VoidStealer doesn't hack Chrome, it debugs it. Attaches as a dev tool, waits for the encryption key to flash in memory, grabs it, done. No admin rights. No injection. First malware caught doing this in the wild. 👀
Vojtěch Krejsa, has a great article on this: www.gendigital.com/blog/insight...
A visual display indicating the high attack complexity and high severity of CVE-2026-21992.
CVE-2026-21992 is a critical (CVSS 9.8) unauthenticated remote exploit in Oracle Identity Manager and Oracle Web Services Manager, allowing full system takeover via HTTP with no user interaction required. Patch immediately if you're running affected versions.
app.opencve.io/cve/CVE-2026...
This is your breaking news? Seriously?
Awesome sunrise this morning! The world is chaotic these days, but every once in a while you must pause life and fully appreciate the beauty hiding in plain sight.
#abromphoto #nikon #nikonusa #nikonphotography #WildlifePhotography #BirdPhotography #NatureShot #NatureLovers #WildlifePerfection #BirdWatching #PileatedWoodpecker #NaturePortrait
𝙁𝙤𝙧𝙧𝙚𝙨𝙩 𝘿𝙧𝙪𝙢𝙢𝙚𝙧 // 2025
⠀⠀⠀⠀⠀⠀⠀⠀⠀
Tampa Bay, FL | John Cresnut Park
• • •
https//abrom.photo
bsky.app/profile/what...
Attending #AWSreInvent this year? Join us for an interactive session on an AI-powered security guardian.
SEC304 | Building an AI-Powered security guardian for your #AmazonCognito applications
🗓️ Wednesday Dec 3, 2025
⏰ 4:30p - 5:30p PST
📍 MGM Grand
registration.awsevents.com/flow/awseven...
It worked… on my machine
This has got to be a joke article, right? With all the crap RFK Jr has done, continues to do, and has yet to do- this is the article written?
Do better @tombartlett.bsky.social & @theatlantic.com.
Use strong MFA!
Based on the Cisco Talos IR report for Q2 2025, phishing remains the top initial access method, often using compromised accounts. Ransomware incidents account for 50% of engagements, and the education sector is the most targeted.
blog.talosintelligence.com/ir-trends-q2...
A little bummed to hear you'll only have an iPhone app initially. Is that accurate? If so, any time frame for Android, web, etc?
Browsers are getting native machine learning support. WebNN could bring fast, hardware-accelerated AI directly to the browser—no WASM or WebGPU required. Here's my quick breakdown of what it is and why it matters:
🔗 abrom.dev/2025/07/webnn/
#WebNN #GenAI #EdgeAI #PrivacyFirst #AI
Yikes!
Cybercriminal: I don’t have a password, so I can’t connect.
Agent: Oh, ok. Ok. So let me provide the password to you...
#identity101 #mfa #identityProofing #accountTakeOver
arstechnica.com/security/202...
Very cool. I'll have to dig deeper into this. But, real quick- this is for inbound authenticating into Bluesky, via ATProto? So, ATProto being the relying Party (from OAuth/OIDC IdPs)?
🔐 API keys or client credentials?
We unpack OAuth 2.0, token security, and the future of AI agents in M2M auth with Cognito and API Gateway.
🎙️New AWS Developers Podcast out now! 🎧 (links in the thread)
#AWS #OAuth2 #Cognito
This was a fun one to write!
Learn how Amazon Cognito enables AI agents to perform authorized actions on behalf of users through user-contextualized access tokens.
aws.amazon.com/blogs/securi...
Build on AWS? Putting together a reference architecture or sequence diagrams? I built a web app to quickly get AWS service and resource icons. These are using the latest and greatest icons (Feb 2025).
iamabrom.github.io/aws-icons/
#aws #awscloud
Here's my 2025 F1 World Drivers' Champion Predictions
1. Verstappen
2. Norris
3. Piastri
4. Russell
5. Hamilton
6. Leclerc
7. Sainz
8. Antonelli
9. Albon
10. Tsunoda
11. Gasly
12. Alonso
13. Stroll
14. Lawson
15. Hulkenberg
16. Bortoleto
17. Ocon
18. Doohan
19. Hadjar
20. Bearman
#formula1 #f1
Here's my 2025 F1 Constructors Predictions
1. McLaren
2. Ferrari
3. Mercedes
4. Williams
5. Redbull
6. Alpine
7.Aston Martin
8. Racing Bulls
9. Kick Sauber
10. Haas
#formula1 #f1
Trump has vowed to deport millions of immigrants and jail his political enemies. Conservative groups who helped elect him want more restrictions on abortion and a crackdown on protest.
All of that requires surveillance. We put together a guide to protect yourself. www.wired.com/story/the-wi...
re:Invent 2024 was awesome! 6 days (including travel) of speaking, teaching, learning, engaging, catching with old friend and making new ones. Oh and lots, and lots, of walking- 122,795 steps to be exact! Until next year!
#AWS #reInvent2024 #AWSCloud
It feels weird to know Lewis won't be racing with Mercedes next year! Not an ideal qualifying for the last race, but an incredible finish!
#AbuDhabiGP #F1 #LewisHamilton #LH44
Hanging out in the #Amex #CenturionLounge waiting to catch my flight to #LAS for #awsreinvent2024! Ambiance is way better here, but food is better in the #Delta Sky Club.
A mindmap with the following text https://tl.gd/n_1ss2vji
What is an API? What makes them special? And what kind of APIs are out there? #apisecurity #apis #bugbountytips #BugBounty
Heading to Vegas for #reinvent2024! If you're attending, check out 1 of our 3 sessions on authN with #AmazonCognito and authZ with #AmazonVerifiedPermissions. Looking forward to engaging with attendees and customers to help solve their #CIAM use cases.
#aws #iam #cognito #identitymanagement
Amazon Cognito just announced some new exciting features!
👇 Key updates
1️⃣ Managed Login w/ rich branding customization
2️⃣ Passwordless with Passkeys, email, & SMS OTP
3️⃣ Enhanced DevX w/ new quick starts
4️⃣ Feature tiers with flexibility to switch anytime
Learn more: go.aws/3CRjHWL
#amazoncognito
If you ever wondered about how rewards credit cards work, here's a great article I came across on the topic. It is a bit heavy of a read and not short, but worth the read.
www.bitsaboutmoney.com/archive/anat...
