finally got around to writing up my windows exploit from pwn2own vancouver 2024! (plus some notes about using it on xbox) https://t.co/CUHJv2CS4Y

— emma (@carrot_c4k3) August 14, 2025

"It is evidently easier to invent a system of writing or learn to predict the eclipse of the sun than it is to invent the bow and arrow." pic.twitter.com/SpNlLhYrrp

— Cameron Harwick 👾🏛 (@C_Harwick) August 13, 2025

Introducing a new attack vector: AI-Induced Destruction.
After a shared volume of incident responses, we can confirm: AI coding assistants are now a legitimate threat category.

Not sci-fi. Not theoretical. Happening daily.

Thread (1/4) pic.twitter.com/E8EQ27uohj

— Omri Segev Moyal (@GelosSnake) August 13, 2025

Le sigh...

This isn't bypassing FIDO auth (it's called passkeys now btw). It's just asking the user to use a weaker method that they were allowed to use.

The solution is to randomize the password so nobody knows it, and if you can't, use auth strengths to prevent weaker methods https://t.co/Z88obCXDhn

— Nathan McNulty (@NathanMcNulty) August 14, 2025

pic.twitter.com/H5k3Vuwy7h

— AJ 🏀 (@CyberSecAJ) August 14, 2025

clever clever 🪆 https://t.co/sXpGDIhO9S pic.twitter.com/r8WiHTuv4O

— J⩜⃝mie Williams (@jamieantisocial) August 14, 2025