Colorama Attack: How 215M Downloads Were Compromised

Ever wonder if Lua just landed in your environment? Maybe you don’t want to think about it. Lua and LuaJIT aren’t just used for games or scripting. Attackers increasingly abuse them as lightweight, portable runtimes to execute payloads undetected. The risk: 🚨Dropping a Lua binary means instant access to a full scripting engine on your servers. That opens the door for custom malware, evasive loaders, and post-exploitation tooling. MagicSword’s WDAC policy blocks Lua binaries and execution outright on Windows. No runtime, no abuse. If you don’t have a business case for Lua, don’t let it run. Block first. Ask questions later. ⚔️

Master Termux on Android — complete practical course for cybersecurity beginners and pros. What you’ll learn: • Information gathering (nmap, whois, Recon-ng) • Vulnerability scanning & web testing (Nikto, sqlmap, WPScan) • Exploitation basics (Metasploit, Hydra) • Password cracking & hashing tools (Hydra, Hashcat) • OSINT & forensics (theHarvester, Maltego, Wireshark) • Scripting & automation (Python, Bash, Git) Important: This course is for ethical, legal learning only. Practice in labs and authorised environments. ▶️ Watch the full course: https://lnkd.in/gjFbZ2B8 If you find it useful, please Like, Comment, and Share. #Termux #Cybersecurity #EthicalHacking #OSINT #AndroidSecurity #InfoSec

Alert: Malicious PyPI Package soopsocks Infects 2,653 Systems Before Takedown https://ift.tt/L2axAc5 Cybersecurity researchers have flagged a malicious package on the Python Package Index (PyPI) repository that claims to offer the ability to create a SOCKS5 proxy service, while also providing a stealthy backdoor-like functionality to drop additional payloads on Windows systems. The deceptive package, named soopsocks, attracted a total of 2,653 downloads before it was taken down. It was first via The Hacker News https://ift.tt/Tdq79Bm October 02, 2025 at 08:07AM

Inspired by Cheat Engine ⚙️, I built a small C++ project to explore practical reverse engineering a memory scanner/updater that inspects how Elden Ring stores “ruins” (coins) in memory. 🎯 The goal was purely educational to practice WinAPI, process memory access, and multi-threaded scanning, not to enable cheating. 🚫🎮 This project helped me strengthen my understanding of low-level Windows internals, concurrency, and safe memory-handling techniques. I’m open to suggestions and collaboration on secure, ethical reverse-engineering practices and defensive research. 🛠️🧠🔒 📂 GitHub Repository: https://lnkd.in/gDxKeh6t #ReverseEngineering #Cybersecurity #Cplusplus #WinAPI #Multithreading #EthicalHacking #SecurityResearch #GameDev #LearningJourney #EldenRing

🚀 I Just explored the latest Kali Linux 2025.3 release, and one feature immediately caught my attention: Gemini-CLI. Instead of switching between browsers and terminals, Gemini-CLI lets you bring AI-powered assistance directly into your command line. 💡 For penetration testers and security researchers, this could mean faster reconnaissance, quicker scripting, and more time to focus on problem solving. Curious to see how we will leverage this tool (Taking into consideration cost and security) the possibilities are wide open. 👉 Have you tried Gemini-CLI yet? if yes, What’s your first impression? Enow Joshua #KaliLinux #CyberSecurity #Automation #AI

Published a detailed walkthrough for Cybersploit 1 — covers enumeration, exploitation, and post-exploitation steps. Useful if you’re studying real-world techniques or prepping for OSCP. #oscp #penetrationtesting #redteamer #pentest #cybersecurity #AD #linux #Cybersploit1

Hacking Linux: Digging Up Bash History! 👉 Video: https://lnkd.in/ghWybbdv 📚 Learn Hacking: https://hacksmarter.org - In this video, I continue working through the new "BankSmarter" machine on Hack Smarter Labs. I do my best to treat it like an actual penetration test, and share with you my full methodology, note-taking process, and more.

Just finished a TryHackMe room on web vulnerabilities and wanted to share a few concrete takeaways, short, practical, and what I will actually reuse next time I test or defend an app. What I did: • Walked through XSS variants (DOM, Stored, Blind). • Used browser DevTools to manipulate form values and inspect requests, and practiced intercepting/editing requests to understand server-side validation. • Learned how payloads behave differently depending on where input is reflected (attribute vs text node vs URL/hash). What I learned: • DOM XSS runs entirely in the browser,never trust values from the URL or hash; use textContent or proper sanitizers. • Stored XSS is dangerous because malicious scripts can be saved and executed in other users’ browsers (admins especially!). Blind XSS hides execution from the attacker but can still lead to serious compromises. • Polyglot payloads are noisy and resilient defensive focus should be on context-aware encoding, strict whitelists, and a strong CSP. • Practical tools: DevTools for DOM tinkering, Burp for request editing, and keeping a tight lab log makes replaying and explaining findings way easier. Defensive takeaways: • Always validate and canonicalize input on the server. • Use HttpOnly/Secure/SameSite on sensitive cookies. • Avoid exposing sensitive actions as client-side global functions. • Apply Content Security Policy and egress filtering these reduce blast radius. #CyberSecurity #WebSecurity #TryHackMe #XSS #SSRF #BugBounty #EthicalHacking #AppSec #InfoSec #RedTeam #BlueTeam #LearningInPublic #SecurityTesting #CyberCareer #HiringCyberTalent #InfosecCommunity

🔥 2,653 developers just got a harsh lesson in supply chain security Malicious PyPI package "soopsocks" was downloaded thousands of times before takedown, secretly exfiltrating Windows data to Discord servers. This is why code review and dependency scanning aren't optional anymore. How do you verify the packages you install? 👇 #CyberSecurity #Python #DevSec #SupplyChain #InfoSec #PyPI #Malware #DevOps