Discover how an .xrm-ms file can serve as a Trojan horse, making NTLM Hash Disclosure as easy as pie. With just a click, these files prompt an outbound connection to a hacker’s domain, leaking NTLM hashes faster than you can say “Windows vulnerability.” Spoiler alert: Not even Outlook sees it coming.

Breaking news: ZTE ZXV10 H201L routers are giving hackers a free backstage pass to your network! Thanks to an authentication bypass, remote code execution is now easier than pie. So, if your router starts ordering pizza without your consent, don’t be surprised! Just another day in the world of tech exploits.

If you’ve been wondering how to decode a hidden message in your vacation photos, pngdump.py might not be the hero you need. But fear not! Format-bytes.py is here to save the day, extracting individual bits faster than you can say “steganography.” Get ready for a byte-sized adventure in digital sleuthing!

Beware the .xrm-ms file! It’s like the Trojan horse of NTLM hash disclosure, sneaking in through your Microsoft browsers and leaving your network security having an existential crisis. Just remember: user interaction is required—so maybe think twice before clicking that suspicious file attachment.

In the world of unzip-stream 0.3.1, arbitrary file write is less a feature and more a comedic plot twist. Just one zip and you’ll be rewriting files like a deranged novelist with CVE-2024-42471 as your trusty pen name. Remember, always back up your files—or your punchlines—before attempting this at home!

Join the Internet Storm Center’s comedic ride as Guy Bruneau keeps the threat level at green—an IT equivalent of a “no news is good news” kind of day. Risk-averse? Register for the Application Security class in San Diego for a crash course in securing web apps, APIs, and microservices!

SonicWall’s zero-day vulnerabilities are like the gift that keeps on giving—except no one wants it. After a year of lurking in obscurity, reports are now pouring in like confetti at a surprise party you didn’t RSVP to. Hold onto your firewalls, folks; this cyber-shindig is just getting started!

CISA adds CVE-2025-31324 to its Known Exploited Vulnerabilities Catalog, spotlighting SAP NetWeaver’s Unrestricted File Upload Vulnerability. This is a cybercriminal’s dream buffet, urging FCEB agencies to patch up pronto. Remember, timely remediation is key unless you want to end up as the punchline of a hacker’s joke!

Attention, ISPSoft users! If you’re using versions 3.19 or earlier, you’re stacking up vulnerabilities like a Jenga tower. Delta Electronics’ software is under attack with a CVSS v4 score of 8.4. Update to version 3.21 or risk having your code executed by someone who’s not you!

Rockwell Automation’s ThinManager software is experiencing a bit of a security hiccup with improper memory buffer restrictions and incorrect default permissions. With a CVSS v4 score of 8.7, it’s as if your software went on a blind date with chaos. Time to patch up and save the drama for reality TV!

CISA released three ICS advisories, helping you avoid turning your control system into a high-tech paperweight. Keep up with the latest vulnerabilities before they turn your operations into a scene from a disaster movie.

Attackers are on the hunt for SMS gateways to send free messages and avoid blocklists. Scans target WordPress plugins and API endpoints, hoping to uncover admin credentials. If you don’t secure your SMS credentials, you might end up with a hefty bill, a blocked number, and an embarrassing phone number change.

Thunderbird ESR 128.10 swoops in to save the day, tackling security vulnerabilities with the grace of a caped crusader. From privilege escalation to WebGL shader mishaps, these fixes ensure users can email in peace. Remember, even superheroes need their updates—just ask Thunderbird!

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog. These vulnerabilities are popular with cyber villains and pose a serious threat to federal systems. While the directive is for federal agencies, CISA suggests everyone treat these vulnerabilities like a bad haircut—fix them ASAP!

Spotted: A ransomware group affiliate leaves an open directory full of hacking goodies in December 2024. The Fog ransomware group must be foggy indeed, as the directory featured everything from VPN exploits to remote access scripts. Industries across Europe and the Americas were targeted, making it an international cyber-catastrophe.

Get ready for a cyber showdown in Ghent! The 14th International Workshop on Cyber Crime (IWCC 2025) is calling all digital detectives from August 11-14, 2025. Submit your papers by May 12, 2025, and join the fight against cyber villains. Don’t miss out on this “crime-as-a-service” opportunity!

Inedo ProGet 2024.22 and below are vulnerable to insecure reflection and CSRF attacks, making it easier for unauthenticated attackers to restart ProGet instances endlessly. Remember, just because it’s endlessly restarting, doesn’t mean it’s getting any better!

Ruby on Rails’ Cross-Site Request Forgery (CSRF) protection is as secure as a chocolate teapot. Despite updates, it remains vulnerable to attacks due to the flawed handling of authenticity tokens, allowing attackers to forge CSRF tokens with ease. So, if you’re using Rails, you might want to keep an eye on your cookies!

Microsoft finally gave an NTLM information disclosure vulnerability the attention it deserved—seven years after it was first reported. Initially dismissed as “not severe enough,” this peek-a-boo bug in “.library-ms” files now has its own CVE and a shiny spotlight. Better late than never, Microsoft!

Ever wonder if your PNG files are plotting behind your back? This article delves into the “example of a payload delivered through steganography” within a PNG file. Spoiler: It’s more than just pixels—it’s a secret agent with a .NET twist!