Chrome CSS Zero-Day (CVE-2026-2441)

Google has patched a CVSS 8.8 high-severity use-after-free bug in Chrome’s CSS engine that is being exploited in the wild. This also affects all Chrome-based browsers such as Brave, Edge and Opera.

https://forum.hashpwn.net/post/10273

#google #chrome #brave #edge #opera #browser #cybersecurity #css #zeroday #cve20262441 #news #hashpwn

Another successful MetaMask crypto wallet recovered. This one was on the Zen browser, so was a first for me.

https://forum.hashpwn.net/post/10221

#metamask #crypto #wallet #recovery #zen #browser #firefox #hashpwn

For those who lost their Dogecoins due to the defunct Dough Wallet iPhone app, here's a tool to recover your Dogecoin address and private keys.

https://forum.hashpwn.net/post/10034

#doughwallet #recoverytool #crypto #hashpwn

Windows Notepad RCE - CVE-2026-20841

A crafted Markdown link could trigger command execution via protocol handler abuse on Windows 11 Notepad.

https://forum.hashpwn.net/post/10031

#notepad #rce #cve202620841 #cybersecurity #news #hashpwn

Ivanti has disclosed two critical zero-day vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM) which allow RCE, tracked as CVE-2026-1281 and CVE-2026-1340. Both flaws are unauthenticated code injection issues that allow remote attackers to achieve arbitrary code execution on affected EPMM appliances. Active exploitation has been confirmed.

https://forum.hashpwn.net/post/9428

#cybersecurity #zeroday #rce #news #ivanti #cve #epmm #hashpwn

New version of hashgen released.

v1.2.2

- added mode: halfmd5 -m 5100
- added mode: morsedecode

https://forum.hashpwn.net/post/89

#hashgen #md5 #halfmd5 #hashcat #morsecode #morsedecode #hashcracking #hashpwn

Atomic Wallet users recently noticed their Monero (XMR) balances missing or displaying incorrectly. Atomic Wallet says this is a Monero sync and display issue, not lost funds, and that all XMR remains safe on-chain while a fix is being worked on.

Given Atomic Wallet’s past security incident in 2023, caution is understandable. No theft has been reported, but users are encouraged to verify independently and never share private keys or seed phrases.

https://forum.hashpwn.net/post/8866

#atomic #wallet #crypto #monero #xmr #hashpwn #news #cybersecurity

Happy New Year!

Hashpwn wrapped up our first full year in 2025 and had a lot of fun along the way.

A big thank you to everyone who has been part of the community, and to our staff who helped turn an idea into a reality.

Here's to 2026!

https://forum.hashpwn.net/post/8234

#hashpwn #hashcracking #forum

hashpwn-2025 wordlist is available for download and now includes all founds submitted to forum.hashpwn.net from Oct 2024 - Dec 2025.

https://forum.hashpwn.net/post/237

#hashpwn #wordlist #dictionary #hashcracking

The hashpwn 12 Days of Christmas Challenge Walkthrough and Submission Results have been posted!

Walkthrough:
https://forum.hashpwn.net/post/8042

Challenge Submission Results:
https://forum.hashpwn.net/post/8043

Also, Grand Prize winner #_cin posted a summary of his experience:
https://forum.hashpwn.net/post/8041

#hashpwn #christmas #challenge #puzzle #results #walkthrough