Lightnews — Scholar-powered news

Jeremy Kirk @jkirk.bsky.social · 16d

🖕

Jeremy Kirk @jkirk.bsky.social · 20d

Very interesting research into a very serious Microsoft Entra bug (CVE-2025-55241).
dirkjanm.io/obtaining-gl...

One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens

While preparing for my Black Hat and DEF CON talks in July of this year, I found the most impactful Entra ID vulnerability that I will probably ever find. One that could have allowed me to compromise ...

dirkjanm.io

1 2

Jeremy Kirk @jkirk.bsky.social · Aug 22

The Register reports Microsoft has cut off Chinese vendors from its MAPP program, which gives advanced warning of pending patches so vendors can prepare. #infosec www.theregister.com/2025/08/21/m...

www.theregister.com

Jeremy Kirk @jkirk.bsky.social · Aug 20

A new episode of @intel471.bsky.social's Cybercrime Exposed podcast is out! DukeEugene is a Russian Android malware dev who has a big problem, and he puts everything on the line to solve it. Link to pod here: www.intel471.com/resources/po...

2 6

Jeremy Kirk @jkirk.bsky.social · Aug 19

Trail of Bits has open-sourced its Buttercup Cyber Reasoning System, an AI tool that can find vulnerabilities in open source repositories and then patch them using a multi-agent AI patcher. #infosec Project here: github.com/trailofbits/...

GitHub - trailofbits/buttercup

Contribute to trailofbits/buttercup development by creating an account on GitHub.

github.com

Reposted by Jeremy Kirk

Phrack Zine @phrack.org · Aug 19

Phrack turns 40.
The digital drop is live.
Download it. Archive it. Pass it on.
💾 www.phrack.org
#phrackat40 #phrack72

Phrack 40th Anniversary ansi art by Harvest

84 160

Jeremy Kirk @jkirk.bsky.social · Aug 10

🤣

Jeremy Kirk @jkirk.bsky.social · Aug 6

Erm...
techcrunch.com/2025/08/06/k...

Key sections of the US Constitution deleted from government's website | TechCrunch

Internet sleuths say the U.S. Constitution's website is now missing key sections from its website, including a key legal provision relating to habeas corpus, which protects citizens from unlawful dete...

techcrunch.com

2

Jeremy Kirk @jkirk.bsky.social · Aug 2

Onery Apple decided to comply with right-to-repair laws by making spare parts available but for massively, makes-no-sense prices. A $20 charge port is being sold for $250. Outrageous. By @404media.co. www.404media.co/apple-is-sel...

Apple Is Selling iPad Repair Parts for Astronomical Prices

“I believe Apple is charging this because they know if the price is high enough no one will buy it."

www.404media.co

1 2

Jeremy Kirk @jkirk.bsky.social · Aug 2

Well, if this is accurate so be it - fair, scoped play. At least US spies didn't try to exploit every vulnerable one it found on the internet, like (ahem). #infosec www.theregister.com/2025/08/01/c...

China: US spies used Microsoft Exchange 0-day to steal info

: Spy vs. spy

www.theregister.com

1 1

Jeremy Kirk @jkirk.bsky.social · Aug 2

Some 110,000 ChatGPT conversations that were (inadvertently?) allowed by users to become discoverable via search engines were picked up in the Wayback Machine. www.digitaldigging.org/p/chatgpt-co... #infosec

ChatGPT Confessions gone? They are not !

OpenAI closes gap, but another opens of 110.000 chats

www.digitaldigging.org

3

Reposted by Jeremy Kirk

Tim Onion @bencollins.bsky.social · Jul 30

Holy shit, they did it. They wrote the headline.

NYC Mass Shooting Was Nearly Impossible to Prevent, Experts Say

810 9.5K 43K

Jeremy Kirk @jkirk.bsky.social · Jul 25

@campuscodi.risky.biz Coming off the SharePoint flaw mess, I found this line in the Risky Bulletin hilarious 🤣.

1 1

Jeremy Kirk @jkirk.bsky.social · Jul 25

Microsoft has introduced linkable token identifiers, which allow for greater precision when tracking the use of compromised credentials by differentiating between valid and malicious sessions. #infosec techcommunity.microsoft.com/blog/microso...

Strengthen identity threat detection and response with linkable token identifiers

Linkable token identifiers now GA to trace user sessions across multiple Microsoft 365 and Microsoft Graph workloads to improve security investigations.

techcommunity.microsoft.com

1

Jeremy Kirk @jkirk.bsky.social · Jul 24

Jacob Larsen is an #infosec pro who was involuntarily pulled into the dark world of doxing. I spoke with him about doxing's effects, how sites like Doxbin use legal loopholes and how to defend against being doxed. Latest Studio 471 podcast from @intel471.bsky.social
www.youtube.com/watch?v=y5AO...

Defending against doxing ft. Jacob Larsen, Threat Researcher, Offensive Security Lead, CyberCX

YouTube video by Intel 471

www.youtube.com

1 1

Jeremy Kirk @jkirk.bsky.social · Jul 23

The administrator of the XSS cybercrime forum has been arrested in Kyiv. #infosec
www.europol.europa.eu/media-press/...

Key figure behind major Russian-speaking cybercrime forum targeted in Ukraine – Suspected forum administrator with nearly 20 years in cybercrime made over EUR 7 million facilitating illegal activities...

Suspected forum administrator with nearly 20 years in cybercrime made over EUR 7 million facilitating illegal activities. A long-running investigation led by the French authorities, in close cooperati...

www.europol.europa.eu

1 1

Jeremy Kirk @jkirk.bsky.social · Jul 23

The infamous XSS cybercrime forum appears to have been seized. #infosec

2 3

Jeremy Kirk @jkirk.bsky.social · Jul 22

R.I.P Ozzy.

8

Reposted by Jeremy Kirk

Microsoft Threat Intelligence @threatintel.microsoft.com · Jul 21

Update: Microsoft has released security updates that fully protect customers using all supported versions of SharePoint affected by CVE-2025-53770 and CVE-2025-53771. Customers should apply these updates immediately.

Full guidance and detection details: msft.it/6010sDzSE.

2 30 38

Jeremy Kirk @jkirk.bsky.social · Jul 20

Great story!

2

Reposted by Jeremy Kirk

ProPublica @propublica.org · Jul 15

Our investigation revealed how a little-known Microsoft program could leave some of the U.S. government’s most sensitive data vulnerable to hacking from its leading cyber adversary.

TL;DR, these are the 9 biggest takeaways ⤵️

13 120 310

Jeremy Kirk @jkirk.bsky.social · Jul 20

Seems to come in waves for me. There will be months where I get 2-3 a day and the last several months nothing at all.

1 4

Jeremy Kirk @jkirk.bsky.social · Jul 17

Aldi is selling 50-gram packets of "hand picked" dried mixed forest mushrooms this week if anyone is interested, mmmmm? #Australia

1

Jeremy Kirk @jkirk.bsky.social · Jul 17

Low-quality bug reports generated by AI are overwhelming open-source projects such as curl and Python. This might necessitate projects moving to bug reporting platforms where security researchers are vetted rather than leaving an open inbox. #infosec www.theregister.com/2025/07/15/c...

Curl creator mulls nixing bug bounty awards to stop AI slop

: Maintainers struggle to handle growing flow of low-quality bug reports written by bots

www.theregister.com

2

Jeremy Kirk @jkirk.bsky.social · Jul 10

Hot stuff: Four picked up in the UK related to the ransomware/extortion attacks against M&S, Co-op and Harrods: www.nationalcrimeagency.gov.uk/news/retail-... #infosec

Retail cyber attacks: NCA arrest four for attacks on M&S, Co-op and Harrods

Four people have been arrested in the UK as part of a National Crime Agency investigation into cyber attacks targeting M&S, Co-op and Harrods.

www.nationalcrimeagency.gov.uk

2