Shecky (((Mike))) - Third Wheel
@siliconshecky.siliconshecky.com
N9HAK, Dad, CyberSecurity, National Anthem Singer, Ninja Warrior, Trainiac, "Life is like an Oreo cookie, Pass the beer nuts", Theatre person
Blog: siliconshecky.com
Blog: siliconshecky.com
Reposted by Shecky (((Mike))) - Third Wheel
It would be a huge mistake to keep thinking of China as the same cyber threat actor we were dealing with ten years ago. Let's talk about it.
See you on Thursday for a more in-depth discussion.
events.zoom.us/ev/AhsoFeh2O...
See you on Thursday for a more in-depth discussion.
events.zoom.us/ev/AhsoFeh2O...
November 11, 2025 at 6:03 PM
It would be a huge mistake to keep thinking of China as the same cyber threat actor we were dealing with ten years ago. Let's talk about it.
See you on Thursday for a more in-depth discussion.
events.zoom.us/ev/AhsoFeh2O...
See you on Thursday for a more in-depth discussion.
events.zoom.us/ev/AhsoFeh2O...
Reposted by Shecky (((Mike))) - Third Wheel
Good analysis from @veracode.bsky.social on this typosquat GitHub actions package.
www.veracode.com/blog/malicio...
www.veracode.com/blog/malicio...
Malicious NPM Package Found Targeting GitHub By Typosquatting on GitHub Action Packages | Veracode
Application Security for the AI Era | Veracode
www.veracode.com
November 11, 2025 at 2:49 PM
Good analysis from @veracode.bsky.social on this typosquat GitHub actions package.
www.veracode.com/blog/malicio...
www.veracode.com/blog/malicio...
Reposted by Shecky (((Mike))) - Third Wheel
And as you put together your talks for next year, keep in mind that a lot of events (especially BSides and other local conferences) have tons of people who are new to the field. There's a need for talks about fundamentals. Explaining the CIS Top Controls will often do more good than l33t tool drops.
November 10, 2025 at 7:29 PM
And as you put together your talks for next year, keep in mind that a lot of events (especially BSides and other local conferences) have tons of people who are new to the field. There's a need for talks about fundamentals. Explaining the CIS Top Controls will often do more good than l33t tool drops.
Reposted by Shecky (((Mike))) - Third Wheel
Great people, great times!
Great news! We're thrilled to announce that @zscalerinc.bsky.social has generously volunteered to sponsor our upcoming #burbsecsouth meetup.
Join us this Thursday November 13th, at Prime-Time Restaurant, 95th St., #HickoryhillsIL Start time is 6pm so join us.
Join us this Thursday November 13th, at Prime-Time Restaurant, 95th St., #HickoryhillsIL Start time is 6pm so join us.
a man is making a funny face with the words it 's gonna hit so hard
ALT: a man is making a funny face with the words it 's gonna hit so hard
media.tenor.com
November 9, 2025 at 10:00 PM
Great people, great times!
Reposted by Shecky (((Mike))) - Third Wheel
After gutting various cybersecurity offices and firing experienced employees, Dear Leader restarted the programs from scratch, staffed with his usual level of competence.
As evidenced by the CBO getting hacked by foreign agents today.
As evidenced by the CBO getting hacked by foreign agents today.
November 6, 2025 at 10:42 PM
After gutting various cybersecurity offices and firing experienced employees, Dear Leader restarted the programs from scratch, staffed with his usual level of competence.
As evidenced by the CBO getting hacked by foreign agents today.
As evidenced by the CBO getting hacked by foreign agents today.
ChatGPT has new security issues found by a couple researchers. This includes one that bypasses the url_safe feature using Bing tracking links.
hackread.com/chatgpt-vuln...
hackread.com/chatgpt-vuln...
New ChatGPT Vulnerabilities Let Hackers Steal Data, Hijack Memory
Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread
hackread.com
November 6, 2025 at 10:29 PM
ChatGPT has new security issues found by a couple researchers. This includes one that bypasses the url_safe feature using Bing tracking links.
hackread.com/chatgpt-vuln...
hackread.com/chatgpt-vuln...
Reposted by Shecky (((Mike))) - Third Wheel
Russia-linked 'Curly COMrades' turn to malicious virtual machines for digital spy campaigns #cybersecurity #hacking #news #infosec #security #technology #privacy
Russia-linked 'Curly COMrades' turn to malicious virtual machines for digital spy campaigns
A cyber-espionage operation installed lightweight virtual machines to evade detection, researchers said, in the latest sign of Russia-linked hackers adapting their tactics.
therecord.media
November 6, 2025 at 10:01 PM
Russia-linked 'Curly COMrades' turn to malicious virtual machines for digital spy campaigns #cybersecurity #hacking #news #infosec #security #technology #privacy
Reposted by Shecky (((Mike))) - Third Wheel
New full container breakouts in runc just dropped. Three of them! High severity! Patch 'em while they're hot!
oss-sec: runc container breakouts via procfs writes: CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881
seclists.org
November 6, 2025 at 7:38 PM
New full container breakouts in runc just dropped. Three of them! High severity! Patch 'em while they're hot!
Reposted by Shecky (((Mike))) - Third Wheel
I paid attention to the #InfoSec & #DataPrivacy news from over the weekend so you wouldn't have to!
Read, "What'd I Miss? InfoSec Weekend News Roundup for October 24-26, 2025"
sherpaintelligence.substack.com/p/whatd-i-mi...
Curated by Sherpa Intelligence: Your Guide Up a Mountain of Information!
Read, "What'd I Miss? InfoSec Weekend News Roundup for October 24-26, 2025"
sherpaintelligence.substack.com/p/whatd-i-mi...
Curated by Sherpa Intelligence: Your Guide Up a Mountain of Information!
What'd I Miss? InfoSec Weekend News Roundup for October 24-26, 2025
I paid attention to the Information Security and Data Privacy news from over the weekend so you wouldn't have to! Curated for you by Sherpa Intelligence: Your Guide Up a Mountain of Information!
sherpaintelligence.substack.com
October 27, 2025 at 5:52 PM
I paid attention to the #InfoSec & #DataPrivacy news from over the weekend so you wouldn't have to!
Read, "What'd I Miss? InfoSec Weekend News Roundup for October 24-26, 2025"
sherpaintelligence.substack.com/p/whatd-i-mi...
Curated by Sherpa Intelligence: Your Guide Up a Mountain of Information!
Read, "What'd I Miss? InfoSec Weekend News Roundup for October 24-26, 2025"
sherpaintelligence.substack.com/p/whatd-i-mi...
Curated by Sherpa Intelligence: Your Guide Up a Mountain of Information!
Reposted by Shecky (((Mike))) - Third Wheel
So about the WSUS vuln.
Looking at the stack trace in this writeup: is the structure of `Microsoft.UpdateServices.Internal.SoapUtilities.DeserializeObject` unique to WSUS? Or could other DeserializeObject functions in MS web services have a similar issue?
Looking at the stack trace in this writeup: is the structure of `Microsoft.UpdateServices.Internal.SoapUtilities.DeserializeObject` unique to WSUS? Or could other DeserializeObject functions in MS web services have a similar issue?
WSUS Deserialization Exploit in the Wild (CVE‑2025‑59287)
First reported by Eye Security, this WSUS CVE exposes a major weakness in Microsoft’s update mechanism. Read our full analysis to understand the discovery, proof-of-concept, and recommended defenses.
research.eye.security
October 25, 2025 at 9:27 PM
So about the WSUS vuln.
Looking at the stack trace in this writeup: is the structure of `Microsoft.UpdateServices.Internal.SoapUtilities.DeserializeObject` unique to WSUS? Or could other DeserializeObject functions in MS web services have a similar issue?
Looking at the stack trace in this writeup: is the structure of `Microsoft.UpdateServices.Internal.SoapUtilities.DeserializeObject` unique to WSUS? Or could other DeserializeObject functions in MS web services have a similar issue?
Reposted by Shecky (((Mike))) - Third Wheel
There are only two possibilities here:
1. Our military is now being paid by private anonymous donors instead of the government.
2. Trump is lying about this fact (to what end I cannot imagine).
Both are really bad for democracy.
1. Our military is now being paid by private anonymous donors instead of the government.
2. Trump is lying about this fact (to what end I cannot imagine).
Both are really bad for democracy.
If members of the United States military are truly being paid their salaries by a private individual, the American people should know who that individual is. Now.
October 25, 2025 at 3:44 PM
There are only two possibilities here:
1. Our military is now being paid by private anonymous donors instead of the government.
2. Trump is lying about this fact (to what end I cannot imagine).
Both are really bad for democracy.
1. Our military is now being paid by private anonymous donors instead of the government.
2. Trump is lying about this fact (to what end I cannot imagine).
Both are really bad for democracy.
Reposted by Shecky (((Mike))) - Third Wheel
Reposted by Shecky (((Mike))) - Third Wheel
Carney: "We can't control the trade policy of the US. We recognize it has fundamentally changed from the policy in the 1980s, 1990s, 2000s, & it's a situation where US has tariffs against every trading partner... what we we can control is developing new partnerships, including w/econ giants of Asia"
October 24, 2025 at 2:02 PM
Carney: "We can't control the trade policy of the US. We recognize it has fundamentally changed from the policy in the 1980s, 1990s, 2000s, & it's a situation where US has tariffs against every trading partner... what we we can control is developing new partnerships, including w/econ giants of Asia"
We never actually fix security problem, just stop one vector of that style of attack and then focus on other things, which allows the attack to come back eventually. Rinse, Lather, Repeat.
a man in a suit says to rinse and repeat in a netflix ad
Alt: a man in a suit says to rinse and repeat in a netflix ad
media.tenor.com
October 24, 2025 at 2:48 PM
We never actually fix security problem, just stop one vector of that style of attack and then focus on other things, which allows the attack to come back eventually. Rinse, Lather, Repeat.
Reposted by Shecky (((Mike))) - Third Wheel
Strong systems
should be
resilient,
resistant to
failure,
tolerant of
faults.
But when they fail,
they fail with
grace,
gently,
as a falling leaf
alighting
on the ground.
I wonder sometimes
what it would mean
if strong men
should be
graceful,
tolerant,
gentle as a leaf.
#protocolpoems
should be
resilient,
resistant to
failure,
tolerant of
faults.
But when they fail,
they fail with
grace,
gently,
as a falling leaf
alighting
on the ground.
I wonder sometimes
what it would mean
if strong men
should be
graceful,
tolerant,
gentle as a leaf.
#protocolpoems
October 23, 2025 at 5:58 PM
Strong systems
should be
resilient,
resistant to
failure,
tolerant of
faults.
But when they fail,
they fail with
grace,
gently,
as a falling leaf
alighting
on the ground.
I wonder sometimes
what it would mean
if strong men
should be
graceful,
tolerant,
gentle as a leaf.
#protocolpoems
should be
resilient,
resistant to
failure,
tolerant of
faults.
But when they fail,
they fail with
grace,
gently,
as a falling leaf
alighting
on the ground.
I wonder sometimes
what it would mean
if strong men
should be
graceful,
tolerant,
gentle as a leaf.
#protocolpoems
Reposted by Shecky (((Mike))) - Third Wheel
Thank you to everyone at the #NO_KINGS rallies for making your voices heard & being part of history.
The massive crowds were joyful, passionate & spectacular!
So were the signs...
The massive crowds were joyful, passionate & spectacular!
So were the signs...
October 19, 2025 at 4:49 PM
Thank you to everyone at the #NO_KINGS rallies for making your voices heard & being part of history.
The massive crowds were joyful, passionate & spectacular!
So were the signs...
The massive crowds were joyful, passionate & spectacular!
So were the signs...
Reposted by Shecky (((Mike))) - Third Wheel
If you think my use of “y’all” is a dogwhistle, you’re a fucking dipshit.
We gotta stop politicizing and moralizing accents and where people live.
Y’ALL IS A GREAT GENDER NEUTRAL WAY TO ADDRESS A GROUP.
I’m begging y’all to leave me out of your stupid discourse.
We gotta stop politicizing and moralizing accents and where people live.
Y’ALL IS A GREAT GENDER NEUTRAL WAY TO ADDRESS A GROUP.
I’m begging y’all to leave me out of your stupid discourse.
October 19, 2025 at 8:31 PM
If you think my use of “y’all” is a dogwhistle, you’re a fucking dipshit.
We gotta stop politicizing and moralizing accents and where people live.
Y’ALL IS A GREAT GENDER NEUTRAL WAY TO ADDRESS A GROUP.
I’m begging y’all to leave me out of your stupid discourse.
We gotta stop politicizing and moralizing accents and where people live.
Y’ALL IS A GREAT GENDER NEUTRAL WAY TO ADDRESS A GROUP.
I’m begging y’all to leave me out of your stupid discourse.
I just want a coffee house near me that is open in the evening for reading/studying. Nothing beats a good cappuccino while doing that.
October 19, 2025 at 10:26 PM
I just want a coffee house near me that is open in the evening for reading/studying. Nothing beats a good cappuccino while doing that.
Today's after workout obstacle, the A frame. Been a while. This was after 3 sets of each station. 6:30 time at each station. Getting there. #push4progress #wehackhealth
October 18, 2025 at 2:09 PM
Today's after workout obstacle, the A frame. Been a while. This was after 3 sets of each station. 6:30 time at each station. Getting there. #push4progress #wehackhealth
Interesting attack against Microsoft Defender for Endpoint. Not sure how practical it is, but definitely something to keep eyes on this still unpatched issue.
#Microsoft #Defender
buff.ly/b5cdAe8
#Microsoft #Defender
buff.ly/b5cdAe8
Analyzing and Breaking Defender for Endpoint's Cloud Communication - InfoGuard Labs
Attacking EDRs Part 5 - Multiple vulnerabilities are present in the communication of Defender for Endpoint with cloud APIs. Authentication bypass, spoofing of commands and data, uploading malicious…
labs.infoguard.ch
October 17, 2025 at 1:27 PM
Interesting attack against Microsoft Defender for Endpoint. Not sure how practical it is, but definitely something to keep eyes on this still unpatched issue.
#Microsoft #Defender
buff.ly/b5cdAe8
#Microsoft #Defender
buff.ly/b5cdAe8
Reposted by Shecky (((Mike))) - Third Wheel
It may be the case that nation state threat actors do target tech over government. But non-normalized number of attacks is a poor indicator of targeting prioritization.
October 16, 2025 at 5:25 PM
It may be the case that nation state threat actors do target tech over government. But non-normalized number of attacks is a poor indicator of targeting prioritization.
Reposted by Shecky (((Mike))) - Third Wheel
It is time to look at another great talk from the 2025 BSides312 event. In this one, Olivia Gallucci talks about unlocking MacOS internals. They explain it form a standpoint of breaking down Apple's open source ecosystem.
#BSides #BSides312 #MacOS
www.youtube.com/watch?v=WKJ2...
#BSides #BSides312 #MacOS
www.youtube.com/watch?v=WKJ2...
Unlocking MacOS Internals - Olivia Gallucci - BSides312 2025
Unlocking macOS Internals: A Beginner's Guide to Apple's Open Source Code
"Have you ever wondered how macOS and iOS work under the hood? While Apple is known for its closed ecosystem, did you know…
www.youtube.com
October 16, 2025 at 5:05 PM
It is time to look at another great talk from the 2025 BSides312 event. In this one, Olivia Gallucci talks about unlocking MacOS internals. They explain it form a standpoint of breaking down Apple's open source ecosystem.
#BSides #BSides312 #MacOS
www.youtube.com/watch?v=WKJ2...
#BSides #BSides312 #MacOS
www.youtube.com/watch?v=WKJ2...
What to do after a great Wild West Hackin Fest? Get up on 3 hours sleep and work the Chicago Marathon as a ham radio operator.
October 12, 2025 at 11:56 AM
What to do after a great Wild West Hackin Fest? Get up on 3 hours sleep and work the Chicago Marathon as a ham radio operator.
Reposted by Shecky (((Mike))) - Third Wheel
Good news, everyone!
We have an official date for our next event -- the fifth annual BSides Buffalo will be at Canisius University on June 6, 2026! Follow this account and watch this space for our updated sponsorship packet and more details. Hope to see you there!
We have an official date for our next event -- the fifth annual BSides Buffalo will be at Canisius University on June 6, 2026! Follow this account and watch this space for our updated sponsorship packet and more details. Hope to see you there!
October 10, 2025 at 2:47 PM
Good news, everyone!
We have an official date for our next event -- the fifth annual BSides Buffalo will be at Canisius University on June 6, 2026! Follow this account and watch this space for our updated sponsorship packet and more details. Hope to see you there!
We have an official date for our next event -- the fifth annual BSides Buffalo will be at Canisius University on June 6, 2026! Follow this account and watch this space for our updated sponsorship packet and more details. Hope to see you there!
For some reason the low count to poison does not surprise me. It should though.
www.theregister.com/2025/10/09/i...
www.theregister.com/2025/10/09/i...
Data quantity doesn't matter when poisoning an LLM
: Just 250 malicious training documents can poison a 13B parameter model - that's 0.00016% of a whole dataset
www.theregister.com
October 10, 2025 at 1:53 PM
For some reason the low count to poison does not surprise me. It should though.
www.theregister.com/2025/10/09/i...
www.theregister.com/2025/10/09/i...