Cyber attacks - the stores should have known better What the attack are, why they happened, impact for customers and what should be done to prevent such attacks in the future.

Thank you to @coffeefueled.org for this guest post Cyber attacks – the stores should have known better thecomplainingcow.co.uk/cyber-attack...

He explains what the attack are, why they happened impact for customers and what should be done to prevent such attacks in the future.

Hack Glasgow 2025: James Bore - Blame the Parents

My talk from last weekend's Hack Glasgow event. The parents being blamed are mostly metaphorical.

This one has a very subtle message and agenda, as you can probably tell.

youtu.be/RcA5XW0GWm4...

@scottmcgready.bsky.social

Can it add journalists to the chat?

Yep. Not just in OSINT. We're going to keep seeing this pattern cropping up until people realise that AI doesn't think.

Like a drunk at the bar or a politician, it just confidently blathers.

Enjoyed @coffeefueled.org talk at Hackademia 2025 this morning.

His advice is to:
Stop new shit..... apart from his book.....you can buy that.

What the Nose Knows: How a Neuroscience-Inspired Game Makes Scents | HackerNoon What do board games, neuroscience, brain hacking, and common scents have in common? The answer is WHIFF, a prototype board game developed by neuroscientists.

First of a number of articles I'm putting together on the Festival International des Jeux in Cannes this year. Particularly enjoyed this one, had a really good smell about it.

hackernoon.com/what-the-nos...

Just had an AI generated sales call supposedly from British gas.

I can't quite explain the irrational rage that overcame me, but I am now completely against ever using British Gas or recommending them under any circumstances.

It'd be nice to be responsible for something positive for once!

Boring On - Episode 1: Unforgivable Vulnerabilities YouTube video by Boring On: Walking the Talk in Security

Heard about the NCSC paper on forgivable and unforgivable vulnerabilities?

Join our walk and talk on the fuss with the brand new Boring On podcast, available on YouTube and most podcast platforms.

youtu.be/vu3MUXDZkP4?...

Delighted and excited to announce that on the 15th of March I will be up in Lancaster to speak at LUHack's Hackademia 2025 event at Lancaster University.

It's a talk that I think has been needed for a long time in the cyber security industry, "Stop Buying New Sh!t".

#SiliconSnakeOil #MoneyPits

There are lots of things I've done and achieved that I'm quite proud of, but in this moment I'd struggle to name one that's given more of a feeling of triumph than successfully fixing the vacuum cleaner the night before we were going to take it to the repair cafe.

Scammers getting really lazy. Just had a phone call with a bad text-to-voice message.

"I'm a recruiter from Indeed UK. We are interested in your resume but unable to contact you. Please write to us via WhatsApp."

Ignoring other issues, phoning me to say you can't contact me is an odd move.

Microsoft probing DeepSeek-tied group over OpenAI data gathering method: Report Microsoft security researchers have reportedly found a large-scale data extraction from OpenAI’s API linked to a DeepSeek-affiliated group.

Oh I see. *Now* intellectual property matters.

cointelegraph.com/news/microsoft-openai-pr...

Saw the crows on the walk around the lake today and said hello, then a heron spotted waiting to annoy the anglers.

Gamify Your Training To De-Risk Digital And AI Projects Serious games use play to make technical concepts accessible and foster an innovative mindset for tackling real-world problems. It's more than a trend. It's a movement.

www.forbes.com/sites/abigai...

I'm good with no algorithm and just going with chaos instead.

On today's walk around the lake, after initial hesitation all three crows came down to collect monkey nuts. Progress is slow but steady.

Depending on the details, yes. Worked with Sharepoint for longer than I care to think about - happy to go to DM to discuss but can't message you directly.

Then paying or not makes no difference anyway.

I think it's a discussion that requires more nuance than just ban/don't ban, but my main concerns are around encouraging coverups as a consequence rather than state actors who don't care about the ransom anyway.

Just had to buy a new batch of ISBNs for Security Blend Books with the upcoming publications (securityblendbooks.com).

Ended up going with 100 rather than 10 because it's only just over twice as much, and 10 would leave no spares.

So I guess I need to get more manuscripts in to review.

Remote-controlled sex toys could be hacked to harm users, UK government warns Cyberattackers could deliberately cause the device to overheat

I wish this story was a joke.

Not because the vulnerabilities they're talking about don't exist, but they're talking about the weakness of the BLE connection.

The range of BLE is up to 100 metres. This is not a plausible threat.

www.independent.co.uk/tech/sex-toy...

I can live with the qualitative standard of being less stressed than trying desperately to find a quantitative measure.

I have taken several years to move away from measuring my life - steps, language lessons, standing up, drinking water, workouts, heart rate, sleep, etc.

The unexamined life may not be worth living, but the unmeasured life is so, so much better than having metrics for everything.

Enjoy!

The Cyber Circuit - EBook – Security Blend Books Collecting five years of James Bore's articles on cyber security from the excellent Circuit Magazine, along with some extras, this anthology runs through a range of topics from the fundamentals to AI-powered misinformation and rogue autonomous vehicles. Clear and understandable this is an excellent resource for anyone

Giving away 100 copies of my book (book version) for 2025. The code will work for the first 100, or the end of January 1st 2025.

securityblendbooks.com/discount/HAPPYNEWYEAR

Secret (sort of) project finished just in time for Christmas.