**Research by: Alexey Bukhteyev** XLoader is a widely observed malicious loader with information-stealing capabilities. It first surfaced in 2020 as a rebrand of the FormBook code base, a well-known and capable information stealer, and has since undergone substantial hardening and feature growth. In addition to the Windows variant, its developers […]

## The Target: Brother MFC-J1010DW – Affected Models: `Brother Printer MFC-J1010DW` – Vulnerable Firmware: `Version <= 1.18` ## TL;DR: The Vulnerability Chain We discovered three vulnerabilities that when chained together, allow for complete remote compromise: – **Authentication Bypass via SNMP**- Retrieve the printer’s serial number without authentication, allowing attackers to […]

Check Point Research (CPR) identified three security vulnerabilities in the _Graphics Device Interface (_ `GDI`) in Windows. We promptly reported these issues to Microsoft, and they were addressed in the _Patch Tuesday_ updates in May, July, and August 2025. These are the vulnerabilities: Vulnerability disclosures such as these highlight the need for proactive […]

# Creating a “Two-Face” Rust binary on Linux In this article we will describe a technique to easily create a “Two-Face” Rust binary on Linux: an executable file that runs a harmless program most of the time, but will run a different, hidden code if deployed on a specific target […]

This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data. You can email the site owner […]

This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data. You can email the site owner […]

This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data. You can email the site owner […]

**security-research** Public – ### Uh oh! There was an error while loading. Please reload this page. – 499 # Python – Zip64 Locator Offset Vulnerability ## Package ## Affected versions ## Patched versions ## Description ### Summary It is possible to craft a zip file that, when parsed by Python’s […]

# Paint it blue: Attacking the bluetooth stack Bluetooth has always been an attractive target to attackers since it is present almost everywhere (TV, automotive charger, connected fridge, etc.). This is especially true on mobile devices, as it runs as a privileged process with a potential access to microphone, address […]

# Windows ARM64 Internals: Exception & Privilege Model, Virtual Memory Management, and Windows under Virtualization Host Extensions (VHE) ## Introduction About 5 years ago I put out a blog post about 64-bit “memory paging” on a standard Intel x64-based Windows machine when I was first starting to learn about Windows […]