Cybersecurity cannot be a partisan issue. This kind of weaponization of the federal government is unacceptable. I stand with @thekrebscycle.bsky.social
www.eff.org/deeplinks/20...
www.eff.org/deeplinks/20...
Cybersecurity Community Must Not Remain Silent On Executive Order Attacking Former CISA Director
Cybersecurity professionals and the infosec community have essential roles to play in protecting our democracy, securing our elections, and building, testing, and safeguarding government infrastructur...
www.eff.org
April 12, 2025 at 9:04 PM
Cybersecurity cannot be a partisan issue. This kind of weaponization of the federal government is unacceptable. I stand with @thekrebscycle.bsky.social
www.eff.org/deeplinks/20...
www.eff.org/deeplinks/20...
Airline crashes in the US are pretty much normal in 2025, and have been decreasing steadily ... despite the media coverage www.ntsb.gov/safety/data/...
March 30, 2025 at 4:58 PM
Airline crashes in the US are pretty much normal in 2025, and have been decreasing steadily ... despite the media coverage www.ntsb.gov/safety/data/...
Reposted by jcran
Threat actors are actively exploiting a new vulnerability in Palo Alto Networks firewalls
viz.greynoise.io/tags/palo-al...
Assetnote write-up on CVE-2025-0108: an Nginx/Apache path confusion vulnerability that can lead to an authentication bypass
www.assetnote.io/resources/re...
viz.greynoise.io/tags/palo-al...
Assetnote write-up on CVE-2025-0108: an Nginx/Apache path confusion vulnerability that can lead to an authentication bypass
www.assetnote.io/resources/re...
February 14, 2025 at 12:39 PM
Threat actors are actively exploiting a new vulnerability in Palo Alto Networks firewalls
viz.greynoise.io/tags/palo-al...
Assetnote write-up on CVE-2025-0108: an Nginx/Apache path confusion vulnerability that can lead to an authentication bypass
www.assetnote.io/resources/re...
viz.greynoise.io/tags/palo-al...
Assetnote write-up on CVE-2025-0108: an Nginx/Apache path confusion vulnerability that can lead to an authentication bypass
www.assetnote.io/resources/re...
Reposted by jcran
www.gofundme.com/f/support-ma...
CJ is an old friend and a longtime cDc NSF member. He suffered a fall and broke his neck -- his insurance refused to pay for an MRI, which led to the break going undiagnosed for a couple of weeks, until his vertebrae had degraded to the point of quadriplegia.
CJ is an old friend and a longtime cDc NSF member. He suffered a fall and broke his neck -- his insurance refused to pay for an MRI, which led to the break going undiagnosed for a couple of weeks, until his vertebrae had degraded to the point of quadriplegia.
Donate to Support Marc Rogers' Road to Recovery, organized by Katie Vogel
cjunkie (Marc Rogers) is an invaluable and beloved member of our hacker community: a… Katie Vogel needs your support for Support Marc Rogers' Road to Recovery
www.gofundme.com
January 6, 2025 at 6:47 PM
www.gofundme.com/f/support-ma...
CJ is an old friend and a longtime cDc NSF member. He suffered a fall and broke his neck -- his insurance refused to pay for an MRI, which led to the break going undiagnosed for a couple of weeks, until his vertebrae had degraded to the point of quadriplegia.
CJ is an old friend and a longtime cDc NSF member. He suffered a fall and broke his neck -- his insurance refused to pay for an MRI, which led to the break going undiagnosed for a couple of weeks, until his vertebrae had degraded to the point of quadriplegia.
Reposted by jcran
It's Baaaaaack!!
Our Credit Card Canarytokens are out of beta and on your Canarytoken servers..
- Grab one;
- Stash it somewhere "safe";
- We will notify you if it's ever used!
Read more about it at blog.thinkst.com/2024/12/its-...
Our Credit Card Canarytokens are out of beta and on your Canarytoken servers..
- Grab one;
- Stash it somewhere "safe";
- We will notify you if it's ever used!
Read more about it at blog.thinkst.com/2024/12/its-...
December 2, 2024 at 5:56 PM
It's Baaaaaack!!
Our Credit Card Canarytokens are out of beta and on your Canarytoken servers..
- Grab one;
- Stash it somewhere "safe";
- We will notify you if it's ever used!
Read more about it at blog.thinkst.com/2024/12/its-...
Our Credit Card Canarytokens are out of beta and on your Canarytoken servers..
- Grab one;
- Stash it somewhere "safe";
- We will notify you if it's ever used!
Read more about it at blog.thinkst.com/2024/12/its-...
Reposted by jcran
DualCore and I spoke at the Red Team Village this year. Here are the slides. QR code with link to gist with all the reference links on last page. Unfortunately it wasn't recorded.
docs.google.com/presentation...
#redteam #purpleteam #redteamvillage
docs.google.com/presentation...
#redteam #purpleteam #redteamvillage
Modern Red Teaming: macOS, K8s, and Cloud - RTV 24 (Public)
Modern Red Teaming: macOS, K8s, and Cloud Carnal0wnage int0x80
docs.google.com
November 24, 2024 at 7:35 PM
DualCore and I spoke at the Red Team Village this year. Here are the slides. QR code with link to gist with all the reference links on last page. Unfortunately it wasn't recorded.
docs.google.com/presentation...
#redteam #purpleteam #redteamvillage
docs.google.com/presentation...
#redteam #purpleteam #redteamvillage
Reposted by jcran
tired: "large language models are stochastic parrots"
wired: mechanistic interpretability showing evidence of abstraction, generalization, motivation, and reasoning
wired: mechanistic interpretability showing evidence of abstraction, generalization, motivation, and reasoning
November 21, 2024 at 2:17 AM
tired: "large language models are stochastic parrots"
wired: mechanistic interpretability showing evidence of abstraction, generalization, motivation, and reasoning
wired: mechanistic interpretability showing evidence of abstraction, generalization, motivation, and reasoning
Reposted by jcran
when was the last time you checked how well your guest wifi is segmented?
Russian spies—likely Russia's GRU intelligence agency—used a new trick to hack a victim in Washington, DC: They remotely infected another network in a building across the street, hijacked a laptop there, then breached the target organization via its Wifi. www.wired.com/story/russia...
Russian Spies Jumped From One Network to Another Via Wi-Fi in an Unprecedented Hack
In a first, Russia's APT28 hacking group appears to have remotely breached the Wi-Fi of an espionage target by hijacking a laptop in another building across the street.
www.wired.com
November 22, 2024 at 10:22 PM
when was the last time you checked how well your guest wifi is segmented?
Reposted by jcran
This is neat! Super clever name too 🙃
Since I'm trying out #Bluesky, I figured I should add in support for it in Unfurl!
The v2024.11.20 release has some minor updates, but the biggest feature is the ability to parse a timestamp from Bluesky post IDs (or atproto TIDs).
Example: dfir.blog/unfurl/?url=...
Give it a try at unfurl.link!
The v2024.11.20 release has some minor updates, but the biggest feature is the ability to parse a timestamp from Bluesky post IDs (or atproto TIDs).
Example: dfir.blog/unfurl/?url=...
Give it a try at unfurl.link!
November 22, 2024 at 11:12 PM
This is neat! Super clever name too 🙃
and the python version, if that's more your jam gist.github.com/jcran/adc8d7...
November 19, 2024 at 10:00 PM
and the python version, if that's more your jam gist.github.com/jcran/adc8d7...
slightly adjusted to check for case insensitive mentions: gist.github.com/jcran/fc80e0.... More about Jetstream here: docs.bsky.app/blog/jetstream
November 19, 2024 at 2:00 PM
slightly adjusted to check for case insensitive mentions: gist.github.com/jcran/fc80e0.... More about Jetstream here: docs.bsky.app/blog/jetstream
