Peter Girnus
@gothburz
Followers
2K
Following
3K
Statuses
5K
Sr. Threat Researcher @theZDI π₯·π»π‘οΈπ¨πΌβπ»Hunts for 0-days & security threats in the wild π― creator & maintainer of @cybercronai π€π opinions my own π
Austin, Texas
Joined December 2017
We identified a new #ZeroDay vulnerability exploiting 7-Zip (CVE-2025-0411) being actively exploited in-the-wild on September 25th, 2024. Russian groups utilized this vulnerability, deploying SmokeLoader for espionage operations targeting #Ukraine during the ongoing Russo-Ukrainian War. #infosec #cybersecurity
6
143
587
CVE-2025-0108 - Wow just beautiful from @assetnote
Our security research team discovered an authentication bypass in Palo Alto's PAN-OS management interface. Our discoveries come shortly after exploit chains were released at the end of 2024 after a deeper investigation. You can read our research here:
1
0
9
The WP Foodbakery plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'upload_publisher_profile_image' function in versions up to, and including, 4.7.
π¨ CVE-2024-13011 β οΈπ΄ CRITICAL (9.8) π’ Chimpstudio - WP Foodbakery ποΈ * π π #CyberCron #VulnAlert
0
0
0
@United24media @SecDef Sovereignty should be guaranteed to countries without nuclear arsenals. Otherwise you send the message that only Nuclear weapons are a reliable deterrent. Russia has been bullying its neighbors for years and no one should enable this behaviour.
0
1
14
Deep Dive into Tenda W18E Firmware Vulnerabilities: CVEs, Exploits, and Security Gaps Uncovered by Independent Researcher Matthew Evans in Collaboration with Reddas Solutions.
0
0
0
A host header injection vulnerability exists in the NPM package of perfood/couch-auth <= 0.21.2. By sending a specially crafted host header in the email change confirmation request, it is possible to trigger a SSTI which can be leveraged to run limited commands or leak server-side information.
π¨ CVE-2024-57177 π΄ HIGH (7.3) π’ Unknown Vendor - Unknown Product ποΈ Unknown Version π π #CyberCron #VulnAlert
0
0
0
RT @cybercronai: π¨ CVE-2024-57177 π΄ HIGH (7.3) π’ Unknown Vendor - Unknown Product ποΈ Unknown Version π π https://t.β¦
0
1
0
Impact: A physical attack may disable USB Restricted Mode on a locked device. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.
π¨ CVE-2025-24200 π΄ HIGH (7.5) π’ Apple - iPadOS ποΈ unspecified π π #CyberCron #VulnAlert
0
0
0
Nice write up on these Tenda W18E Firmware Vulnerabilities
π¨ CVE-2024-46431 π΄ HIGH (8) π’ Unknown Vendor - Unknown Product ποΈ Unknown Version π #CyberCron #VulnAlert
0
1
1
CYFIRMA: APT43, a North Korean state-sponsored cyber operator linked to the Reconnaissance General Bureau (RGB), is known for its strategic intelligence gathering and financially motivated activities. @cyfirma
0
0
1
CVE-2025-22467, CVE-2024-38657, and CVE-2024-10644
Ivanti fixes three critical flaws in Connect Secure & Policy Secure - @billtoulas
0
0
0
Copy and pasting commands from threat actors β¦
DPRK hackers dupe targets into typing PowerShell commands as admin - @billtoulas
0
0
0
Unauthenticated File Upload in AWS S3 bucket Leading to Information leak,Stored XSS and Denial Of Service. in wandb/openui
π¨ CVE-2024-10649 π MEDIUM (6.1) π’ wandb - wandb/openui ποΈ unspecified π #CyberCron #VulnAlert
0
0
0
Arizona laptop farmer pleads guilty for funneling $17M to Kim Jong Un ... It ain't much, and it's dishonest work. #infosec via @theregister
0
0
1
In September of last year, Wiz Research uncovered a critical security vulnerability, tracked as CVE-2024-0132, in the widely used NVIDIA Container Toolkit, which provides containerized AI applications with access to GPU resources. The vulnerability enables attackers who control a container image executed by the vulnerable toolkit to escape from the containerβs isolation and gain full access to the underlying host, posing a serious risk to sensitive data and infrastructure.Β
0
0
1