RAPID7 — 2 Technical Articles

Sep 25, 2025 · Information Security

OnePlus SMS Leak Vulnerability (CVE‑2025‑10184) Exposed – What You Need to Know

RAPID7 revealed a critical CVE‑2025‑10184 flaw in OnePlus’s OxygenOS that lets any app silently read SMS/MMS without user consent, affecting versions 12‑15, and disclosed details after the vendor failed to respond, highlighting severe risks to account security and privacy.

Android SecurityCVE-2025-10184OnePlus

0 likes · 4 min read

OnePlus SMS Leak Vulnerability (CVE‑2025‑10184) Exposed – What You Need to Know

Open Source Linux

May 29, 2025 · Information Security

First CPU‑Level Ransomware Proof‑of‑Concept Revealed – Why It Matters

Rapid7’s Chrstiaan Beek has created the world’s first CPU‑level ransomware proof‑of‑concept, exploiting AMD Zen microcode vulnerabilities to hijack BIOS and encrypt drives, a technique that can bypass traditional detection and remain active even after OS reinstall, though he promises not to release it.

AMDCPU ransomwareRAPID7

0 likes · 3 min read

First CPU‑Level Ransomware Proof‑of‑Concept Revealed – Why It Matters