Multiple weaponized proof-of-concept (PoC) exploits on GitHub were found delivering a Python-based remote access trojan (RAT) named ChocoPoC that can execute commands and steal sensitive data in a ...
Hackers are exploiting a recently disclosed critical vulnerability (CVE-2026-48558) in SimpleHelp to deploy Djinn Stealer, a previously undocumented cross-platform information stealer targeting ...
CVE-2026-43503, named DirtyClone, is the fourth member of a Linux kernel exploit family found in under two months. It is a DirtyClone privilege escalation that lets any local user reach root on ...
A publicly documented exploit now shows any local user on an unpatched Linux system how to gain root access — and do it without leaving a single line in the kernel log or on-disk evidence for ...
A flaw in the Linux kernel's traffic-control subsystem can let a local unprivileged user gain root on affected systems. The exploit never touches the file on disk. It poisons the cached copy of a ...
Researchers disclosed usbliter8, a SecureROM exploit affecting older Apple devices that can bypass boot protections with physical access. Researchers at cybersecurity firm Paradigm Shift have revealed ...
European cybersecurity research firm Paradigm Shift has disclosed details of a new BootROM exploit that affects millions of iPhones and cannot be patched with a software update. Dubbed Usbliter8, the ...
Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that achieves arbitrary code execution inside the SecureROM of Apple's A12 and A13 chips. That code is burned ...
used as Metasploit does not have ARMLE null free shellcode. This vulnerability was presented by the Flashback Team in Pwn2Own Austin 2021 and OffensiveCon 2022. For more information check the ...
A fork of kernel-hack-drill adapted to demonstrate cross-cache attacks against SLUB's new sheaf/barn mechanism on Linux 7.1. It is the companion code for my blog post on freeing a victim slab page ...