BestHub
Sign in
Showing 100 articles max
Latest Popular
Black & White Path
Black & White Path
May 19, 2026 · Information Security

Dark Web Claim of a 62 GB OpenAI Data Leak: What’s Inside?

A threat actor named MrLucxy is selling a purported "OpenAI dataset" on the dark web, claiming a compressed size of about 14.6 GB and over 62 GB uncompressed, containing chat logs, Slack exports, internal tickets, infrastructure SQL dumps, contractor PII, API key files, and monitoring data, but a veteran security analyst doubts its authenticity, noting the unusually large 8 MB API‑key file and suggesting it may be repackaged old leaks or fabricated data, as reported by Undercode News.

Dark WebInformation SecurityOpenAI
0 likes · 2 min read
Dark Web Claim of a 62 GB OpenAI Data Leak: What’s Inside?
Black & White Path
Black & White Path
May 19, 2026 · Information Security

Is BitLocker Hiding a Deliberate Backdoor? Inside the YellowKey Bypass Attack

A security researcher released the YellowKey proof‑of‑concept showing that, on Windows 11 and Server 2022/2025, BitLocker can be bypassed without a password or recovery key by using a crafted USB and multiple reboots, sparking accusations that Microsoft may have embedded a backdoor in the WinRE component.

BitLockerTPMTransactional NTFS
0 likes · 13 min read
Is BitLocker Hiding a Deliberate Backdoor? Inside the YellowKey Bypass Attack
dbaplus Community
dbaplus Community
May 18, 2026 · Information Security

One Bash Script, One Weekend: How AI Uncovered a 23‑Year‑Old Linux Kernel Flaw

A simple Bash script run over a weekend by researcher Nicholas Carlini leveraged Claude Opus 4.6 to discover a critical NFSv4 vulnerability that had persisted in Linux kernels since March 2003, prompting Linus Torvalds to announce AI‑driven security as a new normal in the Linux 7.0 release.

AI-assisted Vulnerability DetectionKernel SecurityLinux
0 likes · 19 min read
One Bash Script, One Weekend: How AI Uncovered a 23‑Year‑Old Linux Kernel Flaw
Black & White Path
Black & White Path
May 18, 2026 · Information Security

Why npm Keeps Getting Compromised: A Deep Dive into the Latest node‑ipc Supply‑Chain Attack

On May 14, 2026 three malicious versions of the node‑ipc package were published to npm, injecting obfuscated payloads that steal cloud credentials, SSH keys, AI tool configurations and other sensitive files, and the article analyses the attack stages, historical repeats, npm's structural flaws, and concrete blue‑team mitigation steps.

Credential Theftdetection rulesnode-ipc
0 likes · 12 min read
Why npm Keeps Getting Compromised: A Deep Dive into the Latest node‑ipc Supply‑Chain Attack
Black & White Path
Black & White Path
May 18, 2026 · Information Security

Windows Kernel LPE (CVE‑2026‑40369) PoC: Privilege Escalation from Chrome Sandbox

CVE‑2026‑40369 is an arbitrary kernel‑address write bug in ntoskrnl.exe that lets a low‑privilege attacker invoke NtQuerySystemInformation from the Chrome sandbox to gain SYSTEM rights on vulnerable Windows 11 and Server 2025 builds, with a fully functional PoC released on GitHub.

CVE-2026-40369Chrome sandboxLocal Privilege Escalation
0 likes · 10 min read
Windows Kernel LPE (CVE‑2026‑40369) PoC: Privilege Escalation from Chrome Sandbox
Black & White Path
Black & White Path
May 18, 2026 · Information Security

How Fast16 Sabotaged Iran’s Nuclear Program: Inside the 17‑Year Mystery Unveiled

The article traces the nine‑year journey from the Shadow Brokers leak to the 2026 AI‑assisted reverse‑engineering of Fast16, revealing its three‑layer sabotage architecture, uranium‑density manipulation, targeted industrial simulation software, and its relationship to Stuxnet, while highlighting security lessons for critical infrastructure.

AI-assisted reverse engineeringFast16Stuxnet
0 likes · 11 min read
How Fast16 Sabotaged Iran’s Nuclear Program: Inside the 17‑Year Mystery Unveiled
Su San Talks Tech
Su San Talks Tech
May 17, 2026 · Information Security

Nginx’s 18‑Year‑Old RCE Flaw Exposes One‑Third of Websites

A critical Nginx vulnerability (CVE‑2026‑42945, CVSS 9.2) discovered by depthfirst and F5 allows unauthenticated remote code execution via a single crafted HTTP request, affecting versions 0.6.27‑1.30.0 and roughly one‑third of global websites.

CVE-2026-42945Information SecurityRCE
0 likes · 11 min read
Nginx’s 18‑Year‑Old RCE Flaw Exposes One‑Third of Websites
Black & White Path
Black & White Path
May 17, 2026 · Information Security

From Normal User to Root: Inside the ssh-keysign-pwn Linux Kernel LPE (CVE‑2026‑46333)

The article details the ssh-keysign-pwn vulnerability (CVE‑2026‑46333), explaining its exit‑mm/exit‑files race condition, how ordinary users can steal SSH host keys and /etc/shadow via pidfd_getfd, the affected Linux distributions, exploit steps, mitigation measures, and the broader context of May 2026 kernel security disclosures.

CVE-2026-46333LinuxLocal Privilege Escalation
0 likes · 16 min read
From Normal User to Root: Inside the ssh-keysign-pwn Linux Kernel LPE (CVE‑2026‑46333)
Black & White Path
Black & White Path
May 17, 2026 · Information Security

OpenClaw’s Four‑Vulnerability Chain Exposes 245,000 AI Agent Servers to Attack

A security analysis reveals that on February 19, 2026, 23 OpenClaw vulnerabilities—four of which can be chained—left roughly 245,000 publicly exposed AI Agent servers vulnerable to credential theft, privilege escalation, persistent backdoors, and lateral movement, especially in finance, healthcare, and legal sectors.

AI agentCVE-2026-44112CVE-2026-44113
0 likes · 15 min read
OpenClaw’s Four‑Vulnerability Chain Exposes 245,000 AI Agent Servers to Attack
Black & White Path
Black & White Path
May 16, 2026 · Information Security

A 18‑Year‑Old Nginx RCE Flaw Finally Exposed (CVE‑2026‑42945)

Depthfirst’s AI tool Rift uncovered a critical heap‑buffer‑overflow vulnerability (CVE‑2026‑42945) in Nginx’s ngx_http_rewrite_module that has been present for 18 years, allowing unauthenticated attackers to trigger denial‑of‑service or potential remote code execution, affecting versions 0.6.27‑1.30.0 and fixed in 1.30.1/1.31.0.

AI-assisted Vulnerability DiscoveryCVE-2026-42945Heap Buffer Overflow
0 likes · 5 min read
A 18‑Year‑Old Nginx RCE Flaw Finally Exposed (CVE‑2026‑42945)
Black & White Path
Black & White Path
May 16, 2026 · Information Security

Foxconn Factories Hit by Ransomware: 8 TB of Sensitive Files Potentially Stolen

Foxconn's U.S. factories suffered a network outage before the Nitrogen ransomware gang claimed to have exfiltrated over 8 TB of sensitive data—about 11 million files—including material related to Google and Intel, prompting security researchers to analyze the leaked samples and assess the potential impact.

FoxconnInformation SecurityNitrogen
0 likes · 5 min read
Foxconn Factories Hit by Ransomware: 8 TB of Sensitive Files Potentially Stolen
Black & White Path
Black & White Path
May 16, 2026 · Information Security

Node‑ipc Hit Again: Inside the Second Wave of npm Supply‑Chain Attacks

On May 14, 2026, security teams uncovered three malicious node‑ipc npm releases that used a Lily‑Pad account‑hijack technique to inject an 80 KB obfuscated payload, exfiltrate credentials via DNS TXT tunneling, and prompt immediate version audits and credential rotation.

Credential TheftInformation SecurityLily Pad attack
0 likes · 5 min read
Node‑ipc Hit Again: Inside the Second Wave of npm Supply‑Chain Attacks
Linux Tech Enthusiast
Linux Tech Enthusiast
May 15, 2026 · Information Security

Why HTTPS Is Secure: From HTTP Vulnerabilities to TLS Handshake

The article explains HTTP’s plaintext nature and its susceptibility to man‑in‑the‑middle attacks, then details how HTTPS (TLS) uses asymmetric key exchange, certificates, and a trusted CA hierarchy to establish encrypted communication and prevent such attacks.

AESCACertificate
0 likes · 10 min read
Why HTTPS Is Secure: From HTTP Vulnerabilities to TLS Handshake
Black & White Path
Black & White Path
May 15, 2026 · Information Security

How the 'FailRelock' Flag Let Attackers Bypass BitLocker for the Fifth Time

A debug flag named FailRelock in Windows' recovery environment disables BitLocker relocking when set to 1, allowing an attacker with a USB drive and a modified INI file to obtain full access to encrypted drives—a fifth such breach in five years, highlighted with attack steps, technical analysis, and mitigation advice.

BitLockerDebug FlagFailRelock
0 likes · 6 min read
How the 'FailRelock' Flag Let Attackers Bypass BitLocker for the Fifth Time