https://osspledge.com/

Two rules (from @getsentry who started this):

1. Give money to the open source projects which are probably 90% of your code base. $2000 per developer on your staff, although you can and should do better than that. (@buttondown are doing better than that.)
2. Report every year on whether and how you did it.

This seems like a good idea today, and a thing where non-participation should feel weird tomorrow.

PoC Exploit Released for Windows Hyper-V Zero-Day Vulnerability CVE-2024-38080 https://securityonline.info/poc-exploit-released-for-windows-hyper-v-zero-day-vulnerability-cve-2024-38080/

Personal update: if you need a guy who is passionate on innovative in-the-wild zero-day exploit detection and advanced vulnerability research, please let me know. DM open. :)

Australia's biggest radiology clinic I-MED has handed over private medical scans from potentially 100,000s of Australians to buzzy tech startup Harrison. ai to train their AI — and patients had no idea.

Neither company responded to questions about it.

https://www.crikey.com.au/2024/09/19/patient-scan-data-train-artificial-intelligence-consent/

The z/OS C/C++ runtime library
https://github.com/ibmruntimes/zoslib/tree/zopen2 #s390x #zOS

Well, it's about f@#king time.
https://www.authorsalliance.org/2024/09/17/antitrust-lawsuit-filed-against-large-academic-publishers/
The situation with #academic publishers has been a growing issue for years now, and it's good to see some action taken about it. But this should have come long ago from national regulators, not some UCLA professor. Petition your national #antitrust agency to join or replicate locally.
#AcademicChatter

Shameful how some people objectify Palo Alto Networks.

So Cards Against Humanity just sued M*sk for ruining a piece of land they bought in Texas for their customers...

#2024bingocard

https://www.elonowesyou100dollars.com/

How it started, how it's going

A Journey From `sudo iptables` To Local Privilege Escalation - Shielder https://www.shielder.com/blog/2024/09/a-journey-from-sudo-iptables-to-local-privilege-escalation/

📢 We’re now releasing weekly mass testing results 📢

https://mass.rev.ng

Here you can find a weekly report on using revng to decompile tons of binaries.

There’s information about crashes, timeouts and nice graphs.

Our goal is to now bring them all down week-by-week 🦾

Been doing a fun new reverse engineering project: Figuring out the file formats of the 1999 Windows/PS1 game Attack of the Saucerman. It's the first time I'm doing this on a 3D game. I'm now at a point where I can partially display the levels, and extract most of the assets:
https://github.com/lethal-guitar/SaucerMapViewer

I already made an attempt many many years ago, but was only armed with a hex editor at the time and couldn't make any sense of the data. (cont.)