Russell Devine
@rjmd.bsky.social
💼 Digital Forensics & Incident Response
📱Talk all things tech and cyber
🏔️ Backpacking 🏃 Running 🤿 Scuba
All opinions are from a southern right whale I met off the coast of Tasmania 🐋
📱Talk all things tech and cyber
🏔️ Backpacking 🏃 Running 🤿 Scuba
All opinions are from a southern right whale I met off the coast of Tasmania 🐋
Reposted by Russell Devine
Abandoning Antarctic krill management measure threatens conservation progress (commentary) news.mongabay.com/2025/10/aban... 🧪🦑🌎
Abandoning Antarctic krill management measure threatens conservation progress (commentary)
All along the western Antarctic Peninsula, whales, penguins and seals in their millions depend on krill (Euphausia superba) throughout the year. In the most rapidly warming region on the continent,…
news.mongabay.com
October 13, 2025 at 8:16 PM
Abandoning Antarctic krill management measure threatens conservation progress (commentary) news.mongabay.com/2025/10/aban... 🧪🦑🌎
Why was the built-in calculator removed from the Venmo app? Probably one of it’s best features.
September 28, 2025 at 5:14 PM
Why was the built-in calculator removed from the Venmo app? Probably one of it’s best features.
So Apple blocks logging into iCloud if you use Ubuntu + FireFox. You have to spoof the user agent to get around it. Random.
September 16, 2025 at 1:21 AM
So Apple blocks logging into iCloud if you use Ubuntu + FireFox. You have to spoof the user agent to get around it. Random.
Threat Intel report by Anthropic about threat actors using Claude is an interesting read.
Detecting and countering misuse of AI: August 2025
Anthropic's threat intelligence report on AI cybercrime and other abuses
www.anthropic.com
August 28, 2025 at 2:12 PM
Threat Intel report by Anthropic about threat actors using Claude is an interesting read.
Microsoft has a hidden talent of making people never want to upgrade their Windows OS. Sadly only two months left of Win10 support.
Microsoft's Windows lead has teased the future of Windows will be more ambient, pervasive, and multi-modal in the wake of AI, promoting voice as a primary input method for using your PC. www.windowscentral.com/microsoft/wi...
Microsoft's Windows lead says the next version of Windows will be "more ambient, pervasive, and multi-modal" as AI redefines the desktop interface
In a new video, Microsoft CVP and Windows boss Pavan Davuluri has teased that the future of Windows will consist of a truly ambient and multi-modal experience made possible by AI that will redefine…
www.windowscentral.com
August 14, 2025 at 4:03 AM
Microsoft has a hidden talent of making people never want to upgrade their Windows OS. Sadly only two months left of Win10 support.
Wouldn’t this effectively drive traffic away from delta.com to third party booking sites? The only time you need to book on the carrier website is when you are redeeming points
Delta using AI to determine the price you pay for plane tickets
Delta Airlines is facing criticism for its use of artificial intelligence to determine ticket prices, a practice known as surveillance pricing.
www.yahoo.com
July 26, 2025 at 4:27 PM
Wouldn’t this effectively drive traffic away from delta.com to third party booking sites? The only time you need to book on the carrier website is when you are redeeming points
Reposted by Russell Devine
Update: Microsoft has released security updates that fully protect customers using all supported versions of SharePoint affected by CVE-2025-53770 and CVE-2025-53771. Customers should apply these updates immediately.
Full guidance and detection details: msft.it/6010sDzSE.
Full guidance and detection details: msft.it/6010sDzSE.
July 21, 2025 at 11:03 PM
Update: Microsoft has released security updates that fully protect customers using all supported versions of SharePoint affected by CVE-2025-53770 and CVE-2025-53771. Customers should apply these updates immediately.
Full guidance and detection details: msft.it/6010sDzSE.
Full guidance and detection details: msft.it/6010sDzSE.
I really hope @netflix.com signs @stephencolbert.bsky.social with a new late night show. Colbert is second to none.
July 18, 2025 at 2:01 PM
I really hope @netflix.com signs @stephencolbert.bsky.social with a new late night show. Colbert is second to none.
Reposted by Russell Devine
Unlike CEOs and other executives, individual contributors understand concert OPSEC
July 17, 2025 at 5:29 PM
Unlike CEOs and other executives, individual contributors understand concert OPSEC
Creative idea by @xeiaso.net to have a visitor’s local browser run cryptographic math in JS to identify and block AI bot scrapers.
July 7, 2025 at 2:25 PM
Creative idea by @xeiaso.net to have a visitor’s local browser run cryptographic math in JS to identify and block AI bot scrapers.
Appears all DJI shipments are being seized at the US border, resulting in most products to be out of stock indefinitely on their website and partner retailers.
A real shame because they arguably make the best drones. I really like their handheld cameras and was hoping to buy one.
A real shame because they arguably make the best drones. I really like their handheld cameras and was hoping to buy one.
Every DJI drone is out of stock on the company's online store
If you’re looking to purchase a drone from DJI, visiting the company’s online store might not be the best option,...
dronedj.com
July 6, 2025 at 6:39 PM
Appears all DJI shipments are being seized at the US border, resulting in most products to be out of stock indefinitely on their website and partner retailers.
A real shame because they arguably make the best drones. I really like their handheld cameras and was hoping to buy one.
A real shame because they arguably make the best drones. I really like their handheld cameras and was hoping to buy one.
Reposted by Russell Devine
Mandiant is now aware of multiple incidents in the airline sector that resemble Scattered Spider. The industry should button up its call centers where this actor has had a lot of success with social engineering. www.axios.com/2025/06/27/a...
A prolific hacking group that's shutdown retailers and insurance companies turns to aviation
A cyberattack on WestJet last week is likely tied to the Scattered Spider gang, a source tells Axios.
www.axios.com
June 27, 2025 at 5:28 PM
Mandiant is now aware of multiple incidents in the airline sector that resemble Scattered Spider. The industry should button up its call centers where this actor has had a lot of success with social engineering. www.axios.com/2025/06/27/a...
Reposted by Russell Devine
Let's just agree that if this works against a vendor, you should stop using that vendor.
Check Point discovered malware that embedded AI prompt injections in its code to evade detection by AI-based malware scanners.
The malware tried to order the AI scanner to "ignore all previous instructions" and return a "no malware detected" result.
research.checkpoint.com/2025/ai-evas...
The malware tried to order the AI scanner to "ignore all previous instructions" and return a "no malware detected" result.
research.checkpoint.com/2025/ai-evas...
New Malware Embeds Prompt Injection to Evade AI Detection - Check Point Research
Detected for the first time, malware attempts AI evasion by injecting a prompt to tell the LLM to label the file as benign
research.checkpoint.com
June 25, 2025 at 11:34 PM
Let's just agree that if this works against a vendor, you should stop using that vendor.
The customer paid a $440 fine due to the “AI Scanner” identifying a scuff on a tire cover, with $125 (about 28%) being a processing fee for “the cost to detect and estimate the damage”.
Good luck with customer retention.
Good luck with customer retention.
This Is What Happens When Hertz's AI Scanner Finds Damage on Your Rental
One customer was charged $440 for a scuff on his rental's wheel. But talking to a human employee about it wasn't easy, and he was encouraged to pay ASAP.
www.thedrive.com
June 24, 2025 at 3:30 AM
The customer paid a $440 fine due to the “AI Scanner” identifying a scuff on a tire cover, with $125 (about 28%) being a processing fee for “the cost to detect and estimate the damage”.
Good luck with customer retention.
Good luck with customer retention.
Reposted by Russell Devine
The Starfish Barometer, launched on World Ocean Day 2025, offers an accessible, science-based annual snapshot of the Ocean’s state and its vital connection with humanity
www.starfishbarometer.org/content/over...
www.starfishbarometer.org/content/over...
June 8, 2025 at 10:00 AM
The Starfish Barometer, launched on World Ocean Day 2025, offers an accessible, science-based annual snapshot of the Ocean’s state and its vital connection with humanity
www.starfishbarometer.org/content/over...
www.starfishbarometer.org/content/over...
Reposted by Russell Devine
Some excellent work by @craiggidney.bsky.social that reduces the number of qubits (in a quantum computer) required to break RSA by 20-fold. If you don’t have a migration plan to safe algorithms, now is the time to start one!
I'm often asked if I'll redo the 2019 quantum factoring estimate. Denser storage by yokes, smaller magic factories by cultivation, slimmer approx arithmetic by Chevignard et al… surely the cost is lower now?
Yes, it's lower now.
security.googleblog.com/2025/05/trac...
arxiv.org/abs/2505.15917
Yes, it's lower now.
security.googleblog.com/2025/05/trac...
arxiv.org/abs/2505.15917
May 23, 2025 at 4:23 PM
Some excellent work by @craiggidney.bsky.social that reduces the number of qubits (in a quantum computer) required to break RSA by 20-fold. If you don’t have a migration plan to safe algorithms, now is the time to start one!
Reposted by Russell Devine
We are very excited to announce that Volatility 3 has reached parity with Volatility 2! With this achievement, Volatility 2 is now deprecated. See the full details in our blog post: volatilityfoundation.org/announcing-t...
Announcing the Official Parity Release of Volatility 3!
Visit the post for more.
volatilityfoundation.org
May 16, 2025 at 2:57 PM
We are very excited to announce that Volatility 3 has reached parity with Volatility 2! With this achievement, Volatility 2 is now deprecated. See the full details in our blog post: volatilityfoundation.org/announcing-t...
Reposted by Russell Devine
TIL it's possible to search among opened Firefox tabs by prefixing your search with "%" 🤯
As a keyboard maximalist, the workflow should be "Ctrl-T + %search criteria + up/down + Enter" 🦥
support.mozilla.org/en-US/kb/add...
As a keyboard maximalist, the workflow should be "Ctrl-T + %search criteria + up/down + Enter" 🦥
support.mozilla.org/en-US/kb/add...
Address bar autocomplete suggestions in Firefox | Firefox Help
When you type into the address bar, Firefox suggests pages you've bookmarked, tagged, visited before or have open in tabs. Learn more.
support.mozilla.org
May 12, 2025 at 9:20 AM
TIL it's possible to search among opened Firefox tabs by prefixing your search with "%" 🤯
As a keyboard maximalist, the workflow should be "Ctrl-T + %search criteria + up/down + Enter" 🦥
support.mozilla.org/en-US/kb/add...
As a keyboard maximalist, the workflow should be "Ctrl-T + %search criteria + up/down + Enter" 🦥
support.mozilla.org/en-US/kb/add...
Absolute tragedy.
Trump Opens Marine National Monument to Commercial Fisheries
The president said the move was aimed at making the United States the world’s “dominant seafood leader.”
www.nytimes.com
April 18, 2025 at 5:57 PM
Absolute tragedy.
Reposted by Russell Devine
BREAKING.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
April 15, 2025 at 5:23 PM
BREAKING.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
So tariffs have achieved $10 trillion in losses to apparently solve a trade deficit valued at $1.2 trillion. Completely reasonable.
Markets Convulse as Tariff Chaos Erases $10 Trillion From Stocks
All across Wall Street, on the trading desks and in corporate C-suites, among hedge-fund managers and bond dealers, there’s a growing unease that one day soon, Donald Trump might just end up breaking ...
www.bloomberg.com
April 7, 2025 at 9:44 PM
So tariffs have achieved $10 trillion in losses to apparently solve a trade deficit valued at $1.2 trillion. Completely reasonable.
Garmin now wants to charge $69/year on top of their $1k+ watches to use Connect+
I can just see all the future features that would have been built in now getting pay walled. So disappointing.
I can just see all the future features that would have been built in now getting pay walled. So disappointing.
Garmin adds AI and a subscription tier to its app
It’s a reversal from Garmin’s previous stance toward paywalls, but at least existing features and data remain free.
www.theverge.com
March 29, 2025 at 7:36 PM
Garmin now wants to charge $69/year on top of their $1k+ watches to use Connect+
I can just see all the future features that would have been built in now getting pay walled. So disappointing.
I can just see all the future features that would have been built in now getting pay walled. So disappointing.
Good overview of NodeJS issue. Impacts v12 and below, which was EOL in mid-2022, so if you’re up to date on patching it’s not a problem.
“A critical vulnerability can occur in any software, but when it affects one of the most popular frameworks, it becomes particularly dangerous and can have severe consequences.” #javascript #coding #programming #opensource #developers #hacking #infosec #security #tech #news #technology
Critical security flaw uncovered in Next.js framework
A critical security flaw has been discovered in the popular Next.js framework, potentially impacting millions of websites and applications.
www.developer-tech.com
March 24, 2025 at 1:57 PM
Good overview of NodeJS issue. Impacts v12 and below, which was EOL in mid-2022, so if you’re up to date on patching it’s not a problem.
Skip that morning coffee and donate $5 to support my run to find a cure!
fundraise.cff.org/chicagomarat...
I’m running for Breathe Team at the 2025 Chicago Marathon to raise money for the Cystic Fibrosis Foundation.
Every donation, like, or repost helps!
fundraise.cff.org/chicagomarat...
I’m running for Breathe Team at the 2025 Chicago Marathon to raise money for the Cystic Fibrosis Foundation.
Every donation, like, or repost helps!
Russell's Fundraising Page at Chicago Marathon
Russell is running the Chicago Marathon in 2025 for Breathe Team! Support me as I run for this great cause to help those in need living with Cystic Fibrosis. Every amount makes a difference, I appreci...
fundraise.cff.org
February 28, 2025 at 2:17 PM
Skip that morning coffee and donate $5 to support my run to find a cure!
fundraise.cff.org/chicagomarat...
I’m running for Breathe Team at the 2025 Chicago Marathon to raise money for the Cystic Fibrosis Foundation.
Every donation, like, or repost helps!
fundraise.cff.org/chicagomarat...
I’m running for Breathe Team at the 2025 Chicago Marathon to raise money for the Cystic Fibrosis Foundation.
Every donation, like, or repost helps!
Reposted by Russell Devine
Apple removes its Advanced Data Protection (ADP) feature from customers in the UK after pressure from the government. Very troubling news.
ADP provides end-to-end encryption, allowing only account holders to view items such as photos or documents they have stored online.
ADP provides end-to-end encryption, allowing only account holders to view items such as photos or documents they have stored online.
Apple pulls data protection tool after UK government security row
Customers' photos and documents stored online will no longer be protected by end to end encryption.
www.bbc.com
February 21, 2025 at 3:52 PM
Apple removes its Advanced Data Protection (ADP) feature from customers in the UK after pressure from the government. Very troubling news.
ADP provides end-to-end encryption, allowing only account holders to view items such as photos or documents they have stored online.
ADP provides end-to-end encryption, allowing only account holders to view items such as photos or documents they have stored online.