There have been great women in malware writing and the VX scene:

First and foremost: Gigabyte, she was a pioneer for many other women to get into VX. She was my best friend for many years, I owe so much of my VX years and introduction into cyber security because of her. She was always and inspiration and a huge reason why I encourage women to get into cyber. She went to jail for virus writing and never ratted any of us out. Also a very and capitol Fuck you Graham Cluely for being an asshole to a teenage girl and personally making sure she went to jail because you were offended by her viruses (she made fun of him after he said girls should not be writing viruses and should be doing girly things). She wrote a ton of HLL (high level language) viruses like Sharp, Parrot, Scrambler, And My favorite, Scooter (it was an inside joke for me and her). She recent got married and I wish her nothing but the best in life.

There was Nex: she was a virus author originally from Arizona who specialized in macro viruses, she wrote one of the first viruses to bypass office 97 SP1 which was made to protect against macro viruses. She got in a car accident and was hit by a police officer with no lights and no siren on and lost her ability to walk. After she sued the hell out of the police department she got out of VXing. She's currently living back in Arizona and no longer in the scene.

VxFaerie was another women in VX who was well respected. She wrote one of the first python infectors ever. She was very nice and was always kind to people in the scene.

And we have modern day women who are studying viruses and should be respected just as much as the old VXers like @nikaroxanne - she is doing legit work that would have made heralded in the scene.

Women in VX was always a thing, a few others I know never revealed they were women because of how they were feared they would be treated. If they are still around, I hope they see this and know their work was equal. Most of the VX scene never cared at all about this, we only cared that you put up or shut up. And put the fuck up they did. #respect

https://bird.makeup/@vxunderground/1902193800291709357

The lovely folk of @WEareTROOPERS are hosting @Blackhoodie_RE for another two days of training, brought to you by Cora, Anso and @Car0line_Le about malware, OSINT and reverse engineering 😊 Registration is now open https://blackhoodie.re/Troopers2025/

Building an electric vehicle simulator to research EVSEs: At #Pwn2Own Automotive, we built a custom device to let the EV chargers "charge". ZDI researcher Thanos Kaliyanakis explains how to put one together for your research. https://www.zerodayinitiative.com/blog/2025/3/14/building-an-electric-vehicle-simulator-to-research-evses

‘Guys, I’m under attack’ — AI ‘vibe coding’ in the wild

https://pivot-to-ai.com/2025/03/18/guys-im-under-attack-ai-vibe-coding-in-the-wild/ - text

https://www.youtube.com/watch?v=HBL_tD_x3OA - video, which came out very well

I really can't get over how irresponsible it is for MS to tell people to throw away or recycle perfectly working computers. There are so many machines people *could* keep using for much longer if not for Windows 11.
https://mastodon.social/@dosnostalgic/114184937238415364

The future of search isn’t Google — and it’s $10 a month
https://www.theverge.com/web/631636/kagi-review-best-search-engine?utm_source=flipboard&utm_medium=activitypub

Posted into Tech News @tech-news-theverge

Reviving a Maplin 4600 DIY Synthesizer From the 1970s

https://hackaday.com/2025/03/19/reviving-a-maplin-4600-diy-synthesizer-from-the-1970s/

🔎 The museum is seeking stories about Slovenians who cracked copy protections on cassette software in the 1980s 🎮💾 (games for Spectrum, Commodore, etc.). Share your experiences in the comments below! ⬇️😊

There are a lot of people who are wrong and have picked something other than Sneakers. I’m very disappointed in y’all

https://bird.makeup/@greynoiseio/1901649140158959889

WM_WHATSWRONGWITHYOU

#BlackHistory

Do not travel to the US. Under any circumstance. Think you're safe because your paperwork is in order? Fuck you, it does not matter.

https://www.theguardian.com/us-news/2025/mar/19/canadian-detained-us-immigration-jasmine-mooney

Has anyone actually confirmed real-world compromises from the supposed Apache Tomcat exploitation (CVE-2025-24813) going on? Breathless headlines seem to be quoting a single vague source, and this bug isn't exploitable in anywhere close to a default config https://attackerkb.com/assessments/1a24556d-24fb-4017-be67-e4ab39c76566

one thing I've learned about teaching over the years is that if I make a negative statement (like “git commits aren't stored as diffs"), it doesn't really work -- often people will just ignore it, especially if it contradicts their current mental model

so I always have to figure out how to make a positive statement, and make it in a way that will convince people whose mental model is different right now

convincing people to adjust their mental models is really hard!

Windows SMB client is basically quantum computing: sometimes it works, but if you look at it the wrong way it isn't.

Last year, I had a few weeks between jobs and decided to look at the infrastructure security of random Linux distributions with the good friends at Fenrisk.

We ended up getting code execution on the Fedora Git forge hosting all package sources and on the Open Build Service instance of openSUSE. Nothing technically fancy (the usual silly argument injection bugs), but we could have effectively backdoored all their packages :°)

We finally presented the details last week at @1ns0mn1h4ck: https://fenrisk.com/assets/media/Don't%20let%20Jia%20Tan%20have%20all%20the%20fun_%20hacking%20into%20Fedora%20and%20OpenSUSE.pdf.

Also now available on the blog:
- Our approach: https://fenrisk.com/supply-chain-attacks
- Pagure: https://fenrisk.com/pagure
- OBS: https://fenrisk.com/open-build-service

Big kudos to distro maintainers, this was one of the most efficient disclosures of my life!

(now let's do kernel.org?)

The EFF has shit the bed again. This is a stirring cry to encourage startups ... specifically, AI startups. This ain't it chief.

https://www.eff.org/deeplinks/2025/03/californias-ab-412-bill-could-crush-startups-and-cement-big-tech-ai-monopoly

occasionally the EFF reminds us it was founded by a republican libertarian and funded by SV tech cos

This project by @recantha reminded me that old (IBM) ThinkPad keyboards should be remade into external USB keyboards. Found this /r/ thread with some great links:

https://www.reddit.com/r/thinkpad/comments/fgyh0q/transform_internal_keyboard_to_external_usb/

This build seems especially nice:

https://www.thingiverse.com/thing:4169964

RE: https://mastodon.social/@recantha/114184031395472987

“I’ve just closed the forum of a small classic car club because we don’t have the time or capacity to ensure compliance with only volunteers. Meta will benefit, because we will, reluctantly, move to using a Facebook page”
https://alecmuffett.com/article/112834
#OnlineSafetyAct #ofcom