Podcasts about exploits

Tom Uren and Amberleigh Jack talk about the newly released Trump Cyber Strategy for America. The ideas in it are fine and occasionally even game-changing, but many of its goals have been undercut by the administration's actions to date. They also discuss the Coruna exploit kit, which is now known to have leaked from a US defence contractor. Exploits are so valuable that it is unrealistic to expect they can be kept secret. This episode is also available on Youtube. Show notes

On this week's show, Patrick Gray, Adam Boileau and James WIlson discuss the week's cybersecurity news. They cover: The Coruna exploits were L3 Harris, but it seems Triangulation… was not! Iran's cyber HQ hit by Israeli (kinetic) strikes Trump's cyber “strategy” is … well, all we've got is jokes cause there's no serious content NSA and CyberCom finally get a leader after Lt Gen Joshua Rudd gets Senate nod DOGE (remember them?!) employee walked a social security database out on a USB stick This episode is sponsored by open source cloud security scanner Prowler. Creator and CEO Toni de la Fuente talks to Pat about some of the enterprise features Prowler is growing, while remaining true to its open source roots. This episode is also available on Youtube. Show notes Inside Coruna: Reverse Engineering a Nation-State iOS Exploit Kit From JavaScript GitHub - matteyeux/coruna: deobfuscated JS and blobs US military contractor likely built iPhone hacking tools used by Russian spies in Ukraine APT36: A Nightmare of Vibeware State-linked actors targeted US networks in lead-up to Iran war Iranian cyber warfare HQ allegedly hit by Israel Last 2 names of 6 US soldiers who died in Kuwait attack identified by the Pentagon Signal, WhatsApp users face Russian phishing push, Dutch warn Samuel Bendett on X: "Russian military told it couldn't use Telegram messaging app" FBI investigating ‘suspicious' cyber activities on critical surveillance network Risky Bulletin: New White House EO prioritizes fight against scams and cybercrime President Trump's CYBER STRATEGY for America Fact Sheet: President Donald J. Trump Combats Cybercrime, Fraud, and Predatory Schemes Against American Citizens UK plans to shift fraud fight onto telecoms, tech companies Trump to hit Anthropic with executive order to remove "woke" AI Claude Anthropic launches code review tool to check flood of AI-generated code CrowdStrike reports record quarter amid investor concerns about AI impact Critical defect in Java security engine poses serious downstream security risks Gen. Joshua Rudd confirmed as NSA, Cyber Command head Plankey's nomination as CISA director now in jeopardy DOGE employee stole Social Security data and put it on a thumb drive, report says Taming Agentic Browsers: Vulnerability in Chrome Allowed Extensions to Hijack New Gemini Panel Cel mai mare exportator român de carne, deținătorul brandului Cocorico, a intrat în restructurări, alături de Casa de Insolvență Transilvania

"While Frank, Mac and Dennis try their hand at real estate, Dee arranges to be a surrogate mother to a wealthy couple with a sweet house." -Original Air Date: 9/17/2009- This week we're talking about The Gang Exploits the Mortgage Crisis, Janice from The Muppets, realtors wearing matching blazers and the best case scenario for a family about to lose their house. This is No Hugging, No Learning, the show about one thing...watching It's Always Sunny in Philadelphia for the first time. Want more NHNL? Next week's episode drops early on Patreon! This episode was posted a week ago and it's 21 MINUTES LONGER! Get the first seven days FREE and then it's just $5/month after that. You'll get every episode one week early with all of the extra content that we usually clip out of each release and movie reviews from the Seinfeld Extended Universe. Join Us at patreon.com/nohugging Wanna start your own podcast? Do it with Libsyn and get up to 2 months free podcasting service with our Libsyn code HUGGING. Get a FREE No Hugging, No Learning sticker by giving us a 5 star rating and a written review wherever you listen to this! Just be sure to send us your address! Email us: nohuggingnolearningshow@gmail.com Follow us!  @nohugging on X @nohugging_nolearning on Instagram @nohugging.bsky.social on Bluesky Music: "The Gang Gets Trapped" by Reed Streets

PLUS:Prediction markets spawn allegations of insider trading on global conflictsThe strange, confusing history of Daylight Saving TimeGeneration Gilmore Girls celebrates the enduring appeal of a feel-good TV favouriteAriel Dorfman explains how a Pinochet admirer became Chile's next presidentRiffed from the Headlines, our weekly musical news quiz.

AI is getting dangerously good at smart contract security. Faster than crypto is ready for. Alpin Yukseloglu joins Bankless to break down EVMBench (built with OpenAI), a benchmark testing whether AI agents can detect, patch, and exploit real fund-draining bugs and why the jump from ~12–13% exploit-finding to 70%+ could rewrite today's security assumptions. We unpack what that “70%” really means, why crypto's verifiability is an ideal training ground, why AI labs haven't prioritized crypto data yet, and what a 24/7 blackhat vs whitehat AI arms race means for DeFi. ---

Five Eyes flags active exploitation of Cisco SD-WAN flaws. Ransomware incidents surge, but fewer victims are paying. The FTC eases its stance on COPPA to encourage age verification. Authorities in Poland and Germany charge 11 in a Facebook credential harvesting scheme. Top UK news outlets unite on AI licensing standards, as the UK touts gains in cyber resilience. Researchers say a hacker abused Anthropic's Claude to breach Mexican government networks. Gamers revolt over AI in game development. On our Industry Voices, we are joined by Linda Gray Martin, Chief of Staff and SVP, and Britta Glade, SVP of Content and Communities, from RSAC sharing what is new at RSAC 2026. In Moscow, a man is accused of impersonating an FSB officer to shake down the Conti ransomware gang.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today on our Industry Voices, we are joined by Linda Gray Martin, Chief of Staff and SVP, and Britta Glade, SVP of Content and Communities, from RSAC sharing what is new at RSAC 2026. Selected Reading Cisco SD-WAN Is Actively Exploited by UAT-8616, Five Eyes Alliance Agencies Issue Warning (TechNadu) Ransomware payments dropped in 2025 as attack numbers reached record levels: Chainalysis (The Record) FTC Softens Enforcement of Rule Protecting Children Online, Ostensibly to Protect Children Online (Gizmodo) Poland Cybercrime Unit Uncovers Scheme Stealing 100,000 Facebook Logins (The 420) UK news giants form 'NATO for news' group to control AI scraping (Press Gazette) Government cuts cyber-attack fix times by 84% and launches new profession to protect public services (GOV.UK) Hacker Used Anthropic's Claude to Steal Sensitive Mexican Data (Bloomberg) AI Mistakes Are Infuriating Gamers as Developers Seek Savings (Bloomberg) Moscow man accused of posing as FSB officer to extort Conti ransomware gang (The Record) AIs can't stop recommending nuclear strikes in war game simulations (New Scientist) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Josh Rogin explains how the CCP exploits academic integration through the Thousand Talents Plan and how Wall Street continues to resist decoupling despite national security risks. 6

It's not our first rodeo on TikTok. See more TikTok reaction videos: https://www.youtube.com/playli... Explore the bizarre and frustrating saga of Chad2Dad, a "passport bro" TikToker whose relationship drama has really tweaked some people out. That includes myself. From controversial claims and questionable financial arrangements to shocking twists in their personal lives, this story is a wild ride. Stick around for the full breakdown of the chaos! ------------------------------------------------------------ Wanna send me mail? ReddX Family Castillejos Post Office C/O Nico Garcia Castillejos Zambales Philippines 2208 #Chad2Dad #TikTokDrama #FilipinaWife #ToxicRelationships #LandlordLife #FinancialAbuse #CringeContent #RelationshipDrama #RedFlagAlert #TikTokExplained #CringeStories #CouplesDrama #ToxicCouple #CringeTikToks #RedFlagRelationships Discord: https://discord.gg/Sju7YckUWu Twitch: https://www.twitch.tv/daytondo... PayPal: https://www.paypal.me/daytondo... Patreon: http://patreon.com/daytondoes Twitter: http://www.twitter.com/daytond... Facebook: https://www.facebook.com/ReddX... Subreddit: https://www.reddit.com/r/ReddX... Amazon link to my mic: https://amzn.to/3lInsRR ReddX merch: https://reddx-shop.fourthwall.... Character art: https://twitter.com/DarkleyStu... Creepypasta channel: https://www.youtube.com/Dayton... Gaming channel: https://www.youtube.com/dayton... Wifey's channel: https://www.youtube.com/@PhilippinesCreepypasta ------------------------------------------------------------ Playlists: Full neckbeard stories: https://www.youtube.com/playli... All neckbeard stories: https://www.youtube.com/playli... All legbeard stories: https://www.youtube.com/playli... RPG Horror Stories: https://www.youtube.com/playli... Weeaboo tales: https://www.youtube.com/playli... ------------------------------------------------------------ Podcasts: Spotify: https://open.spotify.com/show/... iTunes: https://podcasts.apple.com/us/... Spreaker: https://www.spreaker.com/show/... Also on Castbox, Audible, and iHeartRadio! Have you ever met a neckbeard or a nice guy? They are frustrating to deal with, but luckily you aren't alone! These r/neckbeardstories from Reddit are among the top posts of all time and include some of the funniest Reddit stories ever posted on the neckbeard stories subreddit! rSlash NeckbeardStories have all kinds of funny neckbeards in them, but especially the nice guy. And the weeaboo. There is a wide spectrum of neckbeards, and this is but a small slice of it. Listening to ReddX's neckbeard stories playlist is a great experience! These neckbeard stories Top Posts of All Time from Reddit are made for you to enjoy any time you feel like it, so be sure to save my rSlash neckbeard stories playlist to your favorites! While there are many rslash channels that read r/neckbeard stories and r/prorevenge from reddit, each channel has their own way of performing them. Some of the top rSlash entitled parents channels I recommend checking out are the original rSlash, Redditor, fresh, r/Bumfries, VoiceyHere, Mr Reddit, Storytime and Darkfluff. These Reddit story channels inspired me to start my own Reddit story channel, with a focus on Entitled Parents stories and at times going into the r/pettyrevenge and r/choosingbeggars subreddit as well. Because most of my audience prefers Entitled Parents stories of Reddit, I tend to just stick with reading the r/EntitleParents Top Posts of All Time. But I also enjoy getting up close and personal with neckbeards and weeaboos from time to time. Subscribe to ReddX for the freshest daily Reddit content. I post relatable readings of Reddit posts and Reddit stories every single day! Journey with me as I relate these amazing Reddit stories to my personal life journey. I'm greatly inspired by the top reddit posts of all time videos and reddit stories on YouTube which is why I started doing them myself. YouTube: https://www.youtube.com/channe... Discord: https://discord.gg/Sju7YckUWu Twitch: https://www.twitch.tv/daytondo... PayPal: https://www.paypal.me/daytondo... Patreon: http://patreon.com/daytondoes Twitter: http://www.twitter.com/daytond... Facebook: https://www.facebook.com/ReddX... Merch: https://reddx-shop.fourthwall....

Theme: Our Year of Resounding VictoriesJoshua 1:5, 1 Corinthians 15:57

Faith can defeat formidable enemies and achieve impossible victories for the glory of God. Pastor Greg Barkman continues his systematic exposition in Hebrews.

How have large language models impacted hacking? Richard talks to Erica Burgess about her experiences using LLMs for red team hacking, collecting bug bounties, and identifying vulnerabilities in systems. Erica discusses the power of LLMs to generate a variety of viewpoints on a potential exploit and help the hacker think "out of the box." Coordinating multiple agents to attempt a variety of exploits, retrieve information, and otherwise deal with the drudgery parts of hacking means a skilled operator can move faster - what once would be days of work can be minutes. Where does AI in hacking go? Lots of scary places - but also pointing the way to new ways to protect systems!LinksBurninator SecRecorded January 24, 2026

Sponsored by: https://sportaircraftseats.com/Neil's Book: https://a.co/d/0aCmcF10Our website: Coffeeinahangar.comIn this episode of the Coffee in a Hangar podcast, I sit down with Neil Hansen (author of Flight: An Air America Pilot Story of Adventure, Descent, and Redemption) for one of the most jaw-dropping conversations we've ever had. Neil's story spans everything from high-risk flying in Southeast Asia during the Vietnam War, to the hidden world of Air America and the CIA, and the kind of missions that never made the nightly news.We talk about flying the C-123 aircraft on low-level airdrop runs, what “hard rice” really meant, why Neil changed the way he approached airdrops to survive, and what happens when you're hit, lose control, and have to make decisions that most pilots will (thankfully) never face.Neil also shares how his life took a dark turn after returning home—leading into Drug Smuggling, the money, the danger, the consequences, and the redemption that followed.If you're into aviation history, Southeast Asia-era stories, or the mindset of pilots who operated on the edge of the envelope—this one is for you.Subscribe for more long-form pilot stories, hard-earned lessons, and conversations you won't hear anywhere else.

In deze aflevering bespreken we drie opvallende nieuwsitems uit de cybersecuritywereld. Allereerst de hack bij Odido, waarbij maar liefst 6,2 miljoen klantrecords mogelijk zijn gecompromitteerd. Daarnaast duiken we in het verhaal rondom Starlink en de Russen: hoe zij Oekraïense identiteiten proberen te misbruiken, en hoe hacktivisten op hun beurt inspelen op die wanhoop. Tot slot bespreken we de opmerkelijke uitspraak van Gijs Tuinman over het jailbreaken van de F-35. In de deepdive van deze week zoomen we in op APT28 (Fancy Bear), de beruchte Russische threat actor die in staat is om binnen 24 tot 48 uur na publicatie patches te reverse engineren en om te zetten in werkende exploits. Hoe doen ze dat, en wat betekent dit voor je patchmanagement? Bronnen: - Odido: https://www.odido.nl/veiligheid - Starlink: https://x.com/256CyberAssault/status/2021900627916267946 - F-35 Jailbreak: https://www.bnr.nl/nieuws/nieuws-politiek/10594302/uitspraak-gijs-tuinman-over-f-35-jaagt-amerikanen-op-de-kast-stoere-taal-niet-handig - APT28, Operation Neusploit: https://www.zscaler.com/blogs/security-research/apt28-leverages-cve-2026-21509-operation-neusploit

Pastor Greg Barkman continues his expositional series in Hebrews. Recounting these exploits of faith, we see how faith can obtain healing and overcome fear.

Section 125 plans are a great way to save money for health care, dependent care, dental care and disability insurance on a pre-tax basis. American Fidelity, which sells high-cost 403(b) products, runs many of these plans for school districts. In many cases educators must meet with an AF rep in order to get the pre-tax benefit. During these meetings AF sales reps try to sell a blizzard of services. We discuss what employees and employers should do. Learned by Being Burned (short pod series about K-12 403(b) issues) 403bwise.org Meridian Wealth Management

HEADLINE: Charles Lieber and the CRISPR Threat. GUEST: Brandon Weichert. SUMMARY: Weichert highlights Charles Lieber's conviction and He Jiankui's unethical gene experiments, illustrating how China exploits dual-use biotechnology to advance military goals and defeat Western rivals.PEKING 1904

Sur le buzzer c'est le dernier débat des GG du Sport ! Pile à temps pour s'écharper une dernière fois lors de l'émission…

In this message from Hebrews 11, Pastor Greg Barkman describes several examples of how faith conquers formidable obstacles to honor God with victorious achievements.

Theme: Our Year of Resounding VictoriesJoshua 1:5, 1 Corinthians 15:57

Avery Ayers talks about his past with check fraud, clinic trials, and changing his life.⁣ ⁣ Avery's links⁣ https://ayers4.us⁣ https://www.instagram.com/averylayers/⁣ ⁣ Do you want to be a guest? Fill out the form https://www.insidetruecrimepodcast.com/apply-to-be-a-guest⁣ ⁣ Go to https://HelloFresh.com/itc10fm to get 10 free meals + a FREE Zwilling Knife ⁣ ⁣ Get 10% sitewide for a limited time. Just visit https://GhostBed.com/cox and use code COX at checkout. ⁣ ⁣ Send me an email here: insidetruecrime@gmail.com⁣ ⁣ Do you extra clips and behind the scenes content?⁣ Subscribe to my Patreon: https://patreon.com/InsideTrueCrime ⁣ ⁣ Check out my Dark Docs YouTube channel here -⁣ https://www.youtube.com/@DarkDocsMatthewCox⁣ ⁣ Follow me on all socials!⁣ Instagram: https://www.instagram.com/insidetruecrime/⁣ TikTok: https://www.tiktok.com/@matthewcoxtruecrime⁣ ⁣ ⁣ Do you want a custom painting done by me? Check out my Etsy Store: https://www.etsy.com/shop/coxpopart⁣ ⁣ Listen to my True Crime Podcasts anywhere: https://anchor.fm/mattcox ⁣ ⁣ Check out my true crime books! ⁣ Shark in the Housing Pool: https://www.amazon.com/dp/B0851KBYCF⁣ Bent: https://www.amazon.com/dp/B0BV4GC7TM⁣ It's Insanity: https://www.amazon.com/dp/B08KFYXKK8⁣ Devil Exposed: https://www.amazon.com/dp/B08TH1WT5G⁣ Devil Exposed (The Abridgment): https://www.amazon.com/dp/1070682438⁣ The Program: https://www.amazon.com/dp/B0858W4G3K⁣ Bailout: https://www.barnesandnoble.com/w/bailout-matthew-cox/1142275402⁣ Dude, Where's My Hand-Grenade?: https://www.amazon.com/dp/B0BXNFHBDF/ref=tmm_pap_swatch_0?_encoding=UTF8&qid=1678623676&sr=1-1⁣ ⁣ Checkout my disturbingly twisted satiric novel!⁣ Stranger Danger: https://www.amazon.com/dp/B0BSWQP3WX⁣ ⁣ If you would like to support me directly, I accept donations here:⁣ Paypal: https://www.paypal.me/MattCox69⁣ Cashapp: $coxcon69 Learn more about your ad choices. Visit megaphone.fm/adchoices

Si vous souhaitez directement arriver à la partie sur David Goggins >> Commencer minute 19.Newsletter : https://extraterrien.substack.com/ Instagram : https://www.instagram.com/barth.fendtStrava : https://bit.ly/Strava-Barth-Extraterrien David Goggins est devenu célèbre à la fois pour ses exploits extrêmes en endurance, son parcours militaire hors norme et sa manière radicale de parler de discipline et de mental.1. Parcours militaire exceptionnelAncien Navy SEAL, il est présenté comme le seul militaire à avoir validé à la fois la formation des Navy SEALs, l'école des Rangers de l'US Army et la formation de contrôleur aérien tactique de l'US Air Force.​Il a participé à des opérations en Irak, ce qui renforce son image de soldat de terrain et non seulement de « coach motivationnel ».​2. Exploits en ultra-enduranceIl a pris part à plus de 60 ultra‑marathons, triathlons et ultra‑triathlons, en battant régulièrement des records de parcours et en montant souvent sur le podium.Ses participations répétées au Badwater Ultramarathon (217 km dans la Vallée de la Mort) et à d'autres formats de 24 h ou 48 h ont forgé sa réputation dans le monde de l'ultra.3. Record de tractions et performances « extrêmes »Il a établi un record du monde Guinness de tractions en 24 h, avec 4 030 tractions réalisées en 17 h lors d'un challenge officiel, battant l'ancien record.Ce type de défi très visuel (tractions sans fin, courses de 100 miles alors qu'il était à la base en surpoids, etc.) a largement circulé dans les médias et sur internet.4. Collecte de fonds pour les familles de soldatsAprès la mort de camarades d'élite en opération, il a utilisé ces courses d'ultra‑endurance pour lever des fonds pour la Special Operations Warrior Foundation, collectant plusieurs millions de dollars pour financer les études des enfants de soldats morts au combat.​5. Livres, médias et image de « mental d'acier »Son livre « Can't Hurt Me » (en français « Plus rien ne pourra me blesser ») puis « Never Finished » racontent son passé difficile, son surpoids, ses échecs et sa transformation via une discipline extrême, ce qui a touché un public bien au‑delà du sport.Ses concepts comme la « règle des 40% » (tu n'es qu'à 40% de ton potentiel quand tu crois être au bout), le « miroir de la responsabilité » et ses citations très directes sont devenus viraux dans le milieu du développement personnel et du sport.​6. Statut d'icône motivationnelleEntre ses conférences, ses apparitions dans des podcasts majeurs et la diffusion massive de ses extraits vidéos, il est perçu comme « l'homme avec le plus fort mental au monde » ou « l'homme le plus en forme des États‑Unis » dans certains médias.Sa combinaison unique de vécu militaire, de performances extrêmes et de discours sans filtre l'a transformé en modèle pour beaucoup de sportifs et de personnes en quête de résilience. Hébergé par Acast. Visitez acast.com/privacy pour plus d'informations.

Sometimes you just want to get together with your friend and enlist prisoners of war into putting on a production of Euripides in the quarry, am I right? This is a broadly relatable thing that lots of people have thought about doing. Right? Right??This episode is sponsored by Squarespace. Go to squarespace.com/overdue for 10% of your first purchase of a website or domain.Head to MarleySpoon.com/offer/overdue for 45% off your first order and free delivery!Our theme music was composed by Nick Lerangis.Follow @overduepod on Instagram and BlueskyAdvertise on OverdueSee Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

In this message from Hebrews 11, we learn of amazing exploits accomplished through faith that encourage God's people to exercise their own faith. Pastor Greg Barkman continues his systematic exposition in the book of Hebrews.

Can you help me make more podcasts? Consider supporting me on Patreon as the service is 100% funded by you: https://EVne.ws/patreon You can read all the latest news on the blog here: https://EVne.ws/blog Subscribe for free and listen to the podcast on audio platforms:➤ Apple: https://EVne.ws/apple➤ YouTube Music: https://EVne.ws/youtubemusic➤ Spotify: https://EVne.ws/spotify➤ TuneIn: https://EVne.ws/tunein➤ iHeart: https://EVne.ws/iheart CANADA SWAPS CHINA EV QUOTA FOR FARM RELIEF https://evne.ws/4aZbXRM BYD AIMS OCEAN FLAGSHIPS AT CHINA'S PREMIUM EV TIER https://evne.ws/4pJpbWw CHINA DOUBLES DOWN ON LFP AS OUTPUT SURGES https://evne.ws/49JjPoj VW BETS ON 1,000KM EREV FOR CHINA'S FAMILY SET https://evne.ws/4jB9YFn XIAOMI SEDAN OVERTAKES TESLA IN CHINA https://evne.ws/4bEJKQp LI AUTO BETS ON SPEED WITH 5C CHARGING PUSH https://evne.ws/4sExEwI CHERY BETS ON HARD NUMBERS WITH FULWIN T9L HYBRID SUV https://evne.ws/4jLJq4x GWM BETS ON SINGLE AI PLATFORM FOR ALL POWERTRAINS https://evne.ws/45fvv0x GWM DUMPS RANGE-EXTENDERS FOR DIRECT-DRIVE BET https://evne.ws/49Hz4hw CHINA'S POWER DEMAND BREAKS 10 TRILLION KWH BARRIER https://evne.ws/3YMHlM1 XIAOMI TURNS FACTORY TOURS INTO EV HARD SELL https://evne.ws/49sA4ar

Episode 157: In this episode of Critical Thinking - Bug Bounty Podcast we're joined by Hypr to talk about hacking Mediatek and his experiences with HackerOne and Pwn2Own Ecosystems.Follow us on twitter at: https://x.com/ctbbpodcastGot any ideas and suggestions? Feel free to send us any feedback here: info@criticalthinkingpodcast.ioShoutout to YTCracker for the awesome intro music!====== Links ======Follow your hosts Rhynorater, rez0 and gr3pme on X: https://x.com/Rhynoraterhttps://x.com/rez0__https://x.com/gr3pmeCritical Research Lab:https://lab.ctbb.show/ ====== Ways to Support CTBBPodcast ======Hop on the CTBB Discord at https://ctbb.show/discord!We also do Discord subs at $25, $10, and $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc.You can also find some hacker swag at https://ctbb.show/merch!Today's Guest: https://x.com/hyprdude====== This Week in Bug Bounty ======Top 10 web hacking techniques of 2025: call for nominationshttps://portswigger.net/research/top-10-web-hacking-techniques-of-2025-nominations-openCVE-2025-13467https://access.redhat.com/security/cve/cve-2025-13467====== Resources ======Hypr's Bloghttps://blog.coffinsec.commediatek? more like media-rekt, amirite.https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.htmlkernel-utilshttps://github.com/mellow-hype/kernel-utils====== Timestamps ======(00:00:00) Introduction(00:03:23) Heap Overflow in Mediatek Kernel Drivers(00:19:23) Kernel Debugging & ioctl Handlers (00:43:30) Input Structs, Sync to Source, & Privilege Escalation (00:51:30) HackerOne Ecosystem vs Pwn2Own Ecosystem (01:17:00) Kernel Utils(01:26:46) Real World Bugs for Exploit Development vs CTFs

On today's episode of The Last Days Podcast Pastors Todd & Katie Holmes kick off the new year talking about all of the things that we can and should expect from 2026. As believers we have to know that God is FOR us! That as we seek to align ourselves with His plan for our lives, we will see increase and breakthrough in EVERY are of our lives! We serve a God of miracles, of great exploits! And that is His promise to YOU! Make sure you are subscribed and keep up with us on social media.NEW EPISODES every Monday & Friday @ Noon.https://www.facebook.com/TheRiverOfTriCities/https://www.youtube.com/@TheRiverofTriCitiesChurchhttps://www.instagram.com/rivertcchurch/?hl=enhttps://www.instagram.com/thelastdayspodcast/?hl=en

Homer's The Iliad, Part 1 (Books 1-16)—the epic tale of Achilles' rage, Hector's honor, and the Trojan War. Translated by Samuel Butler, narrated by Mark Cassidy with full subtitles.

No inserted ads: www.patreon.com/dopeypodcast The episode opens with your intro, then the bulk of the show is Hairy Tongue Will's massive, chaotic, detailed telling of his addiction, near-death runs, arrests, relapse cycles, dead friends, and eventual recovery.Will describes the early Long Island chaos with Richie, Mike, and Lenny—everyone strung out on heroin, crack, coke, and whatever they could get. He recalls the first serious turn: showing up to a house where Lenny was passed out after a three-day crack run, realizing “the demons are taking over.” Mike and Richie spiral deeper, and Will keeps managing to “hold it together” thanks to jobs, work ethic, and a strange electrical-job stabilizer that kept him semi-functional.He details years of DUIs, probation, manipulating drug tests, smoking crack constantly while still working 16-hour electrician shifts, and thriving socially because coworkers lived vicariously through him. He normalized chaos, missing only “one no-call/no-show every two weeks,” which he considered acceptable.Will then dives into his first short attempt at stability, living in a basement apartment. His probation officer surprises him the day after a holiday: the apartment is filled with beer cans, bongs, baggies. He fails the test, is sent back to rehab/jail cycles, and explains why Long Island addicts often choose jail over treatment. He describes his surreal time in jail—being sent to the Montauk Lighthouse on work crews, eating egg sandwiches and black-and-milds with the guards, becoming “the useful guy,” actually feeling respected and purposeful.Back outside, he tries again, fails again, collects DUIs, cycles through companies, loses jobs, hustles side work, and repeatedly relapses. A wedding night leads to another DUI. COVID hits while he's in jail. He gets out, starts working nonstop, earns money, piles cash in a closet, stacks crypto, reads self-help books, sleeps on a mattress on the floor, becomes obsessed with success and control.Then he meets a girl in Tennessee. He drinks again “successfully” only when he flies there. He builds a double life—working himself numb, drinking out of state, convincing himself he's different.Eventually, on a work trip, he gambles, wins big, drinks an old fashioned, and secretly cooks his boss's cocaine into crack. This reignites the obsession. Will starts traveling the Northeast and Midwest, repeatedly pulling crack-seeking missions: gas stations, high-crime neighborhoods, asking strangers, “I'm looking for some hard.” He builds drug contacts in Bridgeport, Dayton, Maine, Virginia, wherever the job sends him. He smokes in hotels, hallucinates blood on floors, changes rooms repeatedly.He recounts the deaths of friends:Mike, whose father turned their home into a sheet-walled trap house with dealers and bikers living inside.How Mike died with his father selling sneakers off his dead son's body.Richie, who got sober then died of fentanyl after nearly two years clean.Will's life collapses further—obsession, resentment toward God, jealousy, terminal uniqueness. He becomes a “demon,” wanting to die like his friends. He terrifies his girlfriend with delusional FaceTimes, nine-day runs, psychosis. She moves in without knowing the truth and becomes trapped in codependency.He stays high for 26 straight days, manipulates her with antihistamine allergy episodes to cover his psychosis, hides crack pipes around the house with ring cameras everywhere. He finally admits some truth, gives her $5,000 to escape, but she stays another nine months.He tells insane stories:Pretending he's a trust-fund baby to get free crackGetting shot at by a dealer after a misunderstanding over “two grams” vs “two ounces”Driving through wooded roads barefoot at gas stationsDealers trying to jump himBecoming a mule for a recently-released dealer (Ace)Near misses, violence, and pure street insanityEventually, during a pickup, he gets chased, prays for police lights, and his car breaks down. Cops descend. He gets a mountain of charges (“five decades worth”). He thinks he'll die in prison. Bail reform gets him released. He immediately uses again for 17 more days.A sober lawyer tries pushing him toward St. Christopher's. Will resists, manipulates LICR, relapses again, cancels his own insurance, tries to die, and after weeks of chaos his mother gets him re-approved. He enters St. Chris, still delusional, still dangerous.There he breaks. He admits suicidal thoughts, gets a guard stationed outside his door, hears the blunt truth—you're the worst-off guy here and you did this to yourself. It lands. Will begins working the program: spiritual direction, grief groups, codependency, meetings, kitchen duty, everything. He reconnects with his mother in sobriety. He attends court in suits provided by the facility and ultimately receives an unexpectedly generous plea deal.He comes home early, tries to run his own program, stays sober for months, but on Mother's Day runs into an old acquaintance who shows him a Newport box with a pipe inside. He relapses immediately for three days, misses Mother's Day entirely.That night, suicidal again, he receives a series of calls: first from Jordan, then from his tough sponsor, who gives him clear direction—go to a sober house, go to daily groups, go to nightly meetings, call people, build structure. Will frauds his urine to get in, but once inside, follows every instruction. He stabilizes.He recounts being 18 months sober now, having been at meetings nearly every night, with a recent slip in commitment due to chasing an “intimate partner godshot” that didn't work out. You reassure him that it's fine and that balance is part of recovery.More or less thats the whole thing! On a brand new fucko, crackead episode of that good old dopey show! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

HEZBOLLAH'S LATIN AMERICAN FINANCING Colleague David Daoud. David Daoud details Hezbollah'sdeep entrenchment in Venezuela, used to challenge US hegemony. He explains how the group exploits Latin Americannetworks, illicit trade, and legitimate business fronts within expatriate communities to generate essential funding, compensating for losses in Lebanon and serving Iran's broader strategy in the Western Hemisphere. NUMBER 71899 MERIDA VENEZUELA

David ends Season 6  by declaring that he would rather be an artist than a demagogue. Mex builds a cheating golfer AND a big green monster in his wrestling video game. The Artist's attempt at a Christmas cookie turns into a political nightmare.

Turkel describes the genocidal targeting of women through forced sterilization and sexual violence, comparing these atrocities to the Holocaust. He also exposes how the Chinese state exploits Uyghur slave labor for global exports, implicating Western consumers in funding the regime's "industrial scale" oppression through tainted supply chains. 1940

HOUR 3- Blind Charlie's Exploits, Show Grades and MORE full 1985 Wed, 17 Dec 2025 16:38:00 +0000 bT0lQkAxl3SQyMJhWLqJ7F10RnjgjJfL society & culture Klein/Ally Show: The Podcast society & culture HOUR 3- Blind Charlie's Exploits, Show Grades and MORE Klein.Ally.Show on KROQ is more than just a "dynamic, irreverent morning radio show that mixes humor, pop culture, and unpredictable conversation with a heavy dose of realness." (but thanks for that quote anyway). Hosted by Klein, Ally, and a cast of weirdos (both on the team and from their audience), the show is known for its raw, offbeat style, offering a mix of sarcastic banter, candid interviews, and an unfiltered take on everything from culture to the chaos of everyday life. With a loyal, engaged fanbase and an addiction for pushing boundaries, the show delivers the perfect blend of humor and insight, all while keeping things fun, fresh, and sometimes a little bit illegal. 2024 © 2021 Audacy, Inc. Society & Culture False https://player.amperwavepodcasting.com

Possible exploit variant for CVE-2024-9042 (Kubernetes OS Command Injection) We observed HTTP requests with our honeypot that may be indicative of a new version of an exploit against an older vulnerability. Help us figure out what is going on. https://isc.sans.edu/diary/Possible%20exploit%20variant%20for%20CVE-2024-9042%20%28Kubernetes%20OS%20Command%20Injection%29/32554 React2Shell: Technical Deep-Dive & In-the-Wild Exploitation of CVE-2025-55182 Wiz has a writeup with more background on the React2Shell vulnerability and current attacks https://www.wiz.io/blog/nextjs-cve-2025-55182-react2shell-deep-dive Notepad++ Update Hijacking Notepad++ s vulnerable update process was exploited https://notepad-plus-plus.org/news/v889-released/ New macOS PackageKit Privilege Escalation A PoC was released for a new privilege escalation vulnerability in macOS. Currently, there is no patch. https://khronokernel.com/macos/2024/06/03/CVE-2024-27822.html

England doggedly pursue strengthening their fledgling foothold on the eastern shores of the continent (1497-1618), determined to make their mark in the New World’s Northern Hemisphere. Check out the YouTube versions of this episode at: https://youtu.be/kfwkvpSugeA https://youtu.be/pSkKhj27hHM Eyewitness History podcast with Josh Cohen at https://amzn.to/3NWd6N6 Vietnam War books available at https://amzn.to/3ox3eAj ENJOY Ad-Free content, Bonus episodes, and Extra materials when joining our growing community on https://patreon.com/markvinet SUPPORT this channel by purchasing any product on Amazon using this FREE entry LINK https://amzn.to/3POlrUD (Amazon gives us credit at NO extra charge to you). Mark Vinet's TIMELINE video channel: https://youtube.com/c/TIMELINE_MarkVinet Website: https://markvinet.com/podcast Facebook: https://www.facebook.com/mark.vinet.9 Twitter: https://twitter.com/HistoricalJesu Instagram: https://www.instagram.com/denarynovels Mark's Books: https://amzn.to/3k8qrGM See omnystudio.com/listener for privacy information.

Interview with Jeff Swinoga, CEO of Exploits Discovery Corp.Our previous interview: https://www.cruxinvestor.com/posts/exploits-discovery-csenfld-new-found-gold-deal-unlocks-10m-treasury-value-7947Recording date: 5th December 2025Exploits Discovery Corp (CSE:NFLD) is a resource-stage gold exploration company focused on advancing properties with established historic resources in premier Canadian mining jurisdictions including Quebec and Ontario. Today it has completed a transformational deal with New Found Gold, receiving 2.8 million shares now valued at over $11 million plus a 1% royalty on properties along the Appleton fault. CEO Jeff Swinoga discusses how the company has strategically repositioned from grassroots exploration to resource-stage development.Key Highlights:- New Found Gold Transaction: 2.8M shares valued at $11M+ (up from $7M at announcement) with 1% NSR royalty on Bullseye and other properties adjacent to Keats discovery.- Enhanced Treasury: Approximately $3.6M in working capital against $11M market cap - analyst Brian Lundin notes company is "trading at cash value" with investors getting "the gold for free"- Resource Portfolio: Acquired three Quebec properties and one district-scale Ontario asset containing ~700,000 ounces of historic gold resources.- January 2026 Drilling: Fenton property programme targeting high-grade gold along magnetic corridors intersecting diabase dykes, following extensive geophysical work- Strategic Backing: Eric Sprott holds ~14% ownership stakeSwinoga explains: "We wanted our shareholders to benefit from a rising gold price by having resources in the ground."The company is at an inflection point, transitioning from transaction completion to operational execution with immediate drilling catalysts and systematic technical work designed to improve targeting beyond previous operators' efforts.Learn more: https://cruxinvestor.comSign up for Crux Investor: https://cruxinvestor.com

PREVIEW — Bob Zimmerman — Russia Exploits Starlink on the Battlefield. Bob Zimmerman analyzes how the Ukraine war has extended into low-earth orbit through contested control of Starlink satellite communications infrastructure. Zimmerman documents that although SpaceX has publicly supported Ukraine through satellite access denial to Russian military forces, Russia has systematically acquired black-market Starlink terminals, enabling operational control of reconnaissance and attack drones throughout the conflict zone. Zimmerman characterizes this persistent technological challenge as a significant strategic problem that U.S. officials and Ukrainian military command are actively attempting to resolve through terminal tracking, signal disruption, and device authentication protocols, representing an emerging domain of space-age warfare previously unanticipated in terrestrial conflict planning. 1941

The boys return for another week to discuss the latest in Greek football, the gift that keeps on giving.UEFA CompetitionOlympiakos narrowly loses to Real MadridPanathinaikos see off Sturm GrazPAOK conceded late to draw with BrannAEK shock Fiorentina in Florence SLGRA chaotic Athenian derby ends in victory for AEKPAOK win away against LevadiakosOlympiakos leave Arginio with a narrow victoryAris win their first game in the league since SeptemberGreek Cup previewOther newsKaretsas flying for GenkMouzakitis presented with the Golden Boy Web AwardTzimas scores his first Premier League goal for BrightonWarda close to leaving Greek football...againGive us a follow on:X: https://twitter.com/HellasfootyInstagram: https://www.instagram.com/hellasfooty/Facebook: https://www.facebook.com/@HellasFootyRead our blogs on: https://hellasfooty.blogspot.com/Intro music credit to George Prokopiou (Ermou Street)

Marty sits down with Erik Cason to discuss the dangers of centralized AI systems, the need for decentralized technology, Bitcoin as a tool against fiat exploitation, and organizing a new political movement to restore freedom for the working class. Erik on Twitter: https://x.com/Erikcason Crypto Sovereignty: https://cryptosovereignty.org/ STACK SATS hat: https://tftcmerch.io/ Our newsletter: https://www.tftc.io/bitcoin-brief/ TFTC Elite (Ad-free & Discord): https://www.tftc.io/#/portal/signup/ Discord: https://discord.gg/VJ2dABShBz Opportunity Cost Extension: https://www.opportunitycost.app/ Shoutout to our sponsors: Bitkey https://bit.ly/TFTCBitkey20 Unchained https://unchained.com/tftc/ Obscura https://obscura.net/ SLNT https://slnt.com/tftc CrowdHealth https://www.joincrowdhealth.com/tftc Salt of the Earth: https://drinksote.com/tftc Join the TFTC Movement: Main YT Channel https://www.youtube.com/c/TFTC21/videos Clips YT Channel https://www.youtube.com/channel/UCUQcW3jxfQfEUS8kqR5pJtQ Website https://tftc.io/ Newsletter tftc.io/bitcoin-brief/ Twitter https://twitter.com/tftc21 Instagram https://www.instagram.com/tftc.io/ Nostr https://primal.net/tftc Follow Marty Bent: Twitter https://twitter.com/martybent Nostr https://primal.net/martybent Newsletter https://tftc.io/martys-bent/ Podcast https://www.tftc.io/tag/podcasts/

FC aka Freaky Clown is an ethical hacker and social engineer with over 30 years of experience in cybersecurity. He is the author of "How I Rob Banks: And Other Such Places," and is the co-founder of Cygenta. In this episode, FC joins host Scott Schober to discuss his experience and exploits, including his past in the industry, what inspired the book, and more. • For more on cybersecurity, visit us at https://cybersecurityventures.com

Starting off with the original Xbox getting a new cosmetic hardmod to introduce power and eject button sounds, as well as a return to form with XBMC4XBOX Redux's release. We also discuss the latest Atmosphere CFW update as it contains some pretty important information for CFW users thanks to the latest system firmware update. The PS4 and PS5 get a lot more love thanks to a new kernel exploit release working on both systems. There's also a few entry points which have gotten awesome developments with Y2JB being paired with Lapse for a full jailbreak, as well as new entry points being seen with the Netflix app and now games using the Ren'py engine!

OWASP Top 10 2025 Release Candidate OWASP published a release candidate for the 2025 version of its Top 10 list https://owasp.org/Top10/2025/0x00_2025-Introduction/ Citrix/Cisco Exploitation Details Amazon detailed how Citrix and Cisco vulnerabilities were used by advanced actors to upload webshells https://aws.amazon.com/blogs/security/amazon-discovers-apt-exploiting-cisco-and-citrix-zero-days/ Testing Quantum Readyness A website tests your services for post-quantum computing-resistant cryptographic algorithms https://qcready.com/

Link to episode page This week's Department of Know is hosted by Rich Stroffolino with guests Jacob Coombs, CISO, Tandem Diabetes Care, and Ross Young, Co-host, CISO Tradecraft Thanks to our show sponsor, Vanta What's your 2 AM security worry?   Is it "Do I have the right controls in place?"   Or "Are my vendors secure?"   ….or the really scary one: "how do I get out from under these old tools and manual processes?   Enter Vanta.   Vanta automates manual work, so you can stop sweating over spreadsheets, chasing audit evidence, and filling out endless questionnaires. Their trust management platform continuously monitors your systems, centralizes your data, and simplifies your security at scale. Vanta also fits right into your workflows, using AI to streamline evidence collection, flag risks, and keep your program audit-ready—ALL…THE…TIME. With Vanta, you get everything you need to move faster, scale confidently—and get back to sleep.   Get started at vanta.com/headlines All links and the video of this episode can be found on CISO Series.com  

Apple Patches Everything, Again Apple released a minor OS upgrade across its lineup, fixing a number of security vulnerabilities. https://isc.sans.edu/diary/Apple%20Patches%20Everything%2C%20Again/32448 Remote Access Tools Used to Compromise Trucking and Logistics Attackers infect trucking and logistics companies with regular remote management tools to inject malware into other companies or learn about high-value loads in order to steal them. https://www.proofpoint.com/us/blog/threat-insight/remote-access-real-cargo-cybercriminals-targeting-trucking-and-logistics Google Android Patch Day Google released its usual monthly Android updates this week https://source.android.com/docs/security/bulletin/2025-11-01

XWiki SolrSearch Exploit Attempts CVE-2025-24893 We have detected a number of exploit attempts against XWiki taking advantage of a vulnerability that was added to the KEV list on Friday. https://isc.sans.edu/diary/XWiki%20SolrSearch%20Exploit%20Attempts%20%28CVE-2025-24893%29%20with%20link%20to%20Chicago%20Gangs%20Rappers/32444 AMD Zen 5 Random Number Generator Bug The RDSEED function for AMD s Zen 5 processors does return 0 more often than it should. https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7055.html SleepyDuck malware invades Cursor through Open VSX Yet another Open VSX extension stealing crypto credentials https://secureannex.com/blog/sleepyduck-malware/

Phishing with Invisible Characters in the Subject Line Phishing emails use invisible UTF-8 encoded characters to break up keywords used to detect phishing (or spam). This is aided by mail clients not rendering some characters that should be rendered. https://isc.sans.edu/diary/A%20phishing%20with%20invisible%20characters%20in%20the%20subject%20line/32428 Apache Tomcat PUT Directory Traversal Apache released an update to Tomcat fixing a directory traversal vulnerability in how the PUT method is used. Exploits could upload arbitrary files, leading to remote code execution. https://lists.apache.org/thread/n05kjcwyj1s45ovs8ll1qrrojhfb1tog BIND9 DNS Spoofing Vulnerability A PoC exploit is now available for the recently patched BIND9 spoofing vulnerability https://gist.github.com/N3mes1s/f76b4a606308937b0806a5256bc1f918

Bilingual Phishing for Cloud Credentials Guy observed identical phishing messages in French and English attempting to phish cloud credentials https://isc.sans.edu/diary/Phishing%20Cloud%20Account%20for%20Information/32416 Kaitai Struct WebIDE The binary file analysis tool Kaitai Struct is now available in a web only version https://isc.sans.edu/diary/Kaitai%20Struct%20WebIDE/32422 WSUS Emergency Update Microsoft released an emergency patch for WSUS to fix a currently exploited critical vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59287 Network Security Devices Endanger Orgs with 90s-era Flaws Attackers increasingly use simple-to-exploit network security device vulnerabilities to compromise organizations. https://www.csoonline.com/article/4074945/network-security-devices-endanger-orgs-with-90s-era-flaws.html

FreePBX Exploit Attempts (CVE-2025-57819) A FreePBX SQL injection vulnerability disclosed in August is being used to execute code on affected systems. https://isc.sans.edu/diary/Exploit%20Against%20FreePBX%20%28CVE-2025-57819%29%20with%20code%20execution./32350 Disrupting Threats Targeting Microsoft Teams Microsoft published a blog post outlining how to better secure Teams. https://www.microsoft.com/en-us/security/blog/2025/10/07/disrupting-threats-targeting-microsoft-teams/ Kibana XSS Patch CVE-2025-25009 Elastic patched a stored XSS vulnerability in Kibana https://discuss.elastic.co/t/kibana-8-18-8-8-19-5-9-0-8-and-9-1-5-security-update-esa-2025-20/382449 QT SVG Vulnerabilities CVE-2025-10728, CVE-2025-10729, The QT group fixed two vulnerabilities in the QT SVG module. One of the vulnerabilities may be used for code execution https://www.qt.io/blog/security-advisory-uncontrolled-recursion-and-use-after-free-vulnerabilities-in-qt-svg-module-impact-qt

App for outing people who were insufficiently mournful of Charlie Kirk critics leaked its own users’ personal data through security blunders: https://san.com/cc/app-for-outing-charlie-kirks-critics-leaked-its-users-personal-data/ Meta is using parents’ back-to-school photos of their girls to advertise Threads to grown men: https://www.theguardian.com/technology/2025/sep/20/parents-outraged-meta-uses-photos-schoolgirls-ads-man AI-Generated YouTube Channel Uploaded Nothing But Videos of Women Being Shot: https://www.404media.co/ai-generated-youtube-channel-uploaded-nothing-but-videos-of-women-being-shot/ Controversy on subreddit r/TwinPeaks over AI: https://www.reddit.com/r/twinpeaks/comments/1npqm2k/ai_generated_content_is_no_longer_allowed/ YouTube to reinstate users banned for spreading COVID misinformation and election misinformation: https://variety.com/2025/digital/news/youtube-reinstate-channels-banned-election-covid-misinformation-1236527333/ Jessica Chastain's new show about preventing extremist violence postponed by AppleTV. Smells like censorship: https://www.instagram.com/p/DO_V2EyEZmj/ If you’re listening on Spotify, you can leave a comment there to let us know what you thought about these stories, or email us at hello@tangoti.com Follow Bridget and TANGOTI on social media! || instagram.com/bridgetmarieindc/ || tiktok.com/@bridgetmarieindc || youtube.com/@ThereAreNoGirlsOnTheInternet See omnystudio.com/listener for privacy information.

Exploit Attempts Against Older Hikvision Camera Vulnerability Out honeypots observed an increase in attacks against some older Hikvision issues. A big part of the problem is weak passwords, and the ability to send credentials as part of the URL. https://isc.sans.edu/diary/Exploit%20Attempts%20Against%20Older%20Hikvision%20Camera%20Vulnerability/32316 Cisco Patches Already Exploited SNMP Vulnerability Cisco patched a stack-based buffer overflow in the SNMP subsystem. It is already exploited in the wild, but requires admin privileges to achieve code execution. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-x4LPhte SonicWall Anti-Rootkit Update SonicWall released a firmware update for its SMA100 devices specifically designed to eradicate a commonly deployed rootkit. https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0015 Extended Windows 10 Support Microsoft will extend free Windows 10 essential support for US and European customers. https://www.straitstimes.com/world/united-states/microsoft-offers-no-cost-windows-10-lifeline