Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.12.14.md

Zero Click, One NTLM: Microsoft Security Patch Bypass (CVE-2025-50154) - https://cymulate.com/blog/zero-click-one-ntlm-microsoft-security-patch-bypass-cve-2025-50154/

The Pool Party You Will Never Forget: New Process Injection Techniques Using Windows Thread Pools - https://www.safebreach.com/blog/process-injection-using-windows-thread-pools/

OmniProx: Multi-Cloud IP Rotation Made Simple - https://blog.zsec.uk/omniprox/

When Defenders Become the Attackers: The Elastic EDR 0-Day (RCE + DoS) - https://ashes-cybersecurity.com/0-day-research/

From Support Ticket to Zero Day - https://horizon3.ai/attack-research/attack-blogs/from-support-ticket-to-zero-day/

#informatyka