Royce Williams
@tychotithonus.infosec.exchange.ap.brid.gy
Just doing my undue diligence.
ISP vet, password cracker (Team Hashcat), security demi-boffin, YubiKey stan, public-interest technologist, AK license plate […]
🌉 bridged from ⁂ https://infosec.exchange/@tychotithonus, follow @ap.brid.gy to interact
ISP vet, password cracker (Team Hashcat), security demi-boffin, YubiKey stan, public-interest technologist, AK license plate […]
🌉 bridged from ⁂ https://infosec.exchange/@tychotithonus, follow @ap.brid.gy to interact
TIL The Google Takeout backup I did in 2020, that I intended to explicitly include absolutely everything, does not include Gmail. (Not catastrophic, was just going to test against an older backup, and found it empty)
Check your backups, people.
Check your backups, people.
February 12, 2026 at 3:32 AM
TIL The Google Takeout backup I did in 2020, that I intended to explicitly include absolutely everything, does not include Gmail. (Not catastrophic, was just going to test against an older backup, and found it empty)
Check your backups, people.
Check your backups, people.
Turns out that Spicy Autocomplete works a lot like regular autocomplete:
* It works better if it has more samples of what people actually type -- the two edged sword of user benefit and privacy concerns, and
* If you don't check if it's right before you hit send ... _that's on you_.
* It works better if it has more samples of what people actually type -- the two edged sword of user benefit and privacy concerns, and
* If you don't check if it's right before you hit send ... _that's on you_.
February 11, 2026 at 5:30 PM
Turns out that Spicy Autocomplete works a lot like regular autocomplete:
* It works better if it has more samples of what people actually type -- the two edged sword of user benefit and privacy concerns, and
* If you don't check if it's right before you hit send ... _that's on you_.
* It works better if it has more samples of what people actually type -- the two edged sword of user benefit and privacy concerns, and
* If you don't check if it's right before you hit send ... _that's on you_.
Oh, my bad - I thought said "Gen-X programmer"
February 10, 2026 at 5:26 AM
Oh, my bad - I thought said "Gen-X programmer"
Reposted by Royce Williams
Dear #IOCX Community, big news!
After taking care of our small little corner of the Internet for the last 7+ years, I have decided to move on and transition the reigns.
Now the really good news: The great @jerry has graciously agreed to take care of #IOCX going forward.
@jerry , @tellyworth […]
After taking care of our small little corner of the Internet for the last 7+ years, I have decided to move on and transition the reigns.
Now the really good news: The great @jerry has graciously agreed to take care of #IOCX going forward.
@jerry , @tellyworth […]
Original post on ioc.exchange
ioc.exchange
February 8, 2026 at 2:31 AM
Dear #IOCX Community, big news!
After taking care of our small little corner of the Internet for the last 7+ years, I have decided to move on and transition the reigns.
Now the really good news: The great @jerry has graciously agreed to take care of #IOCX going forward.
@jerry , @tellyworth […]
After taking care of our small little corner of the Internet for the last 7+ years, I have decided to move on and transition the reigns.
Now the really good news: The great @jerry has graciously agreed to take care of #IOCX going forward.
@jerry , @tellyworth […]
Uh oh, @zackwhittaker is Back On His Bird B------- (and I say this with love, as I "Showed anyway" for every single one of these images, and left satisfied!)
![Mastodon filtered posts about birds, featuring the labels:
[Birds]
[Family]
[Swearing]
[Housing]
[Weather]
[Social-Justice]
[Chatter-Negativel
[Temperatures]
[Pets]
[Academic-Edu]
[Social-Justicel
[Finance-General]](https://cdn.bsky.app/img/feed_thumbnail/plain/did:plc:ich3qelna4fpa6yapw2wh3gy/bafkreigza64wbsprtzxuyfmdyodqsaccx4bd2ldfl4udi75oazz2n3aomq@jpeg)
February 8, 2026 at 1:47 AM
Uh oh, @zackwhittaker is Back On His Bird B------- (and I say this with love, as I "Showed anyway" for every single one of these images, and left satisfied!)
Reposted by Royce Williams
Got some Dark Reading coverage on my #cisa kEV musings. Check it.
https://www.darkreading.com/threat-intelligence/data-tool-triage-exploited-vulnerabilities-make-kev-catalog-more-useful
https://www.darkreading.com/threat-intelligence/data-tool-triage-exploited-vulnerabilities-make-kev-catalog-more-useful
February 7, 2026 at 12:26 AM
Got some Dark Reading coverage on my #cisa kEV musings. Check it.
https://www.darkreading.com/threat-intelligence/data-tool-triage-exploited-vulnerabilities-make-kev-catalog-more-useful
https://www.darkreading.com/threat-intelligence/data-tool-triage-exploited-vulnerabilities-make-kev-catalog-more-useful
Reposted by Royce Williams
RE: https://infosec.exchange/@BleepingComputer/116012476929633389
This is going to be really useful for #cybersecurity folks. Having this built into the OS opens up so many opportunities and I expect EDR and SIEM vendors will take note. I hope they start publishing their own Sysmon configs to […]
This is going to be really useful for #cybersecurity folks. Having this built into the OS opens up so many opportunities and I expect EDR and SIEM vendors will take note. I hope they start publishing their own Sysmon configs to […]
Original post on infosec.exchange
infosec.exchange
February 5, 2026 at 11:56 PM
RE: https://infosec.exchange/@BleepingComputer/116012476929633389
This is going to be really useful for #cybersecurity folks. Having this built into the OS opens up so many opportunities and I expect EDR and SIEM vendors will take note. I hope they start publishing their own Sysmon configs to […]
This is going to be really useful for #cybersecurity folks. Having this built into the OS opens up so many opportunities and I expect EDR and SIEM vendors will take note. I hope they start publishing their own Sysmon configs to […]
Reposted by Royce Williams
With insecure edge devices representing a frequent entry point for hackers, CISA is ordering agencies to update devices running unsupported software, report on their use of unsupported hardware, and eventually replace those devices. www.cisa.gov/news-events/...
February 5, 2026 at 5:35 PM
With insecure edge devices representing a frequent entry point for hackers, CISA is ordering agencies to update devices running unsupported software, report on their use of unsupported hardware, and eventually replace those devices. www.cisa.gov/news-events/...
Reposted by Royce Williams
CNN has a good story about why ODNI is out of its depth, including a comment from an expert on the specific concern that ODNI cited (voting machines' use of wireless modems). www.cnn.com/2026/02/04/p...
February 5, 2026 at 4:36 PM
CNN has a good story about why ODNI is out of its depth, including a comment from an expert on the specific concern that ODNI cited (voting machines' use of wireless modems). www.cnn.com/2026/02/04/p...
Reposted by Royce Williams
Sudo's maintainer needs resources to keep utility updated • The Register https://www.theregister.com/2026/02/03/sudo_maintainer_asks_for_help/?td=rt-3a
Sudo's maintainer needs resources to keep utility updated
updated: Many vital open source resources rely on the devotion of a few individuals
www.theregister.com
February 5, 2026 at 12:40 AM
Sudo's maintainer needs resources to keep utility updated • The Register https://www.theregister.com/2026/02/03/sudo_maintainer_asks_for_help/?td=rt-3a
Reposted by Royce Williams
RE: https://hachyderm.io/@miketheman/116008792409955286
When I say TOTP is phishable and webauthn (“passkeys”) isn’t, this is a real-world example of what I am talking about
When I say TOTP is phishable and webauthn (“passkeys”) isn’t, this is a real-world example of what I am talking about
hachyderm.io
February 3, 2026 at 10:59 PM
RE: https://hachyderm.io/@miketheman/116008792409955286
When I say TOTP is phishable and webauthn (“passkeys”) isn’t, this is a real-world example of what I am talking about
When I say TOTP is phishable and webauthn (“passkeys”) isn’t, this is a real-world example of what I am talking about
Apparently some of the people/AIs writing automatic articles about stock-price shifts and earnings announcements don't know the difference between "sales" and "revenue".
February 3, 2026 at 5:30 PM
Apparently some of the people/AIs writing automatic articles about stock-price shifts and earnings announcements don't know the difference between "sales" and "revenue".
Reposted by Royce Williams
Some dudes would rather clean up documentation for AI agents than make documentation easier to read for everyone, such as people
February 3, 2026 at 4:26 AM
Some dudes would rather clean up documentation for AI agents than make documentation easier to read for everyone, such as people
Reposted by Royce Williams
In 2025, 59 CVEs quietly flipped to “known ransomware use” in CISA’s KEV...no alerts, no fanfare. 🧐
We dug through a year of JSON to catch every silent flip and built an RSS feed so you don’t miss the next one.
Read the blog + grab the feed 🗞️ […]
We dug through a year of JSON to catch every silent flip and built an RSS feed so you don’t miss the next one.
Read the blog + grab the feed 🗞️ […]
Original post on infosec.exchange
infosec.exchange
February 2, 2026 at 7:32 PM
In 2025, 59 CVEs quietly flipped to “known ransomware use” in CISA’s KEV...no alerts, no fanfare. 🧐
We dug through a year of JSON to catch every silent flip and built an RSS feed so you don’t miss the next one.
Read the blog + grab the feed 🗞️ […]
We dug through a year of JSON to catch every silent flip and built an RSS feed so you don’t miss the next one.
Read the blog + grab the feed 🗞️ […]
Reposted by Royce Williams
Notepad++'s update mechanism was compromised from June to December 2025. They believe it was a state actor practicing selective targeting and not a no-hosts-refused malware gang situation. https://notepad-plus-plus.org/news/hijacked-incident-info-update/
Notepad遭国家支持的黑客劫持
Notepad hijacked by state-sponsored actors (notepad-plus-plus.org)
09:59 ↑ 182 HN Points
notepad-plus-plus.org
February 2, 2026 at 8:27 AM
Notepad++'s update mechanism was compromised from June to December 2025. They believe it was a state actor practicing selective targeting and not a no-hosts-refused malware gang situation. https://notepad-plus-plus.org/news/hijacked-incident-info-update/
Reba's head blocking the names of the departed, as the cameras cut back and forth among shots of her band ... isn't my idea of a respectful tribute.
February 2, 2026 at 3:43 AM
Reba's head blocking the names of the departed, as the cameras cut back and forth among shots of her band ... isn't my idea of a respectful tribute.
Today -- much later than should have been -- I learned about Hilda Faust Mathieu.
https://www.nsa.gov/History/Cryptologic-History/Historical-Figures/Historical-Figures-View/Article/1711598/hilda-faust-mathieu/
> Computer network pioneer Hilda Faust Mathieu […]
[Original post on infosec.exchange]
https://www.nsa.gov/History/Cryptologic-History/Historical-Figures/Historical-Figures-View/Article/1711598/hilda-faust-mathieu/
> Computer network pioneer Hilda Faust Mathieu […]
[Original post on infosec.exchange]
February 1, 2026 at 8:38 PM
Today -- much later than should have been -- I learned about Hilda Faust Mathieu.
https://www.nsa.gov/History/Cryptologic-History/Historical-Figures/Historical-Figures-View/Article/1711598/hilda-faust-mathieu/
> Computer network pioneer Hilda Faust Mathieu […]
[Original post on infosec.exchange]
https://www.nsa.gov/History/Cryptologic-History/Historical-Figures/Historical-Figures-View/Article/1711598/hilda-faust-mathieu/
> Computer network pioneer Hilda Faust Mathieu […]
[Original post on infosec.exchange]
Uh ... everyone knows that the instance that's geographically closest to you might be a much, much worse* choice than mastodon.social, right?
`*` for a wide variety of definitions of "worse"
`*` for a wide variety of definitions of "worse"
January 31, 2026 at 5:09 PM
Uh ... everyone knows that the instance that's geographically closest to you might be a much, much worse* choice than mastodon.social, right?
`*` for a wide variety of definitions of "worse"
`*` for a wide variety of definitions of "worse"
Now some cars have a "feature", where your reverse lights stay on for 60 seconds after you have departed the vehicle. 🤬
January 30, 2026 at 7:32 PM
Now some cars have a "feature", where your reverse lights stay on for 60 seconds after you have departed the vehicle. 🤬
Reposted by Royce Williams
When committing bash crimes..:
👎 set -euo pipefail
👍 set -o errexit -o nounset -o pipefail
(Give the person reading your script a fighting chance at being able to search the manual for exactly how the heck the cryptic header incantations are influencing shell behaviour in crucial and subtle […]
👎 set -euo pipefail
👍 set -o errexit -o nounset -o pipefail
(Give the person reading your script a fighting chance at being able to search the manual for exactly how the heck the cryptic header incantations are influencing shell behaviour in crucial and subtle […]
Original post on mastodon.social
mastodon.social
January 30, 2026 at 1:57 PM
When committing bash crimes..:
👎 set -euo pipefail
👍 set -o errexit -o nounset -o pipefail
(Give the person reading your script a fighting chance at being able to search the manual for exactly how the heck the cryptic header incantations are influencing shell behaviour in crucial and subtle […]
👎 set -euo pipefail
👍 set -o errexit -o nounset -o pipefail
(Give the person reading your script a fighting chance at being able to search the manual for exactly how the heck the cryptic header incantations are influencing shell behaviour in crucial and subtle […]
"Back of the napkin" implies that -- at least, back in the day when napkins were substantial -- the back surface is more suitable for writing because the front of the napkin has been used.
This implies a methodical, structured way of using the napkin -- and of really only needing one side of […]
This implies a methodical, structured way of using the napkin -- and of really only needing one side of […]
Original post on infosec.exchange
infosec.exchange
January 28, 2026 at 3:30 PM
"Back of the napkin" implies that -- at least, back in the day when napkins were substantial -- the back surface is more suitable for writing because the front of the napkin has been used.
This implies a methodical, structured way of using the napkin -- and of really only needing one side of […]
This implies a methodical, structured way of using the napkin -- and of really only needing one side of […]
"focused on delivering determinism and verifiable integrity to Linux systems"
_snort_
_snort_
January 28, 2026 at 4:35 AM
"focused on delivering determinism and verifiable integrity to Linux systems"
_snort_
_snort_
Turns out Zoom allows you to make your full name "omg your iphone is ordered, paypal alert, call [phone number to report fraud" ... so that's put in the subject line of Zoom invites. 😬
January 27, 2026 at 5:43 PM
Turns out Zoom allows you to make your full name "omg your iphone is ordered, paypal alert, call [phone number to report fraud" ... so that's put in the subject line of Zoom invites. 😬
Do I know anyone with the edu-level Digital Theatre+ access?
I'm looking to briefly verify quality of a specific title (BBC's Antigone (1986) starring Juliet Stevenson and John Shrapnel, from the "Theban Plays" series)
I'm looking to briefly verify quality of a specific title (BBC's Antigone (1986) starring Juliet Stevenson and John Shrapnel, from the "Theban Plays" series)
January 27, 2026 at 2:26 AM
Do I know anyone with the edu-level Digital Theatre+ access?
I'm looking to briefly verify quality of a specific title (BBC's Antigone (1986) starring Juliet Stevenson and John Shrapnel, from the "Theban Plays" series)
I'm looking to briefly verify quality of a specific title (BBC's Antigone (1986) starring Juliet Stevenson and John Shrapnel, from the "Theban Plays" series)
I somehow missed this Google Advanced Protection shift back in ... July 2024.
https://blog.google/innovation-and-ai/technology/safety-security/google-passkeys-advanced-protection-program/
> Starting today, high risk users can choose a passkey to secure their account in addition to the […]
https://blog.google/innovation-and-ai/technology/safety-security/google-passkeys-advanced-protection-program/
> Starting today, high risk users can choose a passkey to secure their account in addition to the […]
Original post on infosec.exchange
infosec.exchange
January 27, 2026 at 2:25 AM
I somehow missed this Google Advanced Protection shift back in ... July 2024.
https://blog.google/innovation-and-ai/technology/safety-security/google-passkeys-advanced-protection-program/
> Starting today, high risk users can choose a passkey to secure their account in addition to the […]
https://blog.google/innovation-and-ai/technology/safety-security/google-passkeys-advanced-protection-program/
> Starting today, high risk users can choose a passkey to secure their account in addition to the […]