March 30, 2026
March 30, 2026
Excerpt from an unpublished article. https://t.co/hCeqz7YHlV pic.twitter.com/4mLAOSO2Ev
— thaddeus e. grugq (@thegrugq) March 29, 2026
He said in this video that finding 0-days with Claude wasn’t possible 3–4 months ago but at @0dinai we were already doing it back in Feb/March 2025.
— MarcoFigueroa (@MarcoFigueroa) March 28, 2026
We called the technique “OH LAWWWD.” We talked about it multiple times on podcasts and even demoed it live at @ekoparty last… https://t.co/JZChgVfzaW
Chinese 🇨🇳 APT group Red Menshen plants kernel-level BPFdoor backdoors in global telecom networks, creating "sleeper cells" for long-term espionage. New variants hide in HTTPS traffic and monitor 4G/5G signaling protocols.
— DFIR Radar (@DFIR_Radar) March 26, 2026
Key findings:
• BPFdoor evolved from magic packet… pic.twitter.com/ViJ07AVMq5
The defender gets to shape the battlefield, and that is the lever they have to pull. https://t.co/DqtgvDhHnR
— Halvar Flake (@halvarflake) March 28, 2026
This is a cool hack.
— MG (@_MG_) March 28, 2026
I had a misbehaving atomic clock. Was it broken or was it unable to catch the 60khz signal over the air?
I was about to start disassembling and getting out my radio gear. But then I found the “Clock Wave” app. It plays a signal over the speakers of a… pic.twitter.com/fU1TetIxBB
Same trick works to unlock shopping cart wheels
— Lozaning (@lozaning) March 29, 2026
This is BlackBerry level commentary on the launch of the iPhone https://t.co/DvugTdbjST
— Aristonkle (@ParanoidPol) March 28, 2026
Coming up next on MSNBC, retired general responsible for our embarrassing lack of preparedness will analyze the reasons for our embarrassing lack of preparedness https://t.co/kTF4fJusum
— OSINT Gorilla (@GorillaOSINT) March 28, 2026
We don't know exactly how Handala got into Kash Patel's accounts. But from responding to MOIS-linked intrusions: it's rarely a zero-day.
— Omri Segev Moyal (@GelosSnake) March 28, 2026
It's credential dumps. Stealer logs. Data sitting in the open for years.
Let me show you what we found. 🧵
Related:
A Russian blogger exposed the location of an air defense unit in Crimea. A GEOINT case and search algorithm - Molfar
I assess with medium confidence this is a North Korean state actor looking for Russian officers with large crypto holdings from shaking down ransomware cyber criminals. https://t.co/BK9C0CUacA
— thaddeus e. grugq (@thegrugq) March 30, 2026
This is the problem with all the AI “security researchers”, they get “tricked” by Claude that something is valid, and then don’t report it because they know it’s bs. Because the real goal is clout on Twitter not security research. https://t.co/m9cOjjCYYK
— Katie Paxton-Fear (@InsiderPhD) March 29, 2026
Meanwhile, with Russia blocking social networks left and right, people have started chatting in Google Sheets. pic.twitter.com/iGjAUz0JD1
— WarTranslated (@wartranslated) March 29, 2026
Prime Minister Anutin Charnvirakul on Saturday urges every household to save fuel.
— Khaosod English (@KhaosodEnglish) March 28, 2026
“If each household cuts just 1 litre per day, Thailand could save 10 million litres daily,” says Anutin.
“The government confirms that if we return to the level of 67 million litres, we will be… pic.twitter.com/eWg0f7fTE5
This hack often occurs 1) if accountholder fails to protect account with two-factor authentication and their credentials get leaked thru an infostealer or 2) account is protected with 2FA but hackers succeed to get accountholder's phone SIM swapped to their own device so they… https://t.co/IBEgGgxRrk
— Kim Zetter (@KimZetter) March 30, 2026
asked Claude to validate some vulns in an OSS platform. It confirmed several N-days and marked them as unauthenticated. Which was weird.
— Federico Kirschbaum (@fede_k) March 29, 2026
Plot twist: it had quietly changed the admin password on the local Docker image to inflate the CVSS score. pic.twitter.com/Wg9WZWuPCv
Sun Tzu: you can’t just put the tip in. https://t.co/Dp9bJKZi6f
— Brent aka Blacklion (@BlacklionCTA) March 29, 2026
1/ The world is facing a 'ticking time bomb' from its supply of oil, according to a briefing note from JP Morgan. Physical scarcity of oil is about to unfold across the globe, spreading sequentially through April from east to west, causing major economic disruption worldwide. ⬇️ pic.twitter.com/RybZWuDkzy
— ChrisO_wiki (@ChrisO_wiki) March 29, 2026
This is an AI / LLM discovered Windows kernel driver vulnerability & exploit. My workflow for this is below (I'll stick any resources in the comments below):
— flux (@0xfluxsec) March 29, 2026
So, posting the (awesome) video yesterday of using LLMs to identify vulnerable code from repo's, I had a question in the… pic.twitter.com/HLgz1Ub1ns
US Military OSINT
— Bryson 🦄 (@brysonbort) March 29, 2026
🇺🇸 Pentagon: pizza delivery
🇺🇸 Ft Bragg: strippers https://t.co/EpHGE2DesC
https://justpaste.it/iw99v https://justpaste.it/lmbkf https://justpaste.it/mxfxz https://justpaste.it/il812 https://justpaste.it/dz1qv https://justpaste.it/hsq7e https://justpaste.it/abwwp https://justpaste.it/jnmqv https://justpaste.it/ie84p https://justpaste.it/dmy4j https://justpaste.it/huh1t https://justpaste.it/bz6nt https://justpaste.it/iipya https://justpaste.it/ilpg5 https://justpaste.it/u/gangexposed🚨 Handala Exposed: I have the names, connections, and photos of key participants.
— GangExposed RU (@GangExposed_RU) March 28, 2026
Following the recent hack of the FBI Director, I have identified 14 direct participants of the Handala group - including hackers, operators, and a coordinator-curator (in addition to Ali… https://t.co/ZilQdolAx8 pic.twitter.com/UxumtH574G
Another for the Sandia collection: The Perfect Heist Recipes from Around the World
— Casillic (@Casillic) March 29, 2026
A fascinating must study topic especially if you’re responsible for securing special nuclear material or weapons of mass destruction! https://t.co/pqo8ry2b44 pic.twitter.com/C21tZ0aqu4
If you have a spare 25 minutes I wholeheartedly recommend you watch Nicholas Carlini - Black-hat LLMs. Link in the comment below.
— flux (@0xfluxsec) March 28, 2026
Amazing talk on the way LLMs are making it easier to find critical software vulnerabilities - Anthropic's LLM discovered a non-trivial heap buffer… pic.twitter.com/QdapIFf7Pq
Technical details on exploiting Firefox 0day we found last year by AI-assisted fuzzing.
— Qrious Secure (@qriousec) March 28, 2026
by @lanleft_ https://t.co/m1XDbvUAIm https://t.co/4kuq4Wuaf1
CVE-2025-14325: SpiderMonkey Type Confusion in Baseline JIT Inline Cache
This image was created by Suto that captures the challenge of finding the right path. It is a process of constant testing, failing, and learning until we eventually find the way out Last year, we started looking at Firefox, focusing on its JavaScript engine, SpiderMonkey. During that work, we found several vulnerabilities, and reported them to the vendor. In this post we will share a journey of one of those findings.
I KNOW NOT WITH WHAT WEAPONS WORLD WAR III WILL BE FOUGHT, BUT WORLD WAR IV WILL BE FOUGHT WITH STICKS ON DRONES. https://t.co/kVkBcWdAzp
— INVESTMENT HULK (@INVESTMENTSHULK) March 28, 2026
it's bit more nuanced.
— s1r1us (mohan) (@S1r1u5_) March 29, 2026
1. llms can absolutely find nasty bugs in critical software, but it's not like proving a novel theorem, it's rinse and repeat of known vulnerability patterns across huge codebases.
3. we never had the human resources to clear up the debt. in general, a… pic.twitter.com/KKT8kVHLXj
I believe Mr. Moyal has successfully reconstructed how Handala compromised Kash Patel's personal Gmail.
— vx-underground (@vxunderground) March 28, 2026
Basically, Patel's personal email was in a database dump and he used the same password in multiple places. He also likely didn't have 2FA on because this is an old email… https://t.co/LiXqfwwJIP pic.twitter.com/xa18tsBHop
A patch with the logo of the Information & Intelligence Analysis (IIA) division of the #NSA, which was created as part of the internal reorganization of 2016.
— Electrospaces (@electrospaces) March 29, 2026
A reconstruction of the NSA's new organizational structure can be found here:https://t.co/eyoncJl12n pic.twitter.com/gaiCab1pDR
Electrospaces.net: The NSA's new organizational designators
A weblog about Signals Intelligence, Communications Security and top level telecommunications equipment
“You know you never beat us on the battlefield,” I told my North Vietnamese Army (NVA) counterpart, Colonel Tu, during a meeting in Hanoi a week before the fall of Saigon. “That may be so,” he replied, “but it is also irrelevant.”¹
— thaddeus e. grugq (@thegrugq) March 30, 2026
Seeing US analysts explaining that they’re…
Deliberate Distortions Still Obscure Understanding of the Vietnam War
Colonel Harry G. Summers Jr., the founding editor of Vietnam magazine, clears up some of the deliberate distortions that continue to obscure understanding of the Vietnam War
More details are now disclosed about the reported Telegram vuln on ZDI:
— Hamid Kashfi (@hkashfi) March 29, 2026
“allow an attacker to execute arbitrary code on Android and Linux application instances, via sending appropriately crafted media.”
…”Specifically, the vulnerability could allow arbitrary code execution…
Telegram: rilevata presunta vulnerabilità 0-Click - ACN
Sono state recentemente rilevate online notizie inerenti ad una presunta vulnerabilità 0‑click in Telegram, nota applicazione di messaggistica istantanea. Tale vulnerabilità potrebbe consentire a utente malintenzionato di eseguire codice arbitrario su istanze applicative Android e Linux, tramite l’invio di contenuti multimediali opportunamente predisposti.
Russian information operations propagate the claim that Baltic states are allowing their airspace to be used for attacks on Russia - which according to international law could mean they have become party to an armed conflict. This is propaganda. A Ukrainian drone crossed airspace… pic.twitter.com/uMFzrIf5eO
— Lukasz Olejnik (@lukOlejnik) March 29, 2026
Add a comment: