never bought a whoop because a subscription-locked fitness device sounds like a terrible idea, but this fucks https://github.com/OpenStrap/edge
Cursor will run anything called git.exe when you open it, but it isn't the only one. As a fork of VS Code, Cursor has inherited this behavior from its questionable parentage.
UPDATE: That's if you have Copilot Chat AI features enabled
https://discourse.ifin.network/t/remember-that-cursor-git-exe-bug-its-in-vscode-too/665
Regarding CVE-2026-56155, the in-the-wild ADFS vulnerability - the July patch just released does not fix the vulnerability.
Instead it adds an audit log. The changes to harden the service and enforce protection will only apply with October 2026’s update applied.
Internet Ethics Corner with Abadidea:
There is an important difference between lists of things you think are good and lists of things you think are bad. There is a PROFOUND difference when the list is of people or groups of people by name.
Putting specific real people on ideological sinner lists gets them and their families unemployed, homeless, assaulted and killed. This is not a joke. This is not an exaggeration. That is the function and purpose of a list of people you have decided are Bad.
You think you’re doing the right thing. But the right thing is to uplift what you think is good and admirable, not to paint a target on the backs of every random stranger who falls even an inch short of your personal definition of perfection. Those people aren’t you, they did not sign up for your ideological newsletter, and you are not their judge, jury and executioner.
The Nuremberg Trials are an appropriate use case for a list of bad people. Your ongoing social media argument is not.
#BOFH excuse #171:
NOTICE: alloc: /dev/null: filesystem full
New post: Windows Hello for Business – Full Report Has Been Released https://insinuator.net/2026/07/windows-hello-for-business-full-report-has-been-released/
finally: firefox in the web browser https://developer.puter.com/labs/firefox-wasm/
New blog post!
The title should be self-explanatory, it's an appreciation post for Nightmare Eclipse.
You might notice that the tone is a bit more emotional/angry than my usual style of writing.
This one's personal.
https://ti-kallisti.com/general/ms/nightmare-eclipse.html
#NightmareEclipse #Microsoft #Hackers #InfoSec #SecurityResearch #ChainsawMan #Reze
ASUS bsitf.sys (CVE-2026-13585): Arbitrary Physical Memory Mapping via Unvalidated IOCTL https://blog.ahmadz.ai/asus_bsitf_0_day_poc/
working on a theory that the headphone jack being removed from phones was the turning point towards the tech backlash
New #ToddlerDnD spell:
INTERVENTION
Casting time: 2 hours (5 if at night)
Range: Self
Duration: Varies
Verbal component: A parent uttering the words "date night tomorrow"
This spell generates an immediate mystery illness, non-threatening but enough for Toddler character to require a Long Rest at home. Effects last until the possibility of free time for date night has passed.
Maybe a bit of an explanation why it does this:
When a new user is logging on, Windows needs to load the users class hive. Since the user isn't logged on before logging on (tautology, I know), it can't be loaded in the context of the user. So it is loaded in the context of NT AUTHORITY\SYSTEM.
LegacyHive abuses this.
It messes with the Windows Object Manager and instead of the actual UsrClass.dat hive points at C:\randomGUID\UsrClass.dat. then it places an oplock on that file and starts an (interactive) logon for the user whose Object Manager path has been manipulated.
This leads Windows to try to open the file, but it can't, because of the Oplock. So the process looks at the Object Manager namespace again, finds a symlink (also manipulated by LegacyHive) and loads that instead, attaching it as the class hive for the user it is trying to create an interactive session for.
The load succeeds because, as I mentioned earlier, Windows falls back to NT AUTHORITY\SYSTEM when it doesn't have a user context yet.
Hope this makes at least some sense
V 0.5.2 is out! It's our biggest release yet.
1400+ items in the changelog: https://github.com/vlang/v/releases#release-0.5.2
New: the highly controversial AI music generator Suno was hacked. The hacker sent us Suno source code; it shows the company scraped YouTube Music, Deezer, and Genius. In all, Suno scraped *decades* worth of music from the internet. Obviously didn't pay artists https://www.404media.co/hack-reveals-suno-ai-music-generator-scraped-youtube-deezer-and-genius/