HackingPassion.com
👻 home posts ethical hacking course newsletter shop whoami github youtube
HackingPassion.com

Network-Security

12 posts

/openbsd-pap-empty-password-bypass/openbsd-pap-empty-password-bypass.png
OpenBSD Let Attackers Log In With an Empty Password for 27 Years

June 17, 2026

A 27-year-old flaw in OpenBSD let attackers bypass its PPP login with nothing more than an empty username and an empty password. Hand a vulnerable system a …

/honeypot-ethical-hacking/featured-image.png
Honeypots Set the Trap Watch the Attackers and Know When You Are Standing in One

May 28, 2026

Honeypots: Set the Trap, Watch the Attackers, and Know When You Are Standing in One Put a server on the internet with port 22 open and the first login attempt …

/botnets-tor-i2p-c2/featured-image.png
How Botnets Hide in Plain Sight: Tor, I2P, and the C2 Networks You Can't See

May 24, 2026

The command server is a botnet’s one real weak point. Take it down and the bots go quiet. Operators figured this out early and built their infrastructure …

/ntlm-finally-disabled/featured-image.png
Why It Took Microsoft 32 Years to Disable NTLM

February 4, 2026

32 years. That is how long it took Microsoft to disable NTLM, the protocol that handles Windows login authentication. A broken system linked to $10 billion in …

/ollama-175000-servers-exposed/featured-image.png
Ollama Security Failure Exposes 175,000 AI Servers to Attackers

January 30, 2026

175,000 AI servers wide open to the internet. 130 countries. Attackers are selling access to other people’s hardware at a 50% discount, and using it for …

/telnetd-root-exploit-cve-2026-24061/featured-image.png
CVE-2026-24061. One Command, Root Access: The 11-Year Telnet Bug

January 24, 2026

It’s 2026 and attackers are still getting root shells via Telnet with a single command that requires no password whatsoever. 😏 SSH has existed for 31 …

/kimwolf-botnet-android-tv-boxes-proxy-exploit/featured-image.jpg
Kimwolf Botnet: 2 Million Android TV Boxes Hacked via Proxy App Vulnerability

January 4, 2026

A botnet just fired 1.7 billion DDoS commands in 72 hours. Attack capacity: nearly 30 Terabits per second. 2 million Android TV boxes sitting in living rooms …

/rondodox-botnet-react2shell-exploit-shotgun/featured-image.jpg
RondoDox Botnet: 56 Exploits, Gaming Traffic Disguise, and Self-Defense Against Recovery

January 1, 2026

RondoDox added React2Shell to its arsenal. 90,000+ servers. 56 vulnerabilities. 30+ vendors. They call it the “exploit-shotgun” approach. Fire …

/fortinet-authentication-bypass-cve-2020-12812-cve-2025-59718/featured-image.jpg
Fortinet Authentication Bypass: A 5-Year-Old Bug Returns While a New One Gets Exploited in 3 Days

December 27, 2025

You buy a firewall to protect your network. In one month, two different authentication bypasses are being actively exploited. One is five years old. One is …

/smart-tv-spying-acr-tracking/featured-image.png
Your Smart TV is spying on you, and most people don't know. But YOU will!

November 15, 2025

Nearly every modern Smart TV has ACR technology. You’ve probably never heard of it. (Most people haven’t. Stick with me…) It’s there. …

/why-your-dns-settings-could-make-or-break-your-hacking-career/featured-image.png
Why Your Dns Settings Could Make or Break Your Hacking Career

October 22, 2023

Before we delve into this critical topic, let me emphasize the gravity of DNS settings in the realm of ethical hacking. Whether you’re a seasoned …

/ethical-hacking-techniques-with-ssh-secure-tunnels-and-data-transfers/featured-image.png
Ethical Hacking Techniques With SSH Secure Tunnels and Data Transfers

October 12, 2023

Ethical hacking techniques with SSH: Secure tunnels and data transfers Introduction Welcome to this comprehensive guide on Ethical hacking techniques with SSH: …