Lotus Wiper: a new threat targeting the energy and utilities sector Kaspersky researchers analyze the attack chain of a highly destructive Lotus Wiper that can be linked to a targeted attack on the energy and utilities sector.

interesting wiper uploaded from Venezuela

"In light of geopolitical tensions that occurred in the Caribbean region...artifacts associated with the attack chain of a destructive wiping campaign targeting the energy and utilities sector in Venezuela were identified"

securelist.com/tr/lotus-wip...

With the help of the Sandy Hook families, The Onion has reached a long-awaited deal to take over InfoWars.

We've enlisted the help of @timheidecker.bsky.social, who will be InfoWars' Creative Director.

Please stand by for more.

Senate extends controversial surveillance program used by U.S. spy agencies The Senate approved a short-term renewal until April 30. The measure cleared the Senate by voice vote, without a formal roll call, as Congress raced to meet a Monday deadline. It now heads to Presiden...

Congress quietly reauthorized a surveillance program that spies on Americans no roll call, no accountability, just a voice vote at midnight. The Senate rubber-stamped the extension until April 30, buying themselves less than two weeks before they have to do this all over again.

Journalists live for details. Nailing that the FBI Director allegedly ties one on at a club called "The Poodle Room" is the stuff of dream reporting.

from 793, but meow?

that wasnt the start of an SNL sketch?

John Scott-Railton on X: "BREAKING: You checked the weather this morning. And you just told a surveillance company where you sleep. Meet #Webloc, used by ICE, cops & foreign govs to track 500m+ phones. No warrant required. Our latest @citizenlab investigation + how to protect yourself 🧵/1 https://t.co/Tk0WWyCUnP" / X BREAKING: You checked the weather this morning. And you just told a surveillance company where you sleep. Meet #Webloc, used by ICE, cops & foreign govs to track 500m+ phones. No warrant required. Our latest @citizenlab investigation + how to protect yourself 🧵/1 https://t.co/Tk0WWyCUnP

x.com/jsrailton/st...

The Implementation Blind Spot | Why Organizations Are Confusing Temporary Friction with Permanent Safety Our new blog post explores the ‘cognitive rust belt’ — how AI friction masks skill loss and why organizations must act now.

are you developing a cognitive rust belt in your org with reliance on AI?

www.sentinelone.com/blog/the-imp...

RIP, Sergey

tlpblack.net/blog/2026031...

Pi Day? What an irrational idea

Is Now on VT! on X: "Although none of the Coruna hashes mentioned by Google and iVerify are on @virustotal just yet, we uploaded a number of samples from live exploit kit harvesting, using the URLs from the @ValidinLLC blog and also samples shared by @matteyeux on GitHub. Here's a list of" / X Although none of the Coruna hashes mentioned by Google and iVerify are on @virustotal just yet, we uploaded a number of samples from live exploit kit harvesting, using the URLs from the @ValidinLLC blog and also samples shared by @matteyeux on GitHub. Here's a list of

Although none of the Coruna hashes mentioned by Google and iVerify are on
@virustotal
just yet, we uploaded a number of samples from live exploit kit harvesting, using the URLs from the
@ValidinLLC
blog and also samples shared by
@matteyeux
on GitHu...

x.com/Now_on_VT/st...

These ridiculous mega-projects like "datacenters in space" (doomed by thermodynamics) make a LOT more sense when you realize they're massive Ponzi schemes designed to transfer wealth from pension funds to VC's through "fee stacking."

It's the old Assets Under Management con. It should be illegal.

If you are a resident of California, the state now has a portal where you can demand deletion of your personal data from 500+ registered data brokers with a single request form, for free.

consumer.drop.privacy.ca.gov

MatrixLLC sanctioned "for their acquisition and distribution of cyber tools harmful to U.S. national security". it appears that they acquired eight stolen 0day and/or "tools" and sold to non-NATO

home.treasury.gov/news/press-r...

Russia charges Telegram founder Pavel Durov with facilitating terrorism as the Kremlin escalates its crackdown on the app — Meduza Russia has opened a criminal investigation into Telegram founder Pavel Durov on charges of facilitating terrorist activity, according to articles published February 24 in the nation’s newspaper…

Russia has reportedly launched a criminal investigation into Telegram founder Pavel Durov, accusing him of enabling "terrorist activity." This follows months of "traffic degradation" and attempts to move the public to Max, a state-sponsored alternative. meduza.io/en/feature/2...

I don’t understand how people can say the billionaires are out of touch, this person has obviously studied humans.

you brought his search history to bluesky? you are the pam bondi of playground romance committee

Epstein is mentioned very often in the Trump files.

AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty) — LessWrong This is a partial follow-up to AISLE discovered three new OpenSSL vulnerabilities from October 2025. …

Have we reached the stage of “many AIs make all bugs shallow”?
Great writeup on AI, open source, & bug bounties by @stanislavfort.bsky.social cofounder of AISLE.

“Mass adoption collapsed the median quality (“slop” killed bug bounty..) but.. raised the ceiling”

www.lesswrong.com/posts/7aJwgb...

ghidrav12 pyghidra problems?
pip/pip3, versioning, virtual environments?

unpopular opinion - python still sucks

if only they collected a royalty every time that thing showed up. or they could have charged per pew...

the related propublica link is here

www.propublica.org/article/the-...

Predator iOS Spyware: Undocumented Anti-Analysis Techniques Jamf Threat Labs reveals Predator spyware's sophisticated anti-analysis capabilities including error code taxonomy, crash monitoring and detection evasion.

www.jamf.com/blog/predato...

Cyberattack Targeting Poland’s Energy Grid Used a Wiper A cyberattack that targeted power plants and other energy producers in Poland at the end of December used malware known as a “wiper” that was intended to erase computers and cause a power outage and o...

Exclusive: A cyberattack targeting Poland's energy infrastructure in December used wiper malware that would have erased grid computers and rendered them inoperable had it not been thwarted, a researcher at @ESET told me. The researcher calls the attack "unprecedented" for Poland and "substantial"

Google Pixel 'zero-click' exploit caused by AI, mysterious Poland grid attacks, China bans US cyb... YouTube video by Three Buddy Problem

great start with opsec tips...
1. don't upset the tail.
2. if you end up face to face, just ask for the time and DO NOT take a selfie with them. :)
3. oh yeah, and use google docs, at the appropriate time. no surprises.

youtu.be/pooCY4ZOYSM?...

DEF CON Radio from SomaFM Music for Hacking. The DEF CON Year-Round Channel.

Just a friendly reminder that the exemplary humans at @somafm keep #defconradio going all year long. Stream the vibe immaculate at somafm.com/defcon/.

#defcon #grooves

kevin still maintains the title for the best business card i received

Advertising is coming (to AI)

confer.to/blog/2025/12...

sorry, disagree. this person has certainly heard of the civil rights movement...

Looking Back at 2025's Cybersecurity Landscape: Key Trends to Watch in 2026
tlpblack.net/blog/2025121...