News

TechRadar20d
Hackers exploit zero-day Common Log File System vulnerability to plant ransomware
Microsoft observed a threat actor known as Storm-2460 abuse a use after free flaw in Windows Common Log File System Driver The flaw is used to deploy PipeMagic, which is then used to deliver ...
The Hacker News20d
PipeMagic Trojan Exploits Windows Zero-Day Vulnerability to Deploy Ransomware
Microsoft has revealed that a now-patched security flaw impacting the Windows Common Log File System (CLFS) was exploited as a zero-day in ransomware attacks aimed at a small number of targets. "The ...
Microsoft21d
Exploitation of CLFS zero-day leads to ransomware activity
Microsoft Threat Intelligence Center (MSTIC) and Microsoft Security Response Center (MSRC) have discovered post-compromise exploitation of a zero-day elevation of privilege vulnerability in the ...
Wired24d
DOGE Is Planning a Hackathon at the IRS. It Wants Easier Access to Taxpayer Data
Elon Musk’s so-called Department of Government Efficiency (DOGE) has plans to stage a “hackathon” next week in Washington, DC. The goal is to create a single “mega API”—a bridge that ...
GitHub24d
These 2 python files are the NVD and OSV query module for a larger project.
and hardware identified on a system. Each entry in the file has a software name, version, and then the item in CPE format (see "system_info.json"). This is required since OSV queries by software name ...
InfoWorld29d
New Python lock file format will specify dependencies
Human-readable and machine-generated lock file will specify what direct and indirect dependencies should be installed into a Python environment. Python’s builders have accepted a proposal to ...
GitHub29d
7onez/m3u-telegram-ipdetection
A Python-based tool designed to capture IP addresses and NTLM authentication hashes from remote Windows clients using Telegram (lack of blocking the file extension .m3u), primarily for security ...