Posts
4227
Following
735
Followers
1628
"I'm interested in all kinds of astronomy."
repeated

Somebody released a PoC for Firefox CVE-2026-8389, and it works.

The PoC doesn't include a sandbox escape, and claims that poc-win-sbx.html includes the escape. This file was not shared in the repo.

The python server on localhost seems unnecessary, as the exploit web server can surely serve up primer.js the first time that payload.js is requested, and the actual payload.js the second time. πŸ€”

2
4
0
repeated

Ari, Starbird therian πŸ¦β€πŸ”₯ πŸ”œEF

Edited 1 month ago

absolute gem of a Wikipedia image description

2
17
0
repeated

Project Zero Bot

New Project Zero issue:

Linux >=6.10: io_uring: kernel memory read via unchecked address in ITER_UBUF/ITER_IOVEC iov_iter combined with non-checking nocache/flushcache accessors

https://project-zero.issues.chromium.org/issues/496923375

CVE-2026-43073
0
6
6
repeated

bert hubert πŸ‡ΊπŸ‡¦πŸ‡ͺπŸ‡ΊπŸ‡ΊπŸ‡¦

To save you 34 minutes, researchers had previously found 72 days on which there were second-long jamming events of GPS in most of Europe (as described in https://radionavlab.ae.utexas.edu/wp-content/uploads/Clements-space-interference-iongnss25.pdf ) Later they were able to record such an event & could locate the source of the disruption to a Russian military satellite. https://www.youtube.com/watch?v=tz23G_UXCGA

1
4
0
repeated
repeated

The idea of banning minors from using social media is at its heart an attempt to punish victims instead of going against the perpetrator. If minors are more easily victimized by the predatory practices of large tech corporations it's not their fault. The blame lies squarely on the corporations. They must stop using predatory practices. And that's doubly important because those practices hurt adults and minors alike.

4
11
1
repeated

proof per unit test

0
1
0
repeated

Holy moly, one of my cousins (8 weeks into undergraduate computer science) asked me for help on a university assignment. I was surprised because he's very switched on.

It's a group assignment and it was extremely obvious that every other student has logged into a parent's corporate LLM and written all the code via prompt with no understanding.

When I asked how they're getting away with it, he said that the lecturers have just given up on all policing. (University is RMIT in Melbourne.)

1
2
0
#music #psytrance #hitech #tgif
Show content
0
0
1
[RSS] System Over Model, Tested: Reproducing Mythos's FreeBSD Find on Local Open-Weight Models

https://clearbluejar.github.io/posts/system-over-model-tested-mythos-freebsd-local-openweight/
0
0
0
[RSS] Docker Internal (3)

https://u1f383.github.io/linux/2026/06/04/Docker-Internal-3.html

3rd part of the Docker security research series
0
0
1
[RSS] The futex READ_ONCE

https://guysrd.github.io/futex-read-once

Android kernel race condition analysis
0
0
1
Edited 1 month ago
I complained about hexeditors recently. Now I found TeeHee, and I think I'll stick with it on all platforms:

https://sr.ht/~aleksi/teehee/

Edit: Since this took off somewhat, I'd note that I found the editor in this list: https://github.com/merces/awesome-hex-editors <- give it some love <3
4
10
25
repeated

Electromagnetic Field

Our Call for Participation will close on 7 June - if you have a talk, workshop, or performance you'd like to give at EMF, there's still time to submit!

https://www.emfcamp.org/cfp

0
4
0
repeated

Some perspective:

4
7
0
repeated

An 8TB hard drive that was $129.99 a year ago is now $299.99.

Thanks, AI. You're really making the world a better place.

4
2
0
#Redis - Security advisory: [CVE‑2026‑23479] [CVE‑2026‑25243] [CVE-2026-25588] [CVE‑2026‑25589] [CVE-2026-23631]

https://redis.io/blog/security-advisory-cve202623479-cve202625243-cve-2026-25588-cve202625589-cve-2026-23631/
0
0
0
repeated

For 19 years, GPS satellites have secretly broadcast a β€œnumbers station” in their public signals. We decoded 12M messages: a 2011 flash where 31 of 32 satellites flipped in hours, β€œghost” substrings repeating years apart, and a β€œTEXT” prefix spreading now. https://lsc-pagepro.mydigitalpublication.com/publication/?i=865273&p=62&view=issueViewer

5
15
0
repeated

πŸš€πŽπŸπŸ-𝐁𝐲-𝐎𝐧𝐞 πŸπŸŽπŸπŸ” CFP looking for the research that will shape the conversations, techniques and tooling of tomorrow's offensive security community.
CFP closes on 1 July 2026, 18:00 SGT.
The next great OFF-BY-ONE talk might be yours!
https://cfp.offbyone.sg

0
2
0
Show older