ai
ZeroDay Field Notes - Implants, Exploits, and the AI Edge
Weekly briefing on AI-driven evasion, deepfake malware, cloud C2s, and smishing that bypasses 2FA, with defender-focused mitigations.
UncleSp1d3r
I'm a computer security pro who loves creating custom tools. I'm all about building secure systems and diving into Rust and GoLang. Let's connect and team up!
dns
EvilBit Threat Digest: DNS Side-Channels, Admin UIs, and the Long Tail of Defaults
Threat digest on DNS as control plane via compromised routers and shadow resolvers, weak admin interfaces, evolving scams, and AI-enabled risk.
uefi
ZeroDay Field Notes - Tradecraft, Takeovers, and the Tools That Keep Giving
Explores firmware and extension-era attack chains - from UEFI boot-service hooks to Android/Windows RATs, NFC data exfil, and supply-chain risks.
rtf
EvilBit Threat Digest - RTFs, Rogue Plugins, and a Side of Credential Theft
A digest of threats from weaponized RTFs and rogue editor extensions, plus credential-stealing campaigns, supply-chain abuses, and defender tips.
supply-chain
EvilBit Threat Digest - When the Update Server is Lying to You
Threat digest on attackers abusing trusted services - from update servers to cloud mail - turning trust into a weapon and evading detection.
security
ZeroDay Field Notes - Your Tools Are Turning On You
Your compliance dashboard is green. Your patching metrics satisfy the auditors. The attackers are still inside.
fortinet
ZeroDay Field Notes - Your Firewall is a Liar, and Your IDE is a Snitch
Fortinet firewalls compromised despite patches, malicious VS Code AI extensions steal code from 1.5M developers, and phishing kits exploit trusted cloud platforms.
deserialization
EvilBit Threat Digest - The Deserialization Blues
Critical RCE flaws in Sitecore, HPE OneView, and Magento face active exploitation. Plus: OAuth phishing tricks, RMM tool abuse, and new cloud-native Linux malware.
malware
ZeroDay Field Notes - When Your Build Path Becomes Your Fingerprint
Weekly analysis of evasion and OPSEC failures: hardware-breakpoint AMSI bypass, unstripped Rust build paths ('Jacob'), cloud-native VoidLink, and markdown exfil.
cybersecurity
EvilBit Threat Digest - EvilBit Threat Digest: The Walls Have AI Ears
Knownsec leak exposes Chinese cyber-espionage tools, npm supply-chain attacks use blockchain C2, malicious Chrome extensions steal AI chats, and WhatsApp becomes a worm vector.
infosec
ZeroDay Field Notes - When Package Managers Become Trojan Horses and AI Safety Gets Weaponized
Offensive-focused notes on npm supply chain backdoors, Pyarmor stealth stealers, socially engineered RATs, GRU phishing, and weaponized AI safety.
supply-chain
ZeroDay Field Notes - New Year, Same Threat Actors: Supply-Chain Mayhem and APT Innovation
React/Next.js exploits compromise 59K servers, browser extensions steal $7M in crypto, and APT groups deploy kernel rootkits for stealthy persistence.