[RSS] Buy A Help Desk, Bundle A Remote Access Solution? (SolarWinds Web Help Desk Pre-Auth RCE Chain

https://labs.watchtowr.com/buy-a-help-desk-bundle-a-remote-access-solution-solarwinds-web-help-desk-pre-auth-rce-chain-s/

[RSS] Intego X9: Why your macOS antivirus should not trust PIDs

http://blog.quarkslab.com/intego_lpe_macos_2.html

Updated breach: Attackers have released another 1M records from Dutch telco Odido, adding 371k more unique email addresses to the breach. The data is consistent with the first dump, with further releases threatened. More: https://haveibeenpwned.com/Breach/Odido

My final blog related to admin protection is up. https://projectzero.google/2026/02/gphfh-deep-dive.html I go into a bit of history of the interesting GetProcessHandleFromHwnd API, how it ended up allow you to bypass protected process restrictions and how it's now "fixed".

Former General Manager [L3Harris Trenchant] Sentenced to 87 Months for Selling Stolen [0day] to Russian Broker

https://www.justice.gov/opa/pr/former-general-manager-us-defense-contractor-sentenced-87-months-selling-stolen-trade

PSA: The Amazon wishlist doxing threat is much greater and more immediate than folks might realize. Attack works like this:

Stalker who wants your address opens an Amazon seller account and lists themselves as a third party seller for any item on your public wishlist. Then, they order the item from themselves as a gift for you. Bam, they have your address.

In particular, attack does not depend on an existing third party seller having poor PII handling hygiene, like the articles have implied.

@freddy I wouldn't mind getting notified that I need a restart and loosing data *when I finally decide I'm ready*, but in the current situation the browser just stops working during active use because an update executed in the background.

[RSS] Filesystem 101

https://u1f383.github.io/linux/2026/02/26/filesystem-101.html

#Linux

Today, let’s remember Charles Thacker, who was born on this day in 1943. Thacker received the #ACMTuringAward in 2009 for the pioneering design and realization of the first modern personal computer -- the Alto at Xerox PARC -- and seminal inventions and contributions to local area networks (including the Ethernet), multiprocessor workstations, snooping cache coherence protocols, and tablet personal computers.

Read more about him, here: https://amturing.acm.org/award_winners/thacker_1336106.cfm #OTD

@freddy I browse in private mode for various reasons (not all security/privacy related) so it doesn't work (as it shouldn't).

Now I would link that thread where there are users with this very same problem but y'know, I just had to restart my browser so I don't have the link anymore :)

Now I get that my setup is still counts as strange but this behavior *guarantees* regular users run away screaming regardless if they can restore or not.

You know what, I'm kind of OK with the #Firefox AI opt-whatever solution they have

...compared to the fact that they kill all my sessions by a forced fucking restart when I try to act responsibly and update.

That's fucking outrageous!

Wow, Blogspot seems to have a massive spam problem!

Log4j, *the* project that escalated the need for funding open source in the first place, is currently being DOS’d by slop vulnerability reports. Well done everyone. Slow fucking clap.

https://github.com/apache/logging-log4j2/discussions/4052

@codecolorist Many thanks!

@fridadotre Thank you for the additional info! I already opened #1096 and #1097 in frida-gum, hope they will be useful!

Right now I'm trying to fingerprint the runtime based on JS behavior (e.g. `console.log(gc.toString())`) but neither gadget configs nor `frida --runtime` seem to have any effect.

Update: It seems in V8 `gc.toString()` doesn't have newlines

#curl is secured for the billions - the steps we take. There is no silver bullet. No magic solution. Just plain engineering and doing everything as good as we can and to keep tightening every bolt there is.

(slide for upcoming presentation)

What Windows Server 2025 Quietly Did to Your NTLM Relay https://decoder.cloud/2026/02/25/what-windows-server-2025-quietly-did-to-your-ntlm-relay/

LOGOS/ASTLOGO.GIF

@algernon

> both double as AI scrapers too

Yes that's definitely a problem, but that can be decided on a case-by-case basis (again, nuance).

> traditional search is dead

In my dreams a service with pagerank+full-text indexing+user-defined ranking would be incredibly useful. I have to deal with so much new shit every day that a personal index wouldn't even be remotely useful.

You may be right about GH, but in this case the means matter more than the ends. "A systems purpose is what it does", and it'd be painful to see anti-scaping work *for* LLMs (I'm still not sure if this is happening or not).

@algernon I get that there's a lot of nuance here, that's why I asked for "consideration" that can include e.g. allowing standard crawlers.

Apparently building an index is much bigger effort than I expected (based on the struggles of EU and alternative providers), so I don't think that will happen in the near future.

LLM performance will degrade for sure, but I don't think it will restore trust in traditional search or otherwise move ppl away from assistants once they became dependent.

Btw. my post was less about your work, and more about e.g. GitHub where content is no longer properly searchable either via web search or their internal search :)