January 24, 2024
January 24, 2024 Concrete example of the difference between theory and practice in systems engineering:When we were designing the storage system at @Dropbox...
January 27, 2025
January 27, 2025 I need to confirm, but I think there’s another strategy to exploit a file UAF. You have to do what’s shown here https://t.co/8vEoH5gh9F but...
Quick Update on the Newsletter Issues
Hi, Thank you to everyone who flagged the recent issues with the newsletter. It’s good to know people are reading and care enough to let me know when things...
January 23, 2024
January 23, 2024 The third article (62 pages) of the Exploiting Reversing Series (ERS) is available on:https://t.co/UuOt1aLcNXI would like to thank Ilfak...
January 22, 2025
January 22, 2025 A bug in Cloudflare (and just the nature of how CDNs work) let an attacker learn the broad location of Discord, Signal, Twitter users by...
January 21, 2024
January 21, 2024 🚨Just in, I can't believe it! UK just released Kim Philby’s interrogation docs! Philby, a top British intelligence officer turned Soviet...
January 20, 2025
January 20, 2025 Weekend (2025) papers:QMSan: Efficiently Detecting Uninitialized Memory Errors During Fuzzinghttps://t.co/riwZuOMqFiInvivo Fuzzing by...
January 19, 2025
January 19, 2025 TikTok thoughts The second order effects of banning TikTok will be very interesting.Personally, I think people are missing the real threat...
January 18, 2025
January 18, 2025 Chinese hackers broke into 400 Treasury department computers Treasury hacked by exploiting trust relationship with BeyondTrust. lol...
January 17, 2025
January 17, 2025 Today brings us the Biden administrations last Executive Order on cyber. It contains some improvements to policy surrounding emerging...
January 16, 2025
January 16, 2025 #DOOM is now playable in a PDF file 🎮 pic.twitter.com/gzOxuheAId— Culture Crave 🍿 (@CultureCrave) January 15, 2025 Made by Github user...
January 15, 2024
January 15, 2024 Wild that the Senate Armed Services Committee, in its questions to Pete Hegseth, asked him whether Salt Typhoon was an act of war:...
January 14, 2025
January 14, 2025 Already 1.7 million views and 19k likes in 19 hours... And of course the mentioned .exe is not seems malware at all.🤷♂️...
January 13, 2025
January 13, 2025 Academic work on honeypots and deception are often kinda disappointing, but this paper by @debi_ashenden and Reeves is worth the skim...
January 12, 2025
January 12, 2025 Ships Must Practice Celestial Navigation An interesting point here, actually. The Navy conducts live-fire weapons drills, damage control...
January 11, 2025
January 11, 2025 [POC2024]An insider perspective on the offensive industryhttps://t.co/RYKwC1MAkp@qwertyoruiopz— xvonfers (@xvonfers) January 10, 2025 Just...
January 9-10, 2025
January 9-10, 2025 From https://t.co/XFEpKzhGim pic.twitter.com/b6HXJIy5FL— Alberto Acerbi (@acerbialberto) January 9, 2025...
January 8, 2025
January 8, 2025 Hundreds of police license plate cameras are misconfigured to stream to the open internetA privacy researcher took these streams and turned...
January 7, 2024
January 7, 2024 AWS introduced same RCE vulnerability three times in four years https://t.co/Ooljsa6Nji— /r/netsec (@_r_netsec) January 4, 2025 How to become...
January 6, 2025
January 6, 2025 https://archive.ph/2025.01.05-232824/https://www.wsj.com/tech/cybersecurity/typhoon-china-hackers-military-weapons-97d4ef95?st=4zK2ke Ollie...