Christoffer S.
@cstromblad.com
Father, husband, Swedish and cyber. Oh man, all the things cyber but mostly threat Intelligence. Dabble with Python. In the cyber field as a professional since 2001 […]
🌉 bridged from ⁂ https://swecyb.com/@nopatience, follow @ap.brid.gy to interact
🌉 bridged from ⁂ https://swecyb.com/@nopatience, follow @ap.brid.gy to interact
Reposted by Christoffer S.
Nariman Gharib, an #iran cyber-espionage expert (on exile):
> Obtained #starlink terminal debug data from Iran during the ongoing internet shutdown.
> The telemetry shows direct evidence of GPS spoofing: the dish detected 18 #gps satellites with valid signal lock, but activated its […]
> Obtained #starlink terminal debug data from Iran during the ongoing internet shutdown.
> The telemetry shows direct evidence of GPS spoofing: the dish detected 18 #gps satellites with valid signal lock, but activated its […]
Original post on agora.echelon.pl
agora.echelon.pl
January 14, 2026 at 6:35 PM
Reposted by Christoffer S.
'The Polish government has revealed that the country experienced a major attempt to disrupt its power grid at the end of December, and came “very close to a blackout”. However, it successfully repelled the cyberattack.
The digital affairs minister says that “everything points to Russian […]
The digital affairs minister says that “everything points to Russian […]
Original post on swecyb.com
swecyb.com
January 14, 2026 at 11:27 AM
'The Polish government has revealed that the country experienced a major attempt to disrupt its power grid at the end of December, and came “very close to a blackout”. However, it successfully repelled the cyberattack.
The digital affairs minister says that “everything points to Russian […]
The digital affairs minister says that “everything points to Russian […]
Reposted by Christoffer S.
Yesterday I lost a client. And I couldn't be happier about it.
It's a long-standing client, but the management changed a few months ago. On Monday, they requested an emergency intervention, which I handled immediately.
On Tuesday (yesterday, evening), they asked for a non-urgent enhancement to […]
It's a long-standing client, but the management changed a few months ago. On Monday, they requested an emergency intervention, which I handled immediately.
On Tuesday (yesterday, evening), they asked for a non-urgent enhancement to […]
Original post on mastodon.bsd.cafe
mastodon.bsd.cafe
January 14, 2026 at 12:41 PM
Yesterday I lost a client. And I couldn't be happier about it.
It's a long-standing client, but the management changed a few months ago. On Monday, they requested an emergency intervention, which I handled immediately.
On Tuesday (yesterday, evening), they asked for a non-urgent enhancement to […]
It's a long-standing client, but the management changed a few months ago. On Monday, they requested an emergency intervention, which I handled immediately.
On Tuesday (yesterday, evening), they asked for a non-urgent enhancement to […]
Reposted by Christoffer S.
Great article about how recent LLM models may actually be getting worse in some respects.
https://spectrum.ieee.org/ai-coding-degrades
H/T to @davidgerard as the above mentioned article was referenced in his own (also great article) […]
https://spectrum.ieee.org/ai-coding-degrades
H/T to @davidgerard as the above mentioned article was referenced in his own (also great article) […]
Original post on swecyb.com
swecyb.com
January 14, 2026 at 11:22 AM
Great article about how recent LLM models may actually be getting worse in some respects.
https://spectrum.ieee.org/ai-coding-degrades
H/T to @davidgerard as the above mentioned article was referenced in his own (also great article) […]
https://spectrum.ieee.org/ai-coding-degrades
H/T to @davidgerard as the above mentioned article was referenced in his own (also great article) […]
People may suggest that you use hashtags as a universal "tool" for getting things into your timeline.
This might give the impression that once you start following tags you will get ALL the content for this tag, across the entire federated entirety of instances.
That is NOT the case.
The […]
This might give the impression that once you start following tags you will get ALL the content for this tag, across the entire federated entirety of instances.
That is NOT the case.
The […]
Original post on swecyb.com
swecyb.com
January 14, 2026 at 7:01 AM
People may suggest that you use hashtags as a universal "tool" for getting things into your timeline.
This might give the impression that once you start following tags you will get ALL the content for this tag, across the entire federated entirety of instances.
That is NOT the case.
The […]
This might give the impression that once you start following tags you will get ALL the content for this tag, across the entire federated entirety of instances.
That is NOT the case.
The […]
Reposted by Christoffer S.
January 13, 2026 at 3:36 PM
Timeline of vulnerability exploitation (SmartMail):
2025-12-28: NVD CVE published. [1]
2026-01-08: Vulnerability deepdive and PoC published. [2]
2026-01-12: Reconnaissance for instances detected. [3]
2026-01-xx: Exploitation? ...
1]: [https://nvd.nist.gov/vuln/detail/CVE-2025-52691
2]: [ […]
2025-12-28: NVD CVE published. [1]
2026-01-08: Vulnerability deepdive and PoC published. [2]
2026-01-12: Reconnaissance for instances detected. [3]
2026-01-xx: Exploitation? ...
1]: [https://nvd.nist.gov/vuln/detail/CVE-2025-52691
2]: [ […]
Original post on swecyb.com
swecyb.com
January 13, 2026 at 12:58 PM
Timeline of vulnerability exploitation (SmartMail):
2025-12-28: NVD CVE published. [1]
2026-01-08: Vulnerability deepdive and PoC published. [2]
2026-01-12: Reconnaissance for instances detected. [3]
2026-01-xx: Exploitation? ...
1]: [https://nvd.nist.gov/vuln/detail/CVE-2025-52691
2]: [ […]
2025-12-28: NVD CVE published. [1]
2026-01-08: Vulnerability deepdive and PoC published. [2]
2026-01-12: Reconnaissance for instances detected. [3]
2026-01-xx: Exploitation? ...
1]: [https://nvd.nist.gov/vuln/detail/CVE-2025-52691
2]: [ […]
I really appreciate this type of article by @huntress published on January 12. It's about AI and a few cases where AI has been leveraged as part of the attacks.
My appreciation comes from leading with data, not opinion. AI is not really introducing new vectors, but they are certainly […]
My appreciation comes from leading with data, not opinion. AI is not really introducing new vectors, but they are certainly […]
Original post on swecyb.com
swecyb.com
January 13, 2026 at 7:45 AM
I really appreciate this type of article by @huntress published on January 12. It's about AI and a few cases where AI has been leveraged as part of the attacks.
My appreciation comes from leading with data, not opinion. AI is not really introducing new vectors, but they are certainly […]
My appreciation comes from leading with data, not opinion. AI is not really introducing new vectors, but they are certainly […]
For as long as I can remember I have always had this dreamy view of the US. As a youngster I even went there in my earlier days to try out a career as a model/actor. (Yeah... it didn't really work out!)
But the dream was there, and the "magical" view of the US was there.
Today... it's not […]
But the dream was there, and the "magical" view of the US was there.
Today... it's not […]
Original post on swecyb.com
swecyb.com
January 13, 2026 at 7:00 AM
For as long as I can remember I have always had this dreamy view of the US. As a youngster I even went there in my earlier days to try out a career as a model/actor. (Yeah... it didn't really work out!)
But the dream was there, and the "magical" view of the US was there.
Today... it's not […]
But the dream was there, and the "magical" view of the US was there.
Today... it's not […]
I do enjoy some of the reports that ENISA is putting out there... but they really have to learn how to make charts, because I mean... c'mon this is not serious.
#useless #ux #graph #cybersecurity
#useless #ux #graph #cybersecurity
January 12, 2026 at 7:21 AM
I do enjoy some of the reports that ENISA is putting out there... but they really have to learn how to make charts, because I mean... c'mon this is not serious.
#useless #ux #graph #cybersecurity
#useless #ux #graph #cybersecurity
I have a Framework 13, and overall I'm very happy with performance, and general stability. But one thing that has really started getting to me is the battery life.
Closing the lid, not having it plugged into power will drain the battery in a day or two (or something like that). I don't get it […]
Closing the lid, not having it plugged into power will drain the battery in a day or two (or something like that). I don't get it […]
Original post on swecyb.com
swecyb.com
January 11, 2026 at 10:15 AM
I have a Framework 13, and overall I'm very happy with performance, and general stability. But one thing that has really started getting to me is the battery life.
Closing the lid, not having it plugged into power will drain the battery in a day or two (or something like that). I don't get it […]
Closing the lid, not having it plugged into power will drain the battery in a day or two (or something like that). I don't get it […]
Reposted by Christoffer S.
Indonesia today became the first country to block Grok.
"The government views non-consensual deepfake practices as a serious violation of human rights, dignity, and the security of citizens in the digital space."
https://www.cbsnews.com/news/indonesia-suspends-grok-ai-over-sexualized-images/
"The government views non-consensual deepfake practices as a serious violation of human rights, dignity, and the security of citizens in the digital space."
https://www.cbsnews.com/news/indonesia-suspends-grok-ai-over-sexualized-images/
Indonesia suspends Grok AI over sexualized images
Elon Musk's platform is facing global backlash after reports emerged that its image creation feature allowed users to sexualize pictures of women and children using simple text prompts.
www.cbsnews.com
January 11, 2026 at 6:21 AM
Indonesia today became the first country to block Grok.
"The government views non-consensual deepfake practices as a serious violation of human rights, dignity, and the security of citizens in the digital space."
https://www.cbsnews.com/news/indonesia-suspends-grok-ai-over-sexualized-images/
"The government views non-consensual deepfake practices as a serious violation of human rights, dignity, and the security of citizens in the digital space."
https://www.cbsnews.com/news/indonesia-suspends-grok-ai-over-sexualized-images/
Reposted by Christoffer S.
I love #arcraiders to the point where I've asked, and paid, for a custom designed keyboard specifically dedicated to the game.
Keys are backlit with programmable RGB lighting, and obviously each individual key can be remapped to whatever it should be.
Pictured […]
[Original post on swecyb.com]
Keys are backlit with programmable RGB lighting, and obviously each individual key can be remapped to whatever it should be.
Pictured […]
[Original post on swecyb.com]
January 10, 2026 at 9:12 PM
I love #arcraiders to the point where I've asked, and paid, for a custom designed keyboard specifically dedicated to the game.
Keys are backlit with programmable RGB lighting, and obviously each individual key can be remapped to whatever it should be.
Pictured […]
[Original post on swecyb.com]
Keys are backlit with programmable RGB lighting, and obviously each individual key can be remapped to whatever it should be.
Pictured […]
[Original post on swecyb.com]
A few companies have, IMHO, managed to stand out a little bit with what content they publish. There's just something about them.
@huntress
@DomainTools
@InfobloxThreatIntel
Today it was DTs turn (again) to publish this absolute beast of an article covering the KNOWSEC leak […]
@huntress
@DomainTools
@InfobloxThreatIntel
Today it was DTs turn (again) to publish this absolute beast of an article covering the KNOWSEC leak […]
Original post on swecyb.com
swecyb.com
January 9, 2026 at 8:58 PM
A few companies have, IMHO, managed to stand out a little bit with what content they publish. There's just something about them.
@huntress
@DomainTools
@InfobloxThreatIntel
Today it was DTs turn (again) to publish this absolute beast of an article covering the KNOWSEC leak […]
@huntress
@DomainTools
@InfobloxThreatIntel
Today it was DTs turn (again) to publish this absolute beast of an article covering the KNOWSEC leak […]
Reposted by Christoffer S.
Our vision is crystal clear: social spaces should belong to the people, forever. 🏡💙
No ads, no manipulative algorithms, no hidden agendas: a platform governed by and for its community.
Support Mastodon. Keep the internet in the hands of the people: Donate […]
[Original post on mastodon.social]
No ads, no manipulative algorithms, no hidden agendas: a platform governed by and for its community.
Support Mastodon. Keep the internet in the hands of the people: Donate […]
[Original post on mastodon.social]
January 9, 2026 at 8:07 PM
Our vision is crystal clear: social spaces should belong to the people, forever. 🏡💙
No ads, no manipulative algorithms, no hidden agendas: a platform governed by and for its community.
Support Mastodon. Keep the internet in the hands of the people: Donate […]
[Original post on mastodon.social]
No ads, no manipulative algorithms, no hidden agendas: a platform governed by and for its community.
Support Mastodon. Keep the internet in the hands of the people: Donate […]
[Original post on mastodon.social]
RE: https://social.cyberespresso.eu/@ThreatIntel/115861213778503707
Infoblox rarely disappoints when publishing research, and this is no exception.
Infoblox rarely disappoints when publishing research, and this is no exception.
social.cyberespresso.eu
January 8, 2026 at 7:58 PM
RE: https://social.cyberespresso.eu/@ThreatIntel/115861213778503707
Infoblox rarely disappoints when publishing research, and this is no exception.
Infoblox rarely disappoints when publishing research, and this is no exception.
Reposted by Christoffer S.
January 8, 2026 at 8:25 AM
Huntress writes about VMware exploitation and boy, they have gone all in on the details.
https://www.huntress.com/blog/esxi-vm-escape-exploit
This is well worth reading. Exploit was likely developed almost a year before use. (Or something like that...)
#cybersecurity #threatintel
https://www.huntress.com/blog/esxi-vm-escape-exploit
This is well worth reading. Exploit was likely developed almost a year before use. (Or something like that...)
#cybersecurity #threatintel
January 7, 2026 at 8:33 PM
Huntress writes about VMware exploitation and boy, they have gone all in on the details.
https://www.huntress.com/blog/esxi-vm-escape-exploit
This is well worth reading. Exploit was likely developed almost a year before use. (Or something like that...)
#cybersecurity #threatintel
https://www.huntress.com/blog/esxi-vm-escape-exploit
This is well worth reading. Exploit was likely developed almost a year before use. (Or something like that...)
#cybersecurity #threatintel
Emisoft took a look at the numbers for ransomware across 2023, 2024 and 2025. Mostly... it appears that attacks (victims) are increasing despite multiple law enforcement actions.
Not sure what to say... yeah, ransomware attacks is still a threat... but let's also not forget that roughly 9000 […]
Not sure what to say... yeah, ransomware attacks is still a threat... but let's also not forget that roughly 9000 […]
Original post on swecyb.com
swecyb.com
January 7, 2026 at 2:28 PM
Emisoft took a look at the numbers for ransomware across 2023, 2024 and 2025. Mostly... it appears that attacks (victims) are increasing despite multiple law enforcement actions.
Not sure what to say... yeah, ransomware attacks is still a threat... but let's also not forget that roughly 9000 […]
Not sure what to say... yeah, ransomware attacks is still a threat... but let's also not forget that roughly 9000 […]
And the swecyb.com instance has been updated to v4.5. Two security issues fixed, and a bunch of minor fixes and changes.
Full list of issues addressed can be found on the official release:
https://github.com/mastodon/mastodon/releases/tag/v4.5.4
Full list of issues addressed can be found on the official release:
https://github.com/mastodon/mastodon/releases/tag/v4.5.4
Release v4.5.4 · mastodon/mastodon
Upgrade overview This release contains upgrade notes that deviate from the norm: ℹ️ Requires assets recompilation For more information, view the complete release notes and scroll down to the upgrad...
github.com
January 7, 2026 at 2:19 PM
And the swecyb.com instance has been updated to v4.5. Two security issues fixed, and a bunch of minor fixes and changes.
Full list of issues addressed can be found on the official release:
https://github.com/mastodon/mastodon/releases/tag/v4.5.4
Full list of issues addressed can be found on the official release:
https://github.com/mastodon/mastodon/releases/tag/v4.5.4
Two Threat Landscape Reports landed today:
Sentinel: https://www.sentinelone.com/blog/12-months-of-fighting-cybercrime-defending-enterprises-the-sentinellabs-2025-review/
Outpost24 (Kraken): https://outpost24.com/blog/krakenlabs-research-highlights/
#cybersecurity #threatintel […]
Sentinel: https://www.sentinelone.com/blog/12-months-of-fighting-cybercrime-defending-enterprises-the-sentinellabs-2025-review/
Outpost24 (Kraken): https://outpost24.com/blog/krakenlabs-research-highlights/
#cybersecurity #threatintel […]
Original post on swecyb.com
swecyb.com
January 6, 2026 at 7:31 PM
Two Threat Landscape Reports landed today:
Sentinel: https://www.sentinelone.com/blog/12-months-of-fighting-cybercrime-defending-enterprises-the-sentinellabs-2025-review/
Outpost24 (Kraken): https://outpost24.com/blog/krakenlabs-research-highlights/
#cybersecurity #threatintel […]
Sentinel: https://www.sentinelone.com/blog/12-months-of-fighting-cybercrime-defending-enterprises-the-sentinellabs-2025-review/
Outpost24 (Kraken): https://outpost24.com/blog/krakenlabs-research-highlights/
#cybersecurity #threatintel […]
I've been using Brain.fm since forever (2018) and whether or not it can be scientifically proven to deepen focus etc I don't know... but I do know that it's an excellent background "music" for whenever I need to do some coding etc.
I paid for a lifetime membership back in probably around 2017 […]
I paid for a lifetime membership back in probably around 2017 […]
Original post on swecyb.com
swecyb.com
January 6, 2026 at 7:20 PM
I've been using Brain.fm since forever (2018) and whether or not it can be scientifically proven to deepen focus etc I don't know... but I do know that it's an excellent background "music" for whenever I need to do some coding etc.
I paid for a lifetime membership back in probably around 2017 […]
I paid for a lifetime membership back in probably around 2017 […]