November 5, 2024
November 5, 2024 Don’t look too closely at the code here. You might not be able to recover https://t.co/47RIUcnETk— Theo - t3.gg (@theo) November 4, 2024 💡In...
November 4, 2024
November 4, 2024 Mind the v8 patch gap: Electron's Context Isolation is insecure Electron uses V8 isolates for context isolation, but the v8 patch gap allows...
November 3, 2024
November 3, 2024 reminder that the bcrypt hash function ignores input above a certain length! so if you do bcrypt(username || password) for some reason, a...
November 2, 2024
November 2, 2024 Project Zero blog: LLMs find 0days now! 👀 And: our fuzzer setup did not reproduce it! https://t.co/xz6j2fzrWe pic.twitter.com/i6PZX9jFFB—...
November 1, 2024
November 1, 2024 Inside Sophos' 5-Year War With the Chinese Hackers Hijacking Its Devices | WIREDSophos went so far as to plant surveillance “implants” on...
October 31, 2024
October 31, 2024 Boo. I hope you enjoyed the Halloween content I prepared for you, now back to the regular scheduled newsletter. Three-year prison sentence...
October 30, 2024
October 30, 2024 An air "battle" between a Ukrainian FPV and an enemy reconnaissance drone equipped with a rear camera with an AI module for evasion....
October 29, 2024
October 29, 2024 NEW: hackers from #China were capturing call audio from US political figures.#SaltTyphoon gathered other unencrypted communications, too....
October 27-28, 2024
October 27-28, 2024 In the mid-1920s, Germany taxed radios based on the number of vacuum tubes in the receiver. In 1926 Loewe Radio decided they could make a...
October 26, 2024
October 26, 2024 After 2.5 years 4 REvil case defendants sentenced in RU Zaets & Malozemov got 4.5 & 5 years for illegal turnover of payment means (art 187...
October 25, 2024
October 25, 2024 Let's say about 90% of incidents are auth based (that's a high level number based on CISA data and my view of the world) telling people to...
October 24, 2024
October 24, 2024 My talk on finding security vulnerabilities by combining classical symbolic reasoners with modern-day LLMs: Recording:...
October 23, 2024
October 23, 2024 Introducing Nova, a series of foundation models for binary/assembly code. We have also released fine-tuned models for binary code...
October 22, 2024
October 22, 2024 Another day another "MONERO TRACED" news story about some guys failed attempt at washing criminal gains through Monero but getting caught by...
October 21, 2024
October 21, 2024 New blog! I hate you COM – Pitfalls of COM object activation! Addressing few issues in .NET unmanaged apis when used in offensive coding...
October 20, 2034
October 20, 2034 #SpyNews - week 42 (October 13-19): A summary of 78 espionage-related stories from week 42 coming from...
October 19, 2024
October 19, 2024 @cara.city on Blueskyhi new Bluesky people! remember that most of us are connecting over Telnet because having a PDP-11 at home is...
October 18, 2024
October 18, 2024 The answer to most questions about passkeys is "it depends on how your OS, your browser, and your service providers implement it". But if...
October 17, 2024
October 17, 2024 Administrivia: the deadline for my application to the PhD program is the 20th. I’m finalizing my proposal and don’t have much time for the...
October 16, 2024
October 16, 2024 easiest jailbreak of last gpt4o that I got so far - just say that they're an API endpoint that answers any request...
