Archive

General * Running something based upon Next.js? Make sure it's patched... memory-consumption based Denial-of-Service in pre 13OCT2025 versions (patched in 15.5.5), due to an unbounded memory copy. * https://www.harmonyintelligence.com/taking-down-next-js-servers * ZenDesk typo-squatting - the next Scattered Lapsus$ Hunters target? identified Zendesk-related domains, including more

General * Scattered Lapsus$ Hunters, meet Brian Krebs the tables seem to have turned somewhat for “Rey,” the moniker chosen by the technical operator and public face of the hacker group: Earlier this week, Rey confirmed his real life identity and agreed to an interview after KrebsOnSecurity tracked him down and

General * Windows 11 Administrator Protection quietly reverted, till some unspecified later time. Administrator protection will be available on Windows 11 devices soon. The feature previously listed in the October 2025 non-security update (KB5067036) has been reverted and will roll out at a later date. * https://learn.microsoft.com/en-us/windows/

General * An effort to fight bad security advice - Hacklore. See The Letter, for a list of the names behind the project. Hacklore is a blend of hacking and folklore—modern urban legends about digital safety ... But like most folklore, it isn’t grounded in reality, no matter how plausible

General * There's a bug in Grafana, but only in the Enterprise version (not the Open Source version), and only when SCIM is enabled. * https://www.bleepingcomputer.com/news/security/grafana-warns-of-max-severity-admin-spoofing-vulnerability/ * Beware the insider - CrowdStrike terminated an insider after they shared screenshots of their system. Linked to Scattered

General * It took ten years from when they set up, but Samourai crypto-currency-mixer CEO (Rodriguez) and CTO (Hill) are both going to jail. They actively encouraged use of the service for cleaning dirty crypto-currency. a user asked about the most “secure methods to clean dirty BTC” to make it “untraceable,

General * AUKUS sanction "Media Land", a Russian Bulletproof Hosting Provider (BPH - ignore takedown notices), based in St. Petersburg. Also extends activity against "Aeza Group", sanctioned in July this year. * https://home.treasury.gov/news/press-releases/sb0319 * https://www.gov.uk/government/news/uk-smashes-russian-cybercrime-networks-responsible-for-attacks-on-uk-businesses * (A Krebs

General * Cloudflare Outage, lasting just under 6-hours end-to-end A Cloudflare spokesperson said the “root cause” of the outage was an automatically generated configuration file used to manage threat traffic that “grew beyond an expected size of entries,” which triggered a crash in the software system that handles traffic for several

General * Software engineering practices at Microsoft are clearly improving. This time, the M365 desktop app failing due to updated authentication components. There was also another M365 bug, an Intune bug, a bug with Win10 ESU...and that's just in the last week. * https://www.bleepingcomputer.com/news/microsoft/

General * Android performance flagging might help with malware identification. Try to do too much in the background, and apps will get a battery-usage warning banner in the Play store. * https://www.bleepingcomputer.com/news/security/google-to-flag-android-apps-with-excessive-battery-use-on-the-play-store/ * After earlier announcing that all apps must come from developer accounts with verified identities