Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.01.16.md

Compromising OpenWrt Supply Chain via Truncated SHA-256 Collision and Command Injection - https://flatt.tech/research/posts/compromising-openwrt-supply-chain-sha256-collision/

Using YouTube to steal your files - https://lyra.horse/blog/2024/09/using-youtube-to-steal-your-files/

Tackling AI threats. Advanced DFIR methods and tools for deepfake detection - https://www.pentestpartners.com/security-blog/tackling-ai-threats-advanced-dfir-methods-and-tools-for-deepfake-detection/

Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409) - https://projectdiscovery.io/blog/ruby-saml-gitlab-auth-bypass

Chart Builder LFI - https://abrahack.com/posts/chart-builder-lfi/

#informatyka