TeamPCP #cybersecurity