NEW: The U.S. govt accused Peter Williams, ex general manager of hacking tool maker L3Harris Trenchant, of stealing trade secrets and selling them to buyer in Russia.

As we reported earlier this week, Trenchant was investigating a leak of internal tools this year. At this point, it's unclear if that investigation is related to the accusations against Williams.

https://techcrunch.com/2025/10/23/u-s-government-accuses-former-l3harris-cyber-boss-of-stealing-trade-secrets/

Privescing a Laptop with BitLocker + PIN https://www.errno.fr/Bitlocker_TPM_and_PIN_privesc

@lcamtuf IIRC naming them was part of the exercise back in my day similarly to physics where you are usually given some "real world" scenario just to draw dots and arrows in the end as you "translated" the problem.

@lcamtuf maybe it was a mistake to use the greek alphabet

Project: microsoft/typescript-go https://github.com/microsoft/typescript-go
File: testdata/baselines/reference/submodule/compiler/enumLiteralsSubtypeReduction.js:3088 https://github.com/microsoft/typescript-go/blob/cab7a0bf793f3ba0e83619798f2eb191673fe4c7/testdata/baselines/reference/submodule/compiler/enumLiteralsSubtypeReduction.js#L3088

function run(a)

SVG:
dark https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Fmicrosoft%2Ftypescript-go%2Fblob%2Fcab7a0bf793f3ba0e83619798f2eb191673fe4c7%2Ftestdata%2Fbaselines%2Freference%2Fsubmodule%2Fcompiler%2FenumLiteralsSubtypeReduction.js%23L3088&colors=dark
light https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Fmicrosoft%2Ftypescript-go%2Fblob%2Fcab7a0bf793f3ba0e83619798f2eb191673fe4c7%2Ftestdata%2Fbaselines%2Freference%2Fsubmodule%2Fcompiler%2FenumLiteralsSubtypeReduction.js%23L3088&colors=light

Today is the annual memorial day of the 1956 Hungarian revolution.

Today I learned that Victor Ambrus (Ambrus Győző), the artist who worked on Time Team, was one of the freedom fighters in Budapest in '56. He was a 3rd year art student at the time. He had to flee the country after the Soviets crushed the revolution.

#history #art #Hungary #archaeology

F5 recently fixed a TCP hijacking vuln due to bad ISN generation. Now we have DNS cache poisoning in BIND due to predictable query IDs.

Yeah baby the 1990s are back!

Can we get Whitesnake and Aerosmith videos too?

Due to travel complications and delayed flights, the live stream scheduled for 3PM Irish time has been cancelled. We apologize for the inconvenience.

If anyone has a mac capable of running OpenAI's ChatGPT Atlas "browser", and is willing to conduct a short experiment aimed at figuring out how to identify & block that thing, please let me know!

Update: I have some preliminary results, thanks! I'll conduct more research if/when there's version of Atlas I can run (likely in a Windows VM).

Check out our new blog post on a research-driven look at software-only DRM. Explore how the Qiling emulation framework can be used to analyze Widevine and how Differential Fault Analysis (DFA) and emulation aid de-obfuscation.
▶️ Read more: https://neodyme.io/en/blog/widevine_l3/

@miodvallat a linker is just a worse-documented compiler!

Cascading failures are fascinating :P

https://aws.amazon.com/message/101925/

The vuln is so old it is not even easy to find the reference!
OpenBSD fixed it by adopting a non-predictable PRNG, BIND dev refused to use the same approach cuz "DNSSEC fixes this"
10 years later Dan Kaminsky rediscovered it with a better way to exploit the weakness. Vendors adopted OpenBSD's algorithm
Here's the original security advisory
https://www.openbsd.org/advisories/sni_12_resolverid.txt

What year is this?!
I think I am taking crazy pills!
FWIW: The first ever vulnerability I reported to a vendor was a DNS cache poisoning attack against BIND due its use of predictable query IDs.
I reported it.... in 1996!

https://arstechnica.com/security/2025/10/bind-warns-of-bugs-that-could-bring-dns-cache-attack-back-from-the-dead/

@evacide

The replies to your posts since the AWS outage have been an amazing source of 'Signal has a flaw and therefore we should ignore the dozens of fundamental design flaws in {other thing} and use it instead' posts.

The mindset of 'X is not perfect, therefore we should use Y, which is strictly worse in almost every way but lacks this one problem of X' never ceases to amaze me.

Miss anything from Day 2 of #Pwn2Own Ireland 2025? Join @TheDustinChilds as he recaps what happened and covers some of the highlights of the event.
https://youtu.be/Xz7jjz6xIic

@remixtures

This follows the Silicon Valley model popularised by Facebook 20 years ago of opting people into consent for things op because they were in other people’s address books and those people consented to sharing personal information. It’s a shame it took regulators so long to stamp on that, it should have been the result of massive fines, possibly followed by fire.

RT @ednewtonrex
Wait… so users of OpenAI’s Atlas browser can opt-in the web pages they browse - *which belong to other people* - to AI training?

Cool cool

https://openai.com/index/introducing-chatgpt-atlas/

If you know who did this, or if you know how to set it back, the hotel kindly asks you to do so, respecting the fun achievement unlocked :)
https://infosec.exchange/@xme/115422139879568495

The new, slightly less patient, Daniel strikes.