[RSS] Strengthening the Foundation: A Joint Security Review of Intel TDX 1.5

https://bughunters.google.com/blog/a-joint-security-review-of-intel-tdx-15

[RSS] Intego X9: When your macOS antivirus becomes your enemy

http://blog.quarkslab.com/intego_lpe_macos_1.html

"Switzerland’s military has terminated its contract with Palantir… following a security audit… concluded that U.S. intelligence agencies could potentially access sensitive Swiss defense data… significant reputational warning for the data analytics firm"

https://www.newscase.com/palantirs-swiss-exit-highlights-global-data-sovereignty-challenge/

#Palantir #Dataprivacy #Security

#Ghidra 12.0.3 released:

https://github.com/NationalSecurityAgency/ghidra/blob/Ghidra_12.0.3_build/Ghidra/Configurations/Public_Release/src/global/docs/ChangeHistory.md

Looks like a fix to a cute little vulnerability too: it seems you could make users execute your commands via @execute annotations in Listings :)

Wheeee my presentation on parser differentials made it on the Top Ten Web Hacking Techniques of 2025

https://portswigger.net/research/top-10-web-hacking-techniques-of-2025

#Keycloak CVE-2026-1529: "lack of cryptographic signature verification allows the attacker to successfully self-register into an unauthorized organization, leading to unauthorized access."

https://access.redhat.com/security/cve/cve-2026-1529

#JWT

Apple says it supports competition, privacy, and repair. AirPods say “not for you.” From EU feature lockouts to batteries you can’t replace, we unpack Apple’s most disposable design at the link below.

https://www.ifixit.com/News/115572/apple-airpods-and-malicious-compliance
—
#iFixit #RightoRepair #FixTheWorld

Rust Crate: It's very easy to use me, here's a definition: ...

Me: I don't even know how to type half of these characters :S

New Rapid7 Analysis on AttackerKB topic: CVE-2026-1731

"On February 6, 2026, BeyondTrust published an [advisory](https://www.beyondtrust.com/trust-center/security-advisories/bt26-02) for a new critical command injection vulnerability, [CVE-2026-1731](https://nvd.nist.gov/vuln/detail/CVE-2026-1731), affecting their products Remote Support (RS) and Privileged Remote Access (PRA). ..."

Link: https://attackerkb.com/topics/0e038aee-d044-46cf-8b9e-8f54ca24d80a

my friend @asciimoo built a thing again \o/ and it's great as always. read his own thoughts on this at https://hister.org/posts/how-i-cut-my-google-search-dependence-in-half/

and engage with the cringe on the orange site at https://news.ycombinator.com/item?id=46959554

#search #history #web #browser

This multi-part blog series is discussing an undocumented feature of Windows: instrumentation callbacks (ICs).

In part 4 we cover ICs from a more theoretical standpoint. Mainly restrictions on unsetting them, how set ICs can be detected and how new ones can be prevented from being set.

Learn more at https://cirosec.de/en/news/windows-instrumentation-callbacks-part-4/

#Blog #Windows #Shellcode #RedTeaming #ReverseEngineering

The Cycle 2 deadline for the USENIX WOOT Conference is in ~ 4 weeks (March 3, 2026)!

WOOT continues to include both a Systematization of Knowledge (SoK) track and an Up-and-Coming track (industry-focused).

Details are available in the Call for Papers:
https://lnkd.in/gK2RGj-h

It's pretty insane how we live in an age where everything needs to be monetized; every single tear of knowledge must be consecrated to the mighty god of money throught crappy trainings and certificates.

Annie Rauwerda, creator of Depths of Wikipedia, lives for the internet’s weirdest footnotes.

That includes things like the long-gone Garfield the cat “G-Mail,” 🙀📬 a very real web oddity now preserved only on the #WaybackMachine.

Internet history is stranger—and more fragile—than it looks.

Read more 👉 https://blog.archive.org/2026/02/05/depths-of-wikipedia-creator-annie-rauwerda-on-fragile-internet-citations/

@annierau @internetarchive #Wikipedia

[RSS] Windows containers network isolation RE

https://safesws.github.io/windows-containers-network-isolation/

[RSS] CVE-2026-2103 - Infor Syteline ERP - Keys Included: No Assembly Required

https://blog.blacklanternsecurity.com/p/cve-2026-2103-infor-syteline-erp

I am losing it at how many of my peers have forgotten what software engineering is. It is not typing in lines of code.

git ass

i'm making a #QBasic game using mode 13h, 320x200 8bpp. i'm using the line doubling feature of the VGA card to make it 320x100 then manually doubling each pixel horizontally for 160x100

i realized i could use a palette with 3 bits red/green and 2 blue, and then do "subpixel" dither to generate the in between colors. i made a converter to test if that would look good, and it does

here's a thread of images showing what that looks like

1/5

#PixelArt #QBasic #dos #RetroComputing #RetroDev