A Neat E-Paper Digit Clock (or Four)
[sprite_tm] had a problem. He needed a clock for the living room, but didn’t want to just buy something off the shelf. In his own words, “It’s an opportunity for …read more
#hacking #projects
https://hackaday.com/2025/05/02/a-neat-e-paper-digit-clock-or-four/
Open source runs on passion and a little help from you.
We're raising $400 to keep SecBSD project alive.
That covers 1 month of power, internet, and food for 2 devs.
If you believe in open source, please consider donating.
Paypal: project@secbsd.org
Bitcoin: bc1q08d6vh93h43m9gpleu8kn9l6kuk3jrnxwrth2x
Solana: 7W3LDYfz8xehd6jAnjVhTMXWPUyXeaFE9ukpYnMs2jXH
Ethereum: 0xAe621c93985e199e7FA3CEE6D4F8CC956D2c933
#OpenSource #Hacking #BSD #Security #RunBSD #Infosec #Cybersecurity #FreeSoftware #Community #OSINT
mixed vibes, optimistic overall
---
Do not take hacking for granted. It is not some magical market force that will inevitably step in to correct misdeeds. Many digital goods are now encryption-locked to specific hardware. That hardware can be emulated, and that encryption can be broken, but it takes a lot of time and teamwork. Hackers are not known for being good at teamwork.
Go thank your local hacker. Send them money if you can, but even if you can't, let them know you appreciate their hard work. They get hundreds of github issues and discord pings a day asking "can you get me free hax" or "pls update now!!!" and it's just really sad to see.
I think it would be really nice if they got more messages along the lines of "wow, you saved my childhood!" or "thanks so much for maintaining this, I use it all the time!"
Make sure they know you love them.
A Gentle Introduction to Impedance Matching
Impedance matching is one of the perpetual confusions for new electronics students, and for good reason: the idea that increasing the impedance of a circuit can lead to more power …read more
#hacking #projects
https://hackaday.com/2025/05/02/a-gentle-introduction-to-impedance-matching/
Rockstar reporte GTA VI à 2026 pour garantir la qualité du jeu - PressePlay https://t.co/GcbFKwlO1W #PréventionInternet #Hacking #Cybersecurité
— Prevention Internet ® (@prevention_web)
May 2, 2025
May 03, 2025 at 01:42AM
Prusa Mini Nozzle Cam on the Cheap
Let me throw in a curveball—watching your 3D print fail in real-time is so much more satisfying when you have a crisp, up-close view of the nozzle drama. That’s exactly …read more
#hacking #projects
https://hackaday.com/2025/05/02/prusa-mini-nozzle-cam-on-the-cheap/
How can malware run silently on a WordPress site without appearing in the plugin list? 🔍🛠️
Threat actors are increasingly exploiting WordPress's "mu-plugins" directory to hide persistent malware. These "must-use plugins" auto-load on every page request without needing activation and are not visible in the WordPress admin dashboard, making them convenient for attackers aiming to stay hidden.
Sucuri researchers reported several recent infections where obfuscated PHP scripts were planted in this directory. One example includes code that pulls remote payloads from a disguised text file (`index.txt`) using `eval()`, `file_get_contents()`, or cURL—functions commonly misused to run arbitrary PHP code fetched from external servers.
Three specific malware variants were uncovered:
- **redirect.php**: Redirects users to malicious sites while bypassing bots and logged-in admins. It impersonates WordPress functions to blend in, often as part of fake update schemes.
- **index.php**: A webshell that fetches and runs remote scripts dynamically, enabling attackers to control the site fully without modifying the file itself—ideal for maintaining long-term access.
- **custom-js-loader.php**: Injects JavaScript that replaces images with explicit content and hijacks outbound links with popup ads, targeting traffic manipulation and SEO spam.
These infections typically result from compromised admin accounts, vulnerable themes/plugins, or unsecured hosting environments. Once deployed, they allow attackers to steal data, inject spam, redirect users, or sustain remote access over time. Unusual behavior like unexpected traffic redirects, suspicious files in `mu-plugins`, or high server load without cause are key indicators.
The use of the mu-plugins directory showcases how attackers adapt to evade conventional security tools. Regular file integrity monitoring, strict access controls, and well-configured WAFs remain essential to counter these tactics.
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— ✨
🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴☠️
The move from our cozy old hackerspace to the new spot on Limanowskiego Street is still in full swing — and so is our fundraising campaign to cover the costs of the move and renovation.
Even though it’s all being done by dedicated volunteers, the bills keep piling up like a hungry monster.
If you want to support now’s a great time. Every bit helps! 🛠️💸💚
DATE: May 02, 2025 at 04:30PM
SOURCE: HEALTHCARE INFO SECURITY
Direct article link at end of text block below.
Lessons Learned from the #Blackbaud Hack and Legal Fallout https://t.co/u3cHdYVd7o
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
before heading out 2 the #2600 #meeting in #madrid worked on my #gemini #gemlog
& on the #http output https://rek2.hispagatos.org & gemini://rek2.hispagatos.org
still a lot of work to do also started something I been wanting to do for years
is attach a sub-blog only of #hacking and #CTF topics like #writeups and such I
created it under https://rek2.hispagatos.org/writeups/ & added 2 test writeups
I did last year of #hackthebox 200+ more 2 come & good
#hacking info & tricks <3
#HappyHacking #HackingIsNotACrime
DATE: May 02, 2025 at 04:17PM
SOURCE: HEALTHCARE INFO SECURITY
Direct article link at end of text block below.
#WhiteHouse Proposes $500 Million Cut to @CISAgov https://t.co/1KXTTLbZe3
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
Ireland's #DPC fined #TikTok €530M for sending EU user data to #China
https://securityaffairs.com/177349/laws-and-regulations/irelands-dpc-fined-tiktok-e530m-for-sending-eu-user-data-to-china.html
#securityaffairs #hacking
Smart Speaker Gets Brain Surgery, Line-Out
Sometimes you find a commercial product that is almost, but not exactly perfect for your needs. Your choices become: hack together a DIY replacement, or hack the commercial product to …read more
#hacking #projects
https://hackaday.com/2025/05/02/smart-speaker-gets-brain-surgery-line-out/
If you took over someone's company laptop... what would you do?
Browse through their files? Talk to their coworkers? Explore the network?
Play You Are Not Alice to find out — coming soon to Steam.
#gaming #gamedev #indiedev #indiegamedev #madewithunity #ai #aigamedev #hacking
3D Printed Spirograph Makes Art Out of Walnut
Who else remembers Spirograph? When making elaborate spiral doodles, did you ever wish for a much, much bigger version? [Fortress Fine Woodworks] had that thought, and “slapped a router onto …read more
#hacking #projects
https://hackaday.com/2025/05/02/3d-printed-spirograph-makes-art-out-of-walnut/
New Open-Source Tool Spotlight 🚨🚨🚨
WinPwn simplifies internal Windows penetration testing by automating reconnaissance and exploitation through PowerShell. Features include domain recon, privilege escalation, Kerberoasting, UAC bypasses, and proxy-aware scripting. Also works offline with `Offline_Winpwn.ps1`. #cybersecurity #pentesting
🔗 Project link on #GitHub 👉 https://github.com/S3cur3Th1sSh1t/WinPwn
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— ✨
🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴☠️
Blimey. Co-op downplayed publicly how bad the situation was, so the hackers went directly to the BBC and showed them evidence.
Cybersecurity study planner on Notion!
Keep track of tasks, deadlines, and study sessions in a stress-free setup.
Weekly planner, to-do lists, Pomodoro and more!
Perfect for students & pros.
https://airacademy.gumroad.com/l/puzuztk
#notion #cybersecurity #infosec #planner #hacking
Kraken déjoue un hacker nord-coréen se faisant passer pour un candidat à un emploi https://t.co/iJQ6m3SbLt #PréventionInternet #Hacking #Cybersecurité
— Prevention Internet ® (@prevention_web)
May 2, 2025
May 02, 2025 at 07:32PM
There's always drama with the Breached/BreachForums saga. Here's some of what has been going on in the past few weeks after BreachForums[.]st went offline without any explanation:
"SCAM" is a four-letter word: BreachForums edition: https://databreaches.net/2025/05/02/scam-is-a-four-letter-word-breachforums-edition/
#cybercrime #forum #hacking #Breached #BreachForums #scam #ShinyHunters #Anastasia #Momondo
