Posts
3891
Following
728
Followers
1601
"I'm interested in all kinds of astronomy."
buherator

buherator

[RSS] Kmemdump step by step on Qualcomm Automotive platform

https://www.linaro.org/blog/kmemdump-step-by-step-on-qualcomm-automotive-platform/
0
0
1
buherator
repeated
talosvulns

Talos Vulnerability Reports

New vulnerability report from Talos:

Adobe Acrobat Reader Page Property Use-After-Free Vulnerability

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2222

CVE-2025-54257
0
1
2
buherator
repeated
toydrgn@rubber.social

Kaye 🔞

With all this discourse about "AI art" I think we've lost sight of the simple joy of generating terrible nonsense via Markov Chains

2
2
0
buherator
repeated
web3isgreat@indieweb.social

web3 is going just great

UXLINK exploited for around $28 million, then hacker gets phished

September 22, 2025
https://www.web3isgoinggreat.com/?id=uxlink-exploit

0
2
0
buherator

buherator

/me trying hard not to antropomorphise the LLM
0
0
1
buherator
repeated
effinbirds@mastodon.social

Effin' Birds

0
2
0
buherator
repeated
mttaggart@infosec.exchange

Taggart ifin

RE: https://infosec.exchange/@mttaggart/115219922584580823

Ayyy look at that! Deprecating TOTP in favor of FIDO-based MFA, and removing the local publishing bypass!

https://www.bleepingcomputer.com/news/security/github-tightens-npm-security-with-mandatory-2fa-access-tokens/

2
3
1
buherator

buherator

"Employees are using AI tools to create low-effort, passable looking work that ends up creating more work for their coworkers.[...] it shifts the burden of the work downstream, requiring the receiver to interpret, correct, or redo the work. In other words, it transfers the effort from creator to receiver"

Good to see this finally phrased out!

https://hbr.org/2025/09/ai-generated-workslop-is-destroying-productivity
0
2
7
buherator
repeated
baldur@toot.cafe

Baldur Bjarnason

Edited 7 months ago

“AI-Generated “Workslop” Is Destroying Productivity”

https://hbr.org/2025/09/ai-generated-workslop-is-destroying-productivity

> For an organization of 10,000 workers, given the estimated prevalence of workslop (41%), this yields over $9 million per year in lost productivity.

Add the impact of variability on work queues (delays, delays, delays) and this loss is a massive underestimation

(Edited to add: the "article" itself is tripe and I don't endorse it in any way.)

(Edited again: like, it's really bad.)

2
2
0
buherator
repeated
tihmstar@infosec.exchange

tihmstar

macOS WindowServer

1
4
0
buherator
repeated
h0mbre_@bird.makeup

h0mbre

unironically yes
https://bird.makeup/users/fishoutofwaterb/statuses/1969920969776206123

0
4
1
buherator
repeated
quarkslab@infosec.exchange

quarkslab

RTFM they say but if you read the manual and copy code examples from it you may inadvertently introduce vulns in your code 🙀
In April we audited the PHP code. Now we followed up with a review of the code snippets in PHP documentation and found 81 issues 👇
https://blog.quarkslab.com/security-review-of-php-documentation.html

0
3
0
buherator

buherator

[RSS] Exploring GrapheneOS secure allocator: Hardened Malloc

https://www.synacktiv.com/en/publications/exploring-grapheneos-secure-allocator-hardened-malloc.html
0
1
4
buherator
repeated
soatok@furry.engineer

Soatok Dreamseeker

Something I've been thinking about for most of 2025, but haven't found a good way to solve, is the need to preserve history and educate each other in spite of what the fascists in power want.

When they ban "Critical Race Theory" in public schools, there ought to be a decentralized system that folks can turn to to learn it without their school's permission.

There were many atrocities against minority communities that never got discussed when I went to public school. I remember also needing a permission slip to learn about natural selection in biology class.

In short, I think there ought to be a Pirate Systen of Education (and I don't just mean PDF scans of $400 textbooks).

With the Straw Hat flag becoming an International symbol of freedom, I can't help but think about the scholars of Ohara from One Piece. Learning and preserving a forbidden history.

Maybe this idea isn't mine to bring to fruition. So I'm letting it scatter to the wind. May someone clever and motivated make it bloom.

4
2
0
buherator
repeated
cfgbot@mastodon.social

CFG Bot 🤖

Project: openssl-static-gcc-dwarf 3.4.0
File: openssl
Address: 0071d200

mime_parse_hdr

SVG:
dark https://tmr232.github.io/function-graph-overview/render/?graph=https%3A%2F%2Fraw.githubusercontent.com%2Fv-p-b%2Fghidra-function-graph-datasets%2Frefs%2Fheads%2Fmain%2F%2Fopenssl-static-gcc-dwarf%2F0071d200.json&colors=dark
light https://tmr232.github.io/function-graph-overview/render/?graph=https%3A%2F%2Fraw.githubusercontent.com%2Fv-p-b%2Fghidra-function-graph-datasets%2Frefs%2Fheads%2Fmain%2F%2Fopenssl-static-gcc-dwarf%2F0071d200.json&colors=light

0
1
0
buherator
repeated
radareorg@infosec.exchange

radare2 radare verified

r2ghidra 6.0.2 is out!

0
3
0
buherator

buherator

Ozzy Man (~6M subs) features Doom hacks (starting around 3:10):

https://www.youtube.com/watch?v=34o23CHh7bo
0
0
0
buherator
repeated
TheOldGuy@qoto.org

TheOldGuy@qoto.org

0
3
0
buherator
repeated
azonenberg@ioc.exchange

Andrew Zonenberg

Internet hive mind: what are these?

Options I'm considering are cellular microcells, water/power meter collectors (my leading candidate), some kind of public wifi network.

Guesstimating 900 MHz band from the antenna size as best i can guess from ground level, but I don't have a SDR on me to be sure.

6
3
0
buherator
repeated
sassdawe@infosec.exchange

Sass, David

search results level 100

Well done Microsoft.

0
2
0
Show older
About infosec.place

Terms of Service

This is a placeholder, overwrite this by putting a file at 

$STATIC_DIR/static/terms-of-service.html

See the Static Directory docs for more info.