Replacing Cursor With Neovim and Claude Code
My three-paned Ghostty / Neovim / Claude Code Setup (click for full size) It kind of sucks right now to be a (neo)Vim user if…
Month: July 2025
How to find more vulnerabilities using GitHub search
Bug bounty hunters who spend time in content discovery and reconnaissance are always rewarded well for their efforts, as they often come across untested and…
How to Use Filmora’s Planar Tracker for Awesome Video Edits
Want to add your logo onto a moving object, replace a sign within your video, or have text smoothly follow a surface? These are the…
Romania arrests 13 in phishing scam targeting British tax office
Thirteen people have been arrested in Romania after phishing attacks against Britain’s tax office, with suspected stolen data being used to allegedly obtain millions of…
CVE-2025-25257 PoC enables remote code execution on Fortinet FortiWeb
Patch immediately: CVE-2025-25257 PoC enables remote code execution on Fortinet FortiWeb Pierluigi Paganini July 13, 2025 PoC exploits released for critical Fortinet FortiWeb flaw allowing…
Windows 10 KB5062554 update breaks emoji panel search feature
The search feature for the Windows 10 emoji panel is broken after installing the KB5062554 cumulative update released Tuesday, making it not possible to look up…
Wing FTP Server flaw actively exploited shortly after technical details were made public
Wing FTP Server flaw actively exploited shortly after technical details were made public Pierluigi Paganini July 13, 2025 Hackers exploit critical Wing FTP flaw (CVE-2025-47812)…
Google Gemini flaw hijacks email summaries for phishing
Google Gemini for Workspace can be exploited to generate email summaries that appear legitimate but include malicious instructions or warnings that direct users to phishing…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 53
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Datacarry Ransomware DRAT V2: Updated DRAT…
Security Affairs newsletter Round 532 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email…
Fortinet FortiWeb Fabric Connector Flaw Enables Remote Code Execution
Security researchers have identified a severe pre-authentication SQL injection vulnerability in Fortinet’s FortiWeb Fabric Connector, designated as CVE-2025-25257, that allows unauthenticated attackers to execute unauthorized…
Week in review: Microsoft fixes wormable RCE bug on Windows, check for CitrixBleed 2 exploitation
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft fixes critical wormable Windows flaw (CVE-2025-47981)For July 2025 Patch…