Nightmare Eclipse has released a new exploit: RoguePlanet

It's reportedly not 100% reliable, but it worked on the first attempt for me.

https://starlabs.sg/blog/2026/06-old-wine-in-a-new-bottle-a-decade-old-lxd-group-root-re-armed/ reminds me of the time I pointed out that /usr/local/* was writable by the staff group on Debian. Privesc by design.

Wow. Over 200 CVEs from #Microsoft and another 123 from #Adobe. It's a record-setting Patch Tuesday, but fear not! @TheDustinChilds has broken the release down and provides the details. Check out the blog athttps://www.zerodayinitiative.com/blog/2026/6/9/the-june-2026-security-update-review

The “secret” phone museum in Stuttgart hiding inside an underground station had tons of stuff and working demos and wonderful volunteers.

Secret Panel HERE 👻 https://patreon.com/posts/54470189

RE: https://infosec.exchange/@reput_io/116720740952715024

We tell you what's demonstrably legitimate: CDNs, cloud ranges, gov registries, SaaS infra, so analysts can dismiss false positives in seconds instead of investigating them for minutes.

That's an interesting approach. #GAYINT tells you about them ( for free ) so you can block them. Different strokes, I guess.

#LiteLLM command injection vulnerability CVE-2026-42271 that could allow any authenticated user to run arbitrary commands on the host, has been added to the CISA KEV catalog:
👇
https://thehackernews.com/2026/06/litellm-flaw-cve-2026-42271-exploited.html

cryptographic proofs per football field

In Berlin and no plans on Thursday? Join us at the Mozilla office for a few talks.

https://www.meetup.com/de-de/berlin-mozilla-meetup/events/314623241/

Out of the 16 pending #curl CVEs:

13 are severity LOW
3 are severity MEDIUM
9 of them are libcurl only (not the tool)
3 are "C mistakes"
2 are younger than six months old
1 is older than 25 years

Dropping a 0day? Consider having it 0patched first.
https://0patch.com/blog/dropping-a-0day-consider-having-it-0patched-first

I've been running Follow the Crypto since 2024. Today I'm relaunching it as Tech Influence Watch, expanded to cover AI political spending alongside crypto. They’ve spent more than $400 million this election cycle, and now you can follow it in close to real time.

https://influence.citationneeded.news/

Here’s the full story behind the Tech Influence Watch launch, including what I found while building it and why it matters now: https://www.citationneeded.news/tech-influence-watch/

#crypto #cryptocurrency #AI #ArtificialIntelligence #USpol #USpolitics #CitationNeededNewsletter

> "For the 27 releases, we've started writing parts of the core operating system kernel in Swift."

Swift for the Kernel was an awesome project to work on this year! I'm very happy to have been able to make these first steps towards a truly memory-safe kernel possible :)

@flaki Back in My Day™, we used to call community datacenters a dorm.