Posts
2529
Following
647
Followers
1459
"I'm interested in all kinds of astronomy."
repeated

Hi all! Firefox Attack & Defense is now on Mozilla's Mastodon Instance. Follow us for news about our bug bounty program: How to find bugs and participate more effectively.
We won't post a lot, but we promise a high signal-to-noise ratio.

0
0
0
repeated

netcat, 1995

0
0
0
repeated

Kindergarten children dropped seeds in the crack of the sidewalk to see what would happen 🤗 https://streetartutopia.com/2023/04/15/kindergarten-children-dropped-seeds-in-the-crack-of-the-sidewalk-to-see-what-would-happen/

Nature is everything 🌱

1
6
0
repeated

DOJ actually detected the SolarWinds hack in its network back in May 2020 and Microsoft, Mandiant, SolarWinds all looked at it at the time, but didn't grasp what they were seeing. Six months later Mandiant publicly exposed the campaign. @kimzetter back in WIRED! https://www.wired.com/story/solarwinds-hack-public-disclosure/

1
9
0
repeated
Edited 2 years ago

Here, I made you a Slack emoji for when you're talking about GenAI

10
15
0
repeated

back in January of 2016, we started getting reports on WordPress.com that people were publishing blog posts and the letter F was going missing. they initially thought it was a typo, but when they'd edit the post, the words would be spelled right in the post editor. but on the live site? no Fs

sounds like user error, right? but the reports kept coming in. and it wasn't just missing, sometimes it was switched, like the word "first" would become "ifrst". if you know anything about fonts maybe you can guess what was up...

0
0
0
repeated

Why do people remove it? Because NVD has exaggerated a curl security flaw to an inflated level, and now "security scanners" insist that the bundled curl executable has a "high severity" security flaw and scaremongers people into removing it.

And then they realize Windows update refuses to work.

Are we sure this is the best we can do?

3
7
0
repeated

A darknet market vendor was let go after a raid in his house while he was logged into Tor and into a marketplace, cause the police ejected the USB that was running the OS and the whole drive was wiped off :))

11
11
0
repeated
repeated
repeated

Want to get into reversing or learn new advanced topics? Here are my favorite tutorials, talks, blog posts and podcasts!
https://youtu.be/6N0mk9s0ylU

0
0
0
repeated

I finished reading World Wide Waste by Gerry McGovern. I'd consider it essential reading for anyone working with computers!

https://gerrymcgovern.com/books/world-wide-waste/

It's well cited (though I still need to check those citations) & uses maths effectively to make it's point.

That computers + (surveillance) capitalism is actually worse for the environment than the predigital era. That we can and must move slow and fix things, and fund that vital work directly.

0
0
0
repeated

Don't get me wrong, computers can absolutely help us regain our environmental efficiency. They just *aren't*.

Not as long as we're:
* constantly syncing everything to the cloud,
* expecting same-hour delivery,
* funding our clickbait via surveillance advertising,
* buying a new phone every year,
* using AIs because they're cool rather than useful,
* running bloated software & webpages,
* buying into "big data"
* etc

Computing is environmentally cheap, but it rapidly adds up!

0
0
0
repeated

Somewhere, someone finally made this and I think it's beautiful

https://www.thingiverse.com/thing:4687836

9
15
0
repeated

New: Online alcohol recovery startups Monument and Tempest have confirmed they were sharing the personal information and health data of their patients, without their consent, with advertising giants for *years*.

More: https://techcrunch.com/2023/04/04/monument-tempest-alcohol-data-breach/

5
7
0
repeated

The Reversing Shorts video you've been waiting for: How to actually reverse engineer shorts? 🩳🧵🪡

Follow along this sewing tutorial and get to know how to copy your favorite clothes! @sewing

https://youtu.be/cZcAvohw2z4

0
0
0
repeated

DISCLAIMER: me and the ‘nso.group’ domain are not affiliated with NSO Group, and the domain is just a meme domain I owned for 5+ years

0
0
0
repeated

'Encouraging creative theft'.
Would this work in USAnian cities? Certainly in some neighborhoods.
Photo text excerpt from 's autobiography, Travels In Dreams.

1
11
0
repeated

While the continue, we would like to remind everyone of two very convincing facts for the pro side:

✅ 1. Encryption can't be outlawed

✅ 2. Backdoors for the good guys only are impossible

Read our position on the ongoing crypto wars: https://tutanota.com/crypto-wars/

0
9
0
repeated
"Exploiting aCropalypse: Recovering Truncated PNGs"

My writeup on exploiting CVE-2023-21036 (un-cropping Android screenshots!)

https://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html
1
18
0
Show older