Excited to be attending @reconmtl in Montreal 🇨🇦 this week— the world’s largest known reverse engineering conference! Looking forward to the training and a fantastic lineup of talks and events. If you’re attending as well, let’s meetup and connect! #reCON

Recon badge has arrived!!! Thanks to electronic cats electroniccats.com/

Epic OPSEC fail by NSO Group. @whatsapp recently caught the notorious spyware company hacking across their platform. (NSO is forbidden from doing this by a US court!) In their testing, NSO was sending a test image of a soup cup...on a desktop mat with the NSO Group logo. Making it worse, the image was user-reported to WhatsApp. Cleanest attribution I've seen in a long time.

I have added another 250,000 malwares to the malware collection. Please download the malware here: vx-underground.org Thank you.

🎂 IDA Turns 35. From DOS-era disassembler to one of the most widely used reverse engineering platforms in the world... To celebrate, we’re launching: • 35% off new licenses (see eligibility requirements) • Limited-edition swag giveaway • “35 Ways to Use IDA” as told by you • Stories from the past and a few for the future Read all about it here: hex-rays.com/blog/ida-turns-…

We're finally ready to talk about Flipper One — a project we've been grinding on for years and have rebuilt from scratch several times. Read blog post >> blog.flipper.net/flipper-one…

.@__sethJenkins updated our 0-click exploit chain to work on a Pixel 10 with an eye-popping driver bug! We’ll be presenting this work Saturday @offensive_con projectzero.google/2026/05/p…

We obtained root privilege on the S26 (Exynos 2600 Chipset), the latest flagship smartphone from Samsung. To our knowledge, this is the first root exploit for Exynos S26 since Samsung removed bootloader unlocking option in One UI 8. It is exploitable from APP context, so we make a cmd wrapper app for demo👇(1/n)

Reverse-engineering the 1998 Ultima Online demo server ift.tt/mFfaB2X

With the low barrier to entry for vulnerability research due to AI, that used to require advanced and niche skills, I'm seeing that exploit mitigation bypasses are still difficult for AI. Weaponizing vulnerabilities still requires advanced knowledge. Disclosure != Skill...

Opening up LightSaber iOS 18.0-18.3 beta testing to anyone who wants to help out. Meet BrokenBlade. Automatically collects logs (anon, open src) to help debug. Have already made some progress with private testers, now opening up bc more logs the merrier. zeroxjf.github.io/BrokenBlad…

May the fourth be with you

In case you were curious, copy.fail doesn't generally affect @Android devices, as Pixel devices (with GKI kernels) don't have CONFIG_CRYPTO_USER_API_AEAD compiled in, and it'd be unusual for OEMs to include that interface to apps / usermode. Citations via @claudeai

Hello JEB friends, why haven’t you published themes you use in JEB, not cool 😆! Maybe you are using the default themes, but worry not, I have published 22 themes for your viewing pleasure: github.com/FuzzySecurity/JEB…

Back in the 90s and early 2000s, Tamagotchis had crazy lore. Most were completely false (but some were true!) These rumors ranged from saying that they were aliens escaping a drunk planet to being able to unlock Bill Clinton on a Tamagotchi. This rumor is actually...completely true! If you followed very specific steps (including initial neglect and then suddenly perfect care) on the standard English Generation 1 (P1) Tamagotchi, your pet would eventually evolve into Bill Clinton and live a very long time. The most popular rumor when I was growing up was that repeatedly feeding your pet would eventually make them explode. Of course, I tried my hardest to prove this right, but no, this one turned out to be completely false.

Reminder: Don't solely use AI for your research. Especially if you do big mistakes by not verifying .... I really like the "disable AES key fuse read-lock" idea .... looking forward to how this would work in reality ... cypherbyte.io/blog/mediatek-…

[3/4] To counter this, we're open-sourcing Malfixer, presented today at @Botconf 2026. Built over 2 years, it detects and surgically repairs all three malformation categories, rebuilding clean APKs ready for standard pipelines, without altering the payload.

My Qualcomm drivers research is still in its beginning/not published yet. But I posted my setup in case anyone is interested: pwner.gg/blog/2026-04-03-and…

⚠️ cifrat - a new mobile remote acess trojan found‼️ The malware spreads by impersonating Booking and then... A vast technical analysis prepared by CERT Polska available here: 🔗 cert.pl/en/posts/2026/04/cif…

My analysis on the Android version of The White House app: thereallo.dev/blog/decompili…