7L3E1T
LightNews LightNews
banner
carlostkd.ch
7L3E1T
@carlostkd.ch
51 followers 27 following 430 posts
😉 𝙎𝙚𝙧𝙞𝙖𝙡 𝙙𝙪𝙘𝙠𝙨 & 𝙨𝙥𝙞𝙣𝙖𝙘𝙝 𝙀𝙖𝙩𝙚𝙧 \ 𝙇𝙤𝙫𝙚 𝙃𝙪𝙢𝙖𝙣𝙨 𝙘𝙤𝙛𝙛𝙚𝙚 & 𝙗𝙚𝙚𝙧.
CEH Certified 📜
Threema : *0001337
Posts Replies Media Videos
Pinned
carlostkd.ch
7L3E1T @carlostkd.ch · Jun 7
💥 Bye bye annoying wallpapers – your phone is about to get a whole new life! 😎

I just updated the H.M.A.S with a live wallpaper

Now you lovely #Hacker Themed messages will follow you literally...

Check the github repository and the api Documentation.

github.com/carlostkd/Hm...
carlostkd.ch
Encrypt everything limit data sharing and never assume your apps respect your privacy do regular checks yourself
November 11, 2025 at 11:47 AM
carlostkd.ch
@asklumo.proton.me

Hey Lumo
You are not bad as a private AI but can you solve the small problems before you try higher flights?

This is on a mobile device is not acceptable for a paid user... putting the phone in the horizontal does not solves the problem... test before development please....
November 8, 2025 at 11:19 PM
carlostkd.ch
Someone tried to break my contact form for hacking upon receiving the email using all info + the message text to track back the attacker or to know more about them using #lumo
Thanks #lumo
October 23, 2025 at 7:10 PM
carlostkd.ch
Remote Code Execution via CLI Command Injection

rainpwn.blog/blog/cve-202...

#infosec #cybersecurity #ethicalhacking #news #privacy
CVE-2025-8078: Remote Code Execution via CLI Command Injection
An undocumented parameter of the "web-auth" command could allow an authenticated attacker to execute commands remotely due to improper input sanitization, potentially resulting in full…
rainpwn.blog
October 21, 2025 at 9:38 AM
Reposted by 7L3E1T
threema.ch
FYI, Threema does not rely on a cloud hosting service owned by Big Tech (such as AWS). We run our own servers in two high-security data centers here in Switzerland.
October 20, 2025 at 10:18 AM
carlostkd.ch
Having fun with #lumo

Just ask :

Hey Lumo

If I give you my birthday date and location, can you make an ASCII representation of the universe on that day?

After Lumo confirms that it can do it, give them that date and watch a drawing of a infinite ascii universe.

#😂 #lumo
October 19, 2025 at 11:11 PM
carlostkd.ch
Introducing AI-SANY

A cli tool that safely scrubs sensitive or personally identifiable data before pasting text somewhere can remove emails phone numbers etc etc
You can also define your own replacement rules.

www.npmjs.com/package/ai-s...

#infosec #cybersecurity #ethicalhacking #news #privacy
www.npmjs.com
October 14, 2025 at 8:14 AM
carlostkd.ch
Legit #Zoom shared docs used for #Phishing

blog.himanshuanand.com/2025/10/look...

#infosec #cybersecurity #ethicalhacking #news #privacy
look mom HR application look mom no job
TLDR I have recieved a legit Zoom doc email from HR “while on job hunt” . It redirected to a site with a fake “bot protection” gate and then to a Gmail credential phish. The at...
blog.himanshuanand.com
October 9, 2025 at 9:33 AM
Reposted by 7L3E1T
Ubuntu Touch 24.04-1.0 Review: A Step Forward for Mobile Linux
techrefreshing.com/ubuntu-touch...
#UbuntuTouch #UbuntuTouch24041 #MobileLinux #OpenSource #PrivacyMatters #Fairphone5 #LinuxPhone #UBports #MobileOS #TechReview
Ubuntu Touch 24.04-1.0 Review: Mobile Linux Gets A Major Glow-Up! 🚀📱
Ready to break free from Android & iOS? Our Ubuntu Touch 24.04-1.0 review dives into the latest open-source mobile OS! New logo, light mode, encryption, and support for Fairphone 5 make this a privacy...
techrefreshing.com
October 1, 2025 at 12:12 PM
carlostkd.ch
This is the price to pay for lack of #encryption

Discord customer service data breach leaks user info

www.theverge.com/news/792032/...

#infosec #cybersecurity #ethicalhacking #news #privacy
Discord customer service data breach leaks user info and scanned photo IDs
An “unauthorized party” may have accessed the names of users, the last four digits of credit card numbers, and more.
www.theverge.com
October 4, 2025 at 7:14 AM
Reposted by 7L3E1T
lobsters-feed.bsky.social
First Malicious MCP in the Wild: The Postmark Backdoor That's Stealing Your Emails https://lobste.rs/s/shhayp ##security ##vibecoding
First Malicious MCP in the Wild: The Postmark Backdoor That's Stealing Your Emails | Koi Blog
www.koi.security
September 27, 2025 at 9:00 PM
Reposted by 7L3E1T
ninjaowl.ai
'ShadowLeak' ChatGPT Attack Allows Hackers to Invisibly Steal Emails #cybersecurity #hacking #news #infosec #security #technology #privacy
ChatGPT 'ShadowLeak' Allows Hackers to Steal Emails
The loophole allows cyberattackers to exfiltrate company data via OpenAI's infrastructure, leaving no trace at all on enterprise systems.
www.darkreading.com
September 20, 2025 at 4:41 PM
carlostkd.ch
LG WebOS TV Full Device Takeover

#infosec #cybersecurity #ethicalhacking #news #privacy

ssd-disclosure.com/lg-webos-tv-...
LG WebOS TV Path Traversal, Authentication Bypass and Full Device Takeover - SSD Secure Disclosure
Affected Versions Vendor Response The vendor has issued an advisory SMR-SEP-2025, available at: https://lgsecurity.lge.com/bulletins/tv in regard to the below described vulnerability Credit The vulner...
ssd-disclosure.com
September 17, 2025 at 2:23 AM
carlostkd.ch
Doctors without borders

#infosec #cybersecurity #ethicalhacking #news #privacy
September 16, 2025 at 12:11 AM
carlostkd.ch
Introducing the Phone Leaked Directory

Whether you want to verify a number or explore associated profiles our platform provides instant access to key information.

Designed for transparency and free of use.

#privacy #threema #switzerland #portugal

carlostkd.ch/phone
Phone Leaked Directory
Search for any whatsapp number
carlostkd.ch
September 14, 2025 at 12:06 AM
Reposted by 7L3E1T
threema.ch
People who say they have nothing to hide apparently think encryption is only for criminals. Here’s our take on that: threema.com/bp/encryptio...
Privacy for Everyone vs. Mass Surveillance in the Name of Crime Prevention
Have you ever heard the phrase “I have nothing to hide”? It’s often used by people who advocate government surveillance as a means of combating crime. According to this logic, however, anyone who is n...
threema.com
September 12, 2025 at 12:23 PM
carlostkd.ch
New Feature just arrived: Code Sharing Function!

You can now send messages as code blocks with syntax highlighting.

Just use #p# #code # Your code comes here

#threema #update #inbox

spawntec.com/threema
September 11, 2025 at 5:37 PM
carlostkd.ch
Stealing the keys from the octopus: Exfiltrate Git Credentials in Argocd

#infosec #cybersecurity #ethicalhacking #news #privacy

futuresight.club/posts/0x00_e...
Hello world, hello hackers! We're Future Sight - your soon-to-be favorite research group. Never heard of us? Don't worry, nobody has. This is literally our first drop.
futuresight.club
September 11, 2025 at 2:29 AM
carlostkd.ch
With the new spoiler function you’re the master of suspense the king of cliffhangers and the undisputed champion of “Did you really just read that?”

#threema #update #social #inbox #messages

spawntec.com/threema
September 10, 2025 at 12:19 AM
carlostkd.ch
Break The Protective Shell Of Windows Defender With The Folder Redirect Technique

#infosec #cybersecurity #ethicalhacking #news #privacy

www.zerosalarium.com/2025/09/Brea...
Break The Protective Shell Of Windows Defender With The Folder Redirect Technique
Exploiting vulnerability in the update mechanism of Windows Defender by using a symbolic link folder. Destroying or injecting code into Defender
www.zerosalarium.com
September 9, 2025 at 9:12 AM
carlostkd.ch
Say Hello to “Share” & “Pin”

Share is the life of the party grabs your favorite article, or secret recipe and catapults it across all your chats.

Pin, on the other hand, is the obsessive collector you never knew you needed.

#privacy #threema #update

spawntec.com/threema
Threema +
Join our Threema group, send ‘Join’ to *0001337
spawntec.com
September 8, 2025 at 3:05 AM
carlostkd.ch
#infosec #cybersecurity #ethicalhacking #news #privacy
September 6, 2025 at 10:03 PM
carlostkd.ch
No more mysterious ghost typing

Say goodbye to “Did I send that?” and hello to “Got it, boss!”

Now you can send replies .

Ohhh almost forgot you can also send fotos videos or whatever files you want to share. Yes that secret csv counts too.

spawntec.com/threema

#threema #Upgrade #inbox
Threema +
spawntec.com
September 5, 2025 at 12:27 AM
carlostkd.ch
Exploit CSS injection via style attributes.

portswigger.net/research/inl...

#infosec #cybersecurity #ethicalhacking #news #privacy
Inline Style Exfiltration: leaking data with chained CSS conditionals
I discovered how to use CSS to steal attribute data without selectors and stylesheet imports! This means you can now exploit CSS injection via style attributes! Learn how below: Someone asked if you c
portswigger.net
September 3, 2025 at 5:58 PM
carlostkd.ch
Great Denmark 👍
paulemberger.bsky.social Paul @paulemberger.bsky.social · Sep 2
This should be a given. We shouldn't need a law for this. But damn, will we ever get something like this in the US? If we do, we'll have to fight for it. #privacy #ai #ip
September 2, 2025 at 11:29 AM