"I hope you're fine and healthy. The reason I am writing this mail is to share a few of my experiments and research I've done to come up with a reasonable stack pivot detection for the Syd kernel. TL;DR I have failed and I have learned a lot."

https://www.openwall.com/lists/oss-security/2026/01/10/1

Messages like this give me some hope in humanity <3

[RSS] CVE-2026-20965: Cymulate Research Labs Discovers Token Validation Flaw that Leads to Tenant-Wide RCE in Azure Windows Admin Center

https://cymulate.com/blog/cve-2026-20965-azure-windows-admin-center-tenant-wide-rce/

Nariman Gharib, an #Iran cyber-espionage expert (on exile):

Obtained #Starlink terminal debug data from Iran during the ongoing internet shutdown.

The telemetry shows direct evidence of GPS spoofing: the dish detected 18 #GPS satellites with valid signal lock, but activated its anti-spoofing countermeasures (inhibitGps: true). This isn’t simple jamming; the government appears to be broadcasting fake GPS signals to confuse terminals.

The impact: 20%+ sustained packet loss, connection never stabilized after 24 minutes, bandwidth restricted, and beam pointing ~1° off target. Starlink stayed online but was barely usable.

The anti-spoofing detection works, but SpaceX’s fallback positioning can’t currently maintain normal performance under electronic warfare.

First documented technical evidence of state-level GPS spoofing against consumer satellite internet.

https://github.com/narimangharib/starlink-iran-gps-spoofing/blob/main/starlink-iran.md

New vulnerability report from Talos:

Epic Games Store Installation DLL Hijacking Privilege Escalation Vulnerability

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2279

CVE-2025-61973

#Ghidra 12.0.1 released, Change History:

https://github.com/NationalSecurityAgency/ghidra/blob/Ghidra_12.0.1_build/Ghidra/Configurations/Public_Release/src/global/docs/ChangeHistory.md

One question: have you seen recently packed software (malware or some proprietary application) that isn't Windows PE files? Like, I don't know, Linux ELFs, or MacOS MACH-O files, or Android apks.
#malware #packers

RE: https://furry.engineer/@soatok/115896145424737173

As a professional source code reviewer, I gotta agree with “We cannot overstate the extent to which just reading the OpenSSL source code has become miserable.” The answer to “how does OpenSSL—” is always “I don’t know and I don’t have six months to find out.” This is not true of alternative libraries with the same functionality.

📢 LAST CALL: IDA Plugin Contest!

The submission window closes January 15, 2026 @ 11:59pm CET.

Read the entry instructions and full details here:
https://hex-rays.com/plugin-contest

Good luck!

Matthew McConaughey Trademarks Himself To Fight AI Misuse https://slashdot.org/story/26/01/14/1549211/matthew-mcconaughey-trademarks-himself-to-fight-ai-misuse?utm_source=rss1.0mainlinkanon

I suffered a moderate data loss in 2022 when tried to export a #Wordpress site with this plugin:

https://github.com/benbalter/wordpress-static-site-exporter/issues/292

Now the issue got an AI fix, introducing a lot of code to handle tricky symlinks.

Taking into account that the author didn't care to look at my issue for 3 years I doubt this fix is properly reviewed so I now trust this plugin even *less*.

[RSS] Drone Hacking Part 1: Dumping Firmware and Bruteforcing ECC

https://neodyme.io/en/blog/drone_hacking_part_1/

When IMS Associates, Inc., couldn't get their hands on an Altair 8800, they decided to make their own! How's that possible? Key technology like the S-100 bus were easy to replicate, leading to a slew of clones, like the IMSAI 8080.
—
#iFixit #RightoRepair #FixTheWorld

[RSS] CVE-2025-64155: Three Years of Remotely Rooting the Fortinet FortiSIEM

https://horizon3.ai/attack-research/disclosures/cve-2025-64155-three-years-of-remotely-rooting-the-fortinet-fortisiem/

[RSS] The January 2026 Security Update Review

https://www.thezdi.com/blog/2026/1/13/the-january-2026-security-update-review

We are at *twenty* hackerone submissions for #curl so far this year. Zero of them a confirmed vulnerability.

RE: https://mastodon.social/@hennavirkkunen/115888721732640894

I’ve been informed this is an official account and that makes it good news!

Hello #FediHire, I am a laid off malware analyst still looking for work. It's hard out there. I can program in various languages (primarily C++, Python and Rust) and can study non-malware code with just as much ease as complex malware. Enterprise application ready!

Accolades here: https://www.linkedin.com/in/sean-m-taylor-security-engineer/
Code here: https://github.com/frank2

Any biters? Please let me know!

Just saw this on a post on LinkedIn

https://creepylink.com/

It is a URL shortener that makes your links as suspicious as possible. Simply amazing

For example:

https://google.com/

got turned into:

https://capitalone.c1ic.link/Z8gfcH_claim_gift_card.pl

I'm pretty sure every healthcare organization I've ever received an SMS from is already using this technology

We are excited to announce the CFP for the next tmp.0ut Volume 5!

https://tmpout.sh/blog/vol5-cfp.html