At REcon this year, I noticed that quite a few talks and workshops had signs of AI-generated content. It was especially concerning that some of the workshops with signs of AI-generated content did not seem to have been fully tested or rehearsed by the instructors, especially around the specific portions of the material that were AI-generated.

To be clear, I am not talking about fully hallucinated content - these were still instructors with a track record and with qualifications to deliver the content. And with workshops at conferences, you always get a mixed bag and sometimes unprepared instructors. But it felt to me like some experienced, qualified, and skilled instructors were much looser than they would normally would have been, trusted the AI more than they should have, and thereby caused the quality of the material to slip.

I killed time on my flight by playing "Hold 'Em Poker ©2008 Global Eagle" on the in-flight entertainment system. They start you with ¤5,000 in chips.

Eventually I figured out that I could set the tournament mode to increase the blinds (eventually adding antes) every 60 seconds, and then just raise aggressively and steal the pot ~90% of hands without having to show my hole cards.

Oddly, the AI players are much more prone to bluffing at lower stakes, so this game actually gets easier as it progresses.

I had about ¤15M when the system shut down.

Uploaded the slides of my talk "Ticket Please" in EuskalHack (it was a 101) https://github.com/X-C3LL/congresos-slides/blob/master/Ticket%20Please-EuskalHack2026.pdf

Yesterday was the 38th anniversary of the AS/400, the ancestor of the modern IBM Power servers and IBM i operating system.
#IBMi #rpgpgm #IBMChampion
https://www.rpgpgm.com/2026/06/another-anniversary-for-ibm-i-and-ibm.html

Has anyone asked for the Trump phone's GPLed source code yet

After Six Years Of Work and Over 360 Patches, Linux 7.2 Finally Removes Bug-Prone strncpy https://linux.slashdot.org/story/26/06/21/1810200/after-six-years-of-work-and-over-360-patches-linux-72-finally-removes-bug-prone-strncpy?utm_source=rss1.0mainlinkanon

Happy Father’s Day to the dads and father figures who taught us to look closer before giving up.

To save the tiny screws. To check the cable first. To believe a broken thing is usually just a problem waiting to be understood.

Thanks for the patience, the hand-me-down tools, and the quiet confidence that comes from figuring things out together.

HyperDbg v0.20 is out! 🎉

This release includes numerous bug fixes, continued progress on the Linux port, further advancements in Intel PT support, and a migration to Visual Studio 2026.

Check it out:
https://github.com/HyperDbg/HyperDbg/releases/tag/v0.20-beta

The System/38 fully powered up yesterday. Without fanfare, without smoke, without sparks. This is huge.

Doesn’t boot, but doesn’t do so for reasons that are known and understood and repairable. More after the next work day!

Bobby Prince has died.

He was the musical face of the DOS era, with iconic compositions for games such as the Commander Keen series, the Doom series, and Duke Nukem 3D. While he hadn't been very active in the past 25 years, many people remember his music, and some levels of Doom I and II still instantly evoke the distinctive AdLib sound of his tunes. A great loss!

https://www.timeextension.com/news/2026/06/a-loss-to-the-world-legendary-doom-and-wolfenstein-3d-composer-bobby-prince-has-passed-away

#BobbyPrince #apogeesoftware #DosGames #doom #doom2 #duke3d #commanderkeen

Ah . . . ! What's happening? it thought.
Er, excuse me, who am I?
Hello?
Why am I here? What's my purpose in life?
What do I mean by who am I?

#HitchhikersGuide #DouglasAdams #quotes #quote #bot

In 2020, OpenSSL had a vulnerability in handling the signature_algorithms_cert extension. https://openssl-library.org/news/secadv/20200421.txt

Palo Alto apparently "solved" this in their IPS by blocking connections with "unknown" algs in signature_algorithms_cert.

Six years later, we can't add ML-DSA to signature_algorithms_cert in Go. signature_algorithms_cert is dead.

Sigh.

Thanks to @cks for diagnosing this. Sometimes it takes us months to figure out things like this.

https://github.com/golang/go/issues/79626#issuecomment-4754225610

"There are colors that I want to show you, but I can’t. They exist in the real world. You probably saw some of them today, but I can’t show them to you on a screen. A digital photograph can’t capture them, and your screen can’t display them. No game you’ve ever played has contained them. Unless you have specialized equipment, they are entirely absent from the digital world.

Most of them are cyans."

https://moultano.wordpress.com/2026/06/19/where-to-find-the-colors-your-screen-cant-show-you/

Obscure Element: Reverse engineering Xiaomi's MJA1 secure chip.

Mengsi Wu's journey starts here:

https://blog.quarkslab.com/black-box-probing-a-security-analysis-of-xiaomis-mja1-secure-chip.html

The fact that we're willing to rely on LLMs to generate code knowing that it only mostly works because that code has been generated before thousands of times is not an indication that stochastic models are good, it's a massive, punishing indictment of computing as a field.

Using an insanely huge expensive model to quasi-reproduce work that's been created thousands of times already isn't productive or efficient. It's a symptom of profound failures of language, practice, process and imagination.

Today Oura announced the Ring 5, a nearly $500 wearable which locks you into a monthly subscription fee to even really use the data generated about your own health. Or, you could use Cracked Oura, which someone made to bypass the need for a monthly sub https://www.404media.co/cracked-oura-can-you-use-oura-without-monthly-subscription/

Google has tracked TeamPCP to one individual in South Africa

PAN believes the main TeamPCP hacker uses the name ResoluteXBF in some underground communities

https://cyberscoop.com/teampcp-breaks-open-source-software-trust-model/