When IMS Associates, Inc., couldn't get their hands on an Altair 8800, they decided to make their own! How's that possible? Key technology like the S-100 bus were easy to replicate, leading to a slew of clones, like the IMSAI 8080.
—
#iFixit #RightoRepair #FixTheWorld

Haven't seen a cypher injection for a while. This one is in Apache Camel-Neo4j.

https://camel.apache.org/security/CVE-2025-66169.html

"Bad software is one of the few things in the world you cannot solve with money. Billion dollar airlines have flight search apps that are often inferior to those built by groups of students. Established taxi companies the world over have terrible booking apps. And painful corporate IT systems are usually projects with massive budgets, built over the course of many years.

Whatever the cause of bad software is, it does not seem to be a lack of funding."

https://knowledge.csc.gov.sg/ethos-issue-21/how-to-build-good-software/

Beijing tells Chinese firms to stop using US and Israeli cybersecurity software, sources say

https://www.reuters.com/world/china/beijing-tells-chinese-firms-stop-using-us-israeli-cybersecurity-software-sources-2026-01-14/

We are at *twenty* hackerone submissions for #curl so far this year. Zero of them a confirmed vulnerability.

RE: https://mastodon.social/@hennavirkkunen/115888721732640894

I’ve been informed this is an official account and that makes it good news!

Hello #FediHire, I am a laid off malware analyst still looking for work. It's hard out there. I can program in various languages (primarily C++, Python and Rust) and can study non-malware code with just as much ease as complex malware. Enterprise application ready!

Accolades here: https://www.linkedin.com/in/sean-m-taylor-security-engineer/
Code here: https://github.com/frank2

Any biters? Please let me know!

The stop using non-deterministic technologies to do tasks requiring deterministic outputs challenge.

Let’s try that.

Just saw this on a post on LinkedIn

https://creepylink.com/

It is a URL shortener that makes your links as suspicious as possible. Simply amazing

For example:

https://google.com/

got turned into:

https://capitalone.c1ic.link/Z8gfcH_claim_gift_card.pl

I'm pretty sure every healthcare organization I've ever received an SMS from is already using this technology

We are excited to announce the CFP for the next tmp.0ut Volume 5!

https://tmpout.sh/blog/vol5-cfp.html

If AI coding is so good, where are the performance numbers?

Claude bros know how to measure performance. They just don't.

https://www.youtube.com/watch?v=xeU208KqeRc&list=UU9rJrMVgcXTfa8xuMnbhAEA - video
https://pivottoai.libsyn.com/20260113-if-ai-coding-is-so-good-where-are-the-performance-numbers - podcast

time: 7 min 34 sec

https://pivot-to-ai.com/2026/01/13/if-ai-coding-is-so-good-where-are-the-performance-numbers/ - blog post

ALERT: ACS 1.1.9.11 has been released due to CVE-2025-66516. Please update ASAP!

"IBM strongly recommends upgrading to 1.1.9.11, and discontinuing use of versions 1.1.9.8 through 1.1.9.10."
"Fixes will only be provided for the latest update."

https://www.ibm.com/resources/mrs/assets?source=swg-ia

#IBMi #ACS #Security

Here's my analysis of the recent-ish 9.3 Critical in #Emby (CVE-2025-64113).

Sadly, the vulnerability turned out to be pretty boring, but I've tried to make the best of it.

https://gebir.ge/blog/its-not-mine-cve-2025-64113/

Does anyone happen to own an ATM that they’re willing to sell? Preferably NCR or Wincor/Diebold Nixdorf. I‘m based in Hamburg and the ATM is mainly intended for #40C3. Will also take only parts or broken or ancient ATMs as well. Very long shot but worth a try :)

#39C3

Signal Creator Marlinspike Wants To Do For AI What He Did For Messaging https://slashdot.org/story/26/01/13/1529250/signal-creator-marlinspike-wants-to-do-for-ai-what-he-did-for-messaging?utm_source=rss1.0mainlinkanon

https://github.com/kaansenol5/VibeOS