We're Hiring!
We are currently looking for a Penetration Tester
and a Senior Red Teamer. Check out our open positions
and reach out if you think you’d be a great fit.
Here:
modzero.com/en/jobs/
Helena Nikonole hat Kameras in Russland gehackt und Anti-Kriegsbotschaften verbreitet. Nun entwickelt die Künstlerin ein winziges Gerät, um ohne Internet Nachrichten zu verschicken. Mit kreativen und praktischen Lösungen will sich Nikonole einer zusammenbrechenden Welt entgegenstellen.
X basically industrialized the creation of fake porn of women who don't consent. Others did it first, but Grok made it normalized and centralized: publicly visible, instantly creatable by anyone, regardless of who's being targeted and dehumanized. Only question now is will X suffer any consequences
Sollen wir Büchertische zum Thema Fitness und Fasten machen oder gleich die Oster-Backbücher rausstellen?
No Leak, No Problem - Remember our PSA about updating your INSTAR cameras? Here’s the reason in detail, worked out and noted by our teammate Michael Imfeld:
modzero.com/en/blog/no-l...
Does anyone here have a working way to contact archive.org?
It's about a security issue...
catch a glimpse of us holding our annual “state of the zero” meetup - to wrap our heads around all of IT and us.
we also took a boat trip, ate too many sweets, touched some grass, saved the world, had a barbecue and a drink or two…💓
#modzero #infosec #itsecurity #captainitswednesday
quantität vs qualität. aber naja, was weiss ich schon.
PSA update your INSTAR cameras. Our teammate Michael Imfeld identified a critical RCE (CVE-2025-8760) on 2k+ and 4K devices. Find the advisory here:
modzero.com/en/advisorie...
This blog post contains the full technical walk-through and discovery of the vulnerability, its impact, and our experience during the responsible disclosure process with Synology.
Teammate Leonid discovered a leaked credential that allowed anyone unauthorized access to all Microsoft tenants of orgs that use Synology's "Active Backup for Microsoft 365" (ABM), including sensitive data like Teams channel messages. 🤓
#synology #disclosure #modzero
modzero.com/en/blog/when...
nooooooooooo... 💔
🧙
*rülps
nice!
"kick off" passt ganz gut. wenn auch noch ein wenig zu höflich
vielleicht mal ein argument für bildungsgeld, das auch neolibs verstehen?
ja!
Dive into the process of reverse engineering, gadget hunting, and crafting a working exploit.
Via Return-Oriented Programming chain small code snippets, or gadgets, already present in a program’s memory can be leveraged
By chaining these gadgets together, they can execute arbitrary code without injecting anything new
ROPing our way to “Yay, RCE” - and a lesson in the importance of a good nights sleep!
Follow our Colleague Michaels journey of developing an ARM ROP chain to exploit a buffer overflow in uc-http
modzero.com/en/blog/ropi...
🔔 Unser #kandidierendencheck ist online: 18 Thesen beantworten - und ihr erfahrt, welche Kandidierenden in eurem Wahlkreis so denken wie ihr. 👇
www.kandidierendencheck.de/bundestag
uuuuh, nice.
hier! *wink
kluk 😐
Seit heute ist der Real-O-Mat online. Das Tool vergleicht die eigene Position bei relevanten Fragen mit denen der Fraktionen im Bundestag. Grundlage dafür sind keine Wahlkampfversprechen, sondern das Abstimmungsverhalten.
netzpolitik.org/2025/real-o-...
"aus Verzweiflung rechtsradikal" wählen?
💓
ugh. 😷
