Archive (Page 2) • the grugq's newsletter

November 25, 2025

November 25, 2025 A ton of great info here about what Apple does for their secure boot chain: “A Reverse Engineer’s Anatomy of the macOS Boot Chain &...

November 24, 2025

November 24, 2025 🚀 open-sourced santamon — a lightweight macOS detection sidecar that reads Santa's ES telemetry, runs CEL detection rules locally, and only...

November 23, 2025

November 23, 2025 CVE-2025-49752 is a critical authentication bypass vulnerability in Azure Bastion that could allow remote privilege escalation, directly...

November 22, 2025

November 22, 2025 Random Friday news: CrowdStrike says it caught an insider sharing screenshots with ShinyHunters and fired them last month. Allegedly,...

November 21, 2025

November 21, 2025 Today I sent the first daily digest of https://t.co/Rat6IbxJtD :) I hyperfocused for a few days and got it 80% working. I feel like one of...

November 20, 2025

November 20, 2025 https://risky.biz/BTN145/ The https://t.co/OpFfwtJCLm post by @xoreipeip shows how prepared statements can be exploited in NodeJS using...

November 19, 2025

November 19, 2025 This new 0day found by Google Big Sleep if not via fuzzing harness but purely by reasoning would be super cool! Coincidence with the Gemini...

November 18, 2025

November 18, 2025 The @ThinkstCanary ThinkstScapes Q3 report is out. A great quarterly overview of interesting research shared in the security community. It...

November 17, 2025

November 17, 2025 https://djnn.sh/posts/anthropic-s-paper-smells-like-bullshit/ Some in cybersec were debating how much VPNs protect your privacy while on...

November 16, 2025

November 16, 2025 #SpyNews - week 46 (November 9-15):A summary of 66 espionage-related stories from week 46 coming from...

November 15, 2025

November 15, 2025 On Monday, I’ll present a case that goes beyond the Anthropic espionage report, which in my view is far from comprehensive, showcasing one...

November 14, 2025

November 14, 2025 WSJ just dropped another strong investigation on how China is exploiting loopholes in U.S. export controls. To summarize what is happening...

November 13, 2025

November 13, 2025 A repo is for learning various heap exploitation techniques by @shellphishhttps://t.co/MDbkqR41jq pic.twitter.com/IhGrIoeIEQ— Alex Plaskett...

November 12, 20255

November 12, 2025

November 12, 20255 It’s been a year since I wrote this guide for @gijn on security best practices for investigative journalists, all of which is still very...

November 11, 2025

November 11, 2025 Kimi K2 thinking is truly impressive for an oss model, with it's assistant we developed fully firefox rce given 0x41414141 primitive in...

November 10, 2025

November 10, 2025 ...and check out this bonkers pipeline of upcoming vulns from Google Project Zero's transparency report! Perhaps the DNG fun is just...

November 9, 2025

November 9, 2025 Our assembly lessons are trending on @github !We have nearly 10k stars. https://t.co/fZyFRyTKWP pic.twitter.com/qZ7JpxsBZe— FFmpeg (@FFmpeg)...

November 8, 2025

November 8, 2025 What felony piracy taught me about B2C sales https://prison.josh.mn/lessons https://fly.io/blog/everyone-write-an-agent/...

November 7, 2025

November 7, 2025 #Django: Critical SQL Injection Vulnerability in Django (CVE-2025-64459):https://t.co/aYK8gTJVXY— Sam Stepanyan (@securestep9) November 6,...

November 5, 2025

November 5, 2025 Read our latest crazy story on the spy who was so successful at pretending he's someone else that the GRU "killed off" his real persona and...