LINDENSEC

Starting a career in cybersecurity isn't always straightforward. Sometimes it takes luck, but mostly it's about demonstrating what you can do and refusing to give up when doors seem closed. Oh, and taking notes. Seriously, take notes. I'll explain why I learned this the hard way. The Gaming Gateway My journey didn't begin in a classroom or with a computer science degree. It started in Azeroth, the virtual world of World of Warcraft. While others saw just a game, I saw a compl

Summary Microsoft has released an urgent out-of-band security update to address CVE-2025-59287 (after a previous update in Patch Tuesday that didn't quite hit the nail on the head), a critical remote code execution vulnerability in Windows Server Update Services (WSUS) that is being actively exploited in the wild. This vulnerability allows unauthenticated attackers to execute arbitrary code with SYSTEM privileges by exploiting unsafe deserialization in WSUS's cookie handling

A short CTF styled KQL challenge! Can you find out what happened?

A free PDF Editor turning itself into an infostealer overnight. Let's hunt it down with KQL!

These e-mails pretend to be from your CEO, have your first name as the subject, and contain absolutely no links, no files, just text.

ClickFix was bad enough; it became the second most common attack vector right after phishing. ClickFix tricked users with a deceptive webpage (often disguised as a CAPTCHA) that prompted them to copy and paste a string, open the Run dialog with WIN+R, and boom! Hidden in front of what looked like a harmless path was a whole PowerShell payload. This led to a surge in infostealers, cryptominers, and RATs. It was only a matter of time before similar techniques popped up. Inspire