zCat's avatar
zCat
npub1zm7j...pnd6
zCat - Android App about Zcash, privacy and cybersecurity news aggregator
zCat's avatar
zCat 2 months ago
Is this the last free speech platform?
zCat's avatar
zCat 4 months ago
BTW, fuck Google, fuck Android *sigh* image
zCat's avatar
zCat 4 months ago
#Zcash #Privacy #Freedom
zCat's avatar
zCat 9 months ago
The new version of zCat, an Android data aggregator for #Zcash , privacy & security news was released! Please update your app to v0.1.8! Available in multiple languages: EN🇺🇸, BR🇧🇷, CS🇨🇿, DE🇩🇪, ES🇪🇸, FR🇫🇷, IN🇮🇩, PL🇵🇱, RU🇷🇺, TH🇹🇭 & TR🇹🇷 What is new? Integration of the ZKRadio. It is test implementation, it may be changed in the next version image Added ZcashEsp RSS feed as a News source. If you are aware of any other Zcash related RSS feeds, please let me know. image Added new localisations: Indonesian 🇮🇩 and Polish 🇵🇱 languages are brought back after being paused, and there is added a new language - Thai 🇹🇭language image The 'official announcement' can be found on Free2Z
Free2Z - zCat
zCat - The newest version v0.1.8 was released
Stay updated on Zcash news with zCat v0.1.8! Features ZK Radio, ZcashESP feed, and new languages Indonesian, Polish, and Thai.
 Enjoy and have a great weekend.
zCat's avatar
zCat 10 months ago
Hacker steals record $1.46 billion from Bybit ETH cold wallet Cryptocurrency exchange Bybit revealed today that an unknown attacker stole over $1.46 billion worth of cryptocurrency from one of its ETH cold wallets. "The incident occurred when our ETH multisig cold wallet executed a transfer to our warm wallet. Unfortunately, this transaction was manipulated through a sophisticated attack that masked the signing interface, displaying the correct address while altering the underlying smart contract logic," Bybit explained. See more:
BleepingComputer
Hacker steals record $1.46 billion from Bybit ETH cold wallet
Cryptocurrency exchange Bybit revealed today that an unknown attacker stole over $1.46 billion worth of cryptocurrency from one of its ETH cold wal...
 #security #hack #crypto
zCat's avatar
zCat 10 months ago
Vulnerabilities in MongoDB Library Allow RCE on Node[.]js Servers Two critical-severity vulnerabilities in the Mongoose Object Data Modeling (ODM) library for MongoDB could have allowed attackers to achieve remote code execution (RCE) on Node[.]js application server. The first of the critical-severity flaws in the library, tracked as CVE-2024-53900, could allow an attacker to exploit the $where value to potentially achieve RCE on Node.js. The second issue, tracked as CVE-2025-23061, is a bypass for CVE-2024-53900’s patch. See more:
SecurityWeek
Vulnerabilities in MongoDB Library Allow RCE on Node.js Servers
OPSWAT details two critical vulnerabilities in the Mongoose ODM library for MongoDB leading to remote code execution on the Node.js server.
 #security #nodejs #rce
zCat's avatar
zCat 10 months ago
The newest version of zCat, an Android data aggregator for #Zcash, privacy & security news was released! Please update your app to v0.1.6! Available in multiple languages: EN 🇺🇸, BR 🇧🇷, CS 🇨🇿, DE 🇩🇪, ES 🇪🇸, FR 🇫🇷 & RU 🇷🇺 https://play.google.com/store/apps/details?id=crypto.crab.app.zcat It is only small patch release with smaller changes and bug fixes (and more languages). More info in the post on Free2Z:
Free2Z - zCat
zCat - The newest version v0.1.6 was released
Stay updated on Zcash, privacy & cybersecurity news with zCat's latest Android app version 0.1.6, featuring bug fixes, language additions & more.
zCat's avatar
zCat 10 months ago
New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now "Successful MitM exploitation could permit malicious actors to compromise and hijack SSH sessions, and gain unauthorized access to sensitive data." "DoS attack can result in availability issues, preventing administrators from managing servers and locking legitimate users out, effectively crippling routine operations." See more:
The Hacker News
New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now
Two OpenSSH vulnerabilities (CVE-2025-26465, CVE-2025-26466) allow MitM and DoS attacks.
 #security #ssh #mitm
zCat's avatar
zCat 10 months ago
Phishing attack hides JavaScript using invisible Unicode trick: A new JavaScript obfuscation method utilizing invisible Unicode characters to represent binary values is being actively abused in phishing attacks targeting affiliates of an American political action committee (PAC). See more:
BleepingComputer
Phishing attack hides JavaScript using invisible Unicode trick
A new JavaScript obfuscation method utilizing invisible Unicode characters to represent binary values is being actively abused in phishing attacks ...
 #security #phishing
zCat's avatar
zCat 10 months ago
Hackers Exploit Signal's Linked Devices Feature to Hijack Accounts via Malicious QR Codes "In the attacks spotted by the Google Threat Intelligence Group, the threat actors, including one it's tracking as UNC5792, have resorted to malicious QR codes that, when scanned, will link a victim's account to an actor-controlled Signal instance. As a result, future messages get delivered synchronously to both the victim and the threat actor in real-time, thereby granting threat actors a persistent way to eavesdrop on the victim's conversations. Google said UAC-0195 partially overlaps with a hacking group known as UAC-0195." See more:
The Hacker News
Hackers Exploit Signal's Linked Devices Feature to Hijack Accounts via Malicious QR Codes
Russian threat actors exploit Signal’s linked devices feature using malicious QR codes to gain persistent access to victims' accounts, Google warns.
 #security #privacy #signal