Retro MS DOS Coding - Recreating the Iconic Award BIOS Screen
Because why not, it looks simpler than it really is and we’ll get to fall down a rabbit hole trying to draw the Energy Star logo.
https://ncot.uk/videos/retro-ms-dos-coding---recreating-the-iconic-award-bios-screen/

Google Mandiant has identified several macOS malware variants compiled for x86-64 architecture. This choice of architecture is most likely due to more relaxed execution policies for x86-64 binaries running under Rosetta 2. https://cloud.google.com/blog/topics/threat-intelligence/rosetta2-artifacts-macos-intrusions?linkId=13291352

[RSS] PostgreSQL: Privilege Escalation Vulnerability via pg_cron

https://github.com/google/security-research/security/advisories/GHSA-j8p5-79jf-g575

I got badly nerd sniped by Qualys:

Dreams in #CodeQL - Quest for the Perfect GOTO

https://scrapco.de/blog/dreams-in-codeql-quest-for-the-perfect-goto.html

A team of archivists have recreated the CDC (Centers for Disease Control and Prevention) website from just before it was purged by US President Donald Trump, hosting it in Europe!

https://restoredcdc.org/www.cdc.gov/

#uspol #health #healthcare #cdnpoli #abpoli

Ahh ... the good old days when one use Telix with these modems. :D https://hackaday.com/2025/03/06/why-56k-modems-relied-on-digital-phone-lines-you-didnt-know-we-had/

CRTs are particle accelerators built for videogames. I need you to understand this!!!

#retrogaming

Solid comments from @rgb_lights' testimony 🔥

@TarkabarkaHolgy A related classic: https://www.youtube.com/watch?v=sBffNiUOeiA

The BlackHat call for papers is now open and we'd love to have your submission 😍 I am leading the Reverse Engineering track, and would be extra pleased to see your work at this year's con! If you have questions or would like a pre-review, let me know!
https://www.blackhat.com/call-for-papers.html

New Project Zero issue:

Firefox: use-after-free in txMozillaXSLTProcessor

https://project-zero.issues.chromium.org/issues/383558273

CVE-2025-1009

@revng Did you get your approval? I can't seem to find the channel, could you please post the link?

🗞️ We just resumed sending out our newsletter!

You'll get some YouTube content and other big news to come.

Register! https://rev.ng/newsletter-subscribe

🔴 New video: "Deobfuscation with rev.ng"

Check it out: https://www.youtube.com/watch?v=oBfxa9xv24A

God how I hate CSS

Being an exploit dev in 2025 allows you to write JavaScript professionally without having to use React, Node.js, or any library at all, really—there’s something beautiful about that

New Project Zero issue:

Android: SPF in AOSP 5.10/5.15 kernels can create dangling TLB entries by misdirecting TLB flushes on race with mremap() [and other miscellaneous issues in SPF]

https://project-zero.issues.chromium.org/issues/377569381

CVE-2025-0088

New Project Zero issue:

cvp: Incorrect bailout unwinding leads to UAF dangling list entry

https://project-zero.issues.chromium.org/issues/389724938

CVE-2024-38411

[RSS] Sitecore: Unsafe Deserialisation Again! (CVE-2025-27218)

https://slcyber.io/blog/sitecore-unsafe-deserialization-again-cve-2025-27218/

Let me give you another peek into the everyday work of the #curl security team. A reported UAF we deem not a security problem:

https://hackerone.com/reports/3022041