Vulnerability Research Is Cooked — Quarrelsome For the last two years, technologists have ominously predicted that AI coding agents will be responsible for a deluge of security vulnerabilities. They were right! Just, not for the reasons they…

Tom Ptacek posted a great writeup titled "Vulnerability Research Is Cooked", covering the state of vulndev and its rapidly accelerating future:
sockpuppet.org/blog/2026/03...

Up next on #runZeroDay at 12:30 PM PT – Force multiplied: Community-powered vuln detection.

Our guest is Rishiraj Sharma from ProjectDiscovery.

Don’t miss a minute!

Watch it live at: www.runzero.com/rsac-live-20...

Running on Empty with runZero | Kyle Goode Network asset inventory is basically Frogger. 🐸 You're hopping between subnets, dodging unmanaged devices, weaving through cloud instances, and just when you think you've made it across — some rogue ...

www.linkedin.com/posts/kylecg...

Joseph Menn Book Signing Complete security visibility across IT, OT, IoT, cloud, mobile, and remote assets.

Joseph Menn, renowned journalist & author of "The Cult of the Dead Cow," joins us for a special book signing event at RSAC! runZero and Mallory are thrilled to co-host a private book signing with renowned investigative journalist Joseph Menn during RSA:

www.runzero.com/joseph-menn-...

Caroline Wong Book Signing Complete security visibility across IT, OT, IoT, cloud, mobile, and remote assets.

Join author Caroline Wong for the release of "The AI Cybersecurity Handbook" at RSAC! runZero and Mallory are thrilled to co-host a private book signing with the AI cybersecurity strategist Caroline Wong during RSA Conference 2026!

www.runzero.com/caroline-won...

#RSAC session today at 10:50 AM PT – Preparing for AI Vulnerability Exploitation: Preventing Cataclysm.

👀 Don’t miss this panel featuring @runzero.com’s CEO @hdm.io, @argv.bsky.social (Google), and @gadievron.bsky.social (Knostic).

🗓️ TODAY at 10:50 AM PT

AI vulnerability discovery is here. Don’t miss the #RSAC 2026 session-Preparing for AI Vulnerability Exploitation: Preventing Cataclysm-featuring our CEO @hdm.io, Google’s @argv.bsky.social & Knostic’s @gadievron.bsky.social.

🗓️ Mon, Mar 23 @ 10:50 AM PT
path.rsaconference.com/flow/rsac/us...

runZero Hour 0x1C is live NOW: www.youtube.com/live/EF633eU...

"The @phrack CFP with demoscene cracktro is live. Turn up the volume and enjoy the awesome stylings of @PiotrBania with some hopefully inspiring text from phrack staff :)" phrack.org (via @richinseattle)

Phrack – Darknet Diaries Phrack is legendary. It is the oldest, and arguably the most prestigious, underground hacking magazine in the world. It started in 1985 and is still running today. In this episode we interview the Phr...

The Phrack Staff is on the latest episode of the DarknetDiaries episode!

darknetdiaries.com/episode/170/

Phrack (Final)

Huh -- this week, the FBI uploaded 35 pages on Phrack to its FOIA Library vault.fbi.gov/phrack/phrac...

Phrack gnome ansified by nail!

I spy a Phrack gnome in the latest FIRE #ansi pack! Thanks @nail7.bsky.social, it's so cool!

New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises That guest network you set up for your neighbors may not be as secure as you think.

New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises: arstechnica.com/security/202...

AirSnitch resets WiFi security back to the bad-old-days of ARP spoofing and trivial MITM.

ATX Golang Meetup - February 2026, Wed, Feb 11, 2026, 6:30 PM | Meetup Join us for an evening of information, networking, friendship, beer, and pizza! You are invited to come discuss our favorite programming language and meet other Go develope

Hello Austin Go hackers! Tonight (2026-02-11) is our next ATX Golang meetup, located in Station Austin (aka Capital Factory ). We will have pizza, drinks, and various short talks and discussions related to the Go ecosystem: www.meetup.com/atxgolang/ev...

Run Internet speed tests from runZero Explorers Get an early signal into usability before you scan. Measure internet connectivity via runZero Explorers to remove uncertainty, with audit logs included.

runZero users get a new feature today (including Community Edition) - recurring internet speed tests for all deployed Explorers! This (very optional) capability lets you identify backhaul/connectivity issues for sites that you can't physically get to: www.runzero.com/blog/interne...

ATX Golang Meetup - January 2026, Wed, Jan 14, 2026, 6:30 PM | Meetup Join us for an evening of information, networking, friendship, beer, and pizza! You are invited to come discuss our favorite programming language and meet other Go develope

It's time for our first ATX Gopher meetup of the year! If you are in Austin and write Go code (or would like to start), please join us at 6:30pm at Station Austin (co-located with Capital Factory). Charles and I will be providing pizza and drinks as usual:

www.meetup.com/atxgolang/ev...

Synology Reverses Policy Banning Third-Party HDDs After NAS sales plummet Synology has backtracked on one of its most unpopular decisions in years. After seeing NAS sales plummet in 2025, the company has decided to lift restrictions that forced users to buy its own Synology...

they blinked: www.guru3d.com/story/synolo...

🎧 We collected some of our favorite podcasts of 2025 featuring @hdm.io for you to enjoy.

📺 So go ahead and get yourself some coffee (or hot cocoa!) & watch here: www.runzero.com/blog/fun-pod...

Exposure is everywhere now — cloud, SaaS, IoT, shadow IT, unmanaged vendors.

Replay the SC Media webcast with @sawaba.bsky.social, @hdm.io & @todb.hugesuccess.org to learn why continuous discovery matters & how attackers exploit what you can’t see.

👉 www.runzero.com/resources/as...

heya! great community as always; easiest way to get in touch is the #atx channel on the gopher slack

🎙️ The Hacker's Cache: Kyser Clark talks with Metasploit creator @hdm.io on why CVEs won’t save you in 2025.

They get into non-CVE vulns, hidden SSH risks, attacker innovation, AI’s impact, and why exposing version numbers can improve security.

👉 www.runzero.com/resources/wh...

On the latest Risky Biz, @patrick.risky.biz, and @hdm.io talk about visualizing the attack surface with runZeroHound, why you can't synthesize what runZero delivers, & how we are leveraging AI to help predict risks and scan smarter.

📺 Watch the full interview: www.runzero.com/resources/ri...

📺 Live webcast Dec 3 with SC Media!

Your attack surface doesn’t end at the firewall.

Join @hdm.io, @todb.hugesuccess.org, and @sawaba.bsky.social to learn how continuous discovery + attack path mapping keeps you ahead.

👉 www.scworld.com/cybercast/at...

🧭 Cybersecurity’s old rules are cracking.

In his SecTor keynote, @hdm.io breaks down the rules that shaped the 2000s: what survived, what failed us, and the new rules we’ll need next.

Missed it? 👀 Watch the keynote:
www.runzero.com/resources/on...

SO-CON 2026 - SpecterOps SO-CON 2026: Secure your spot for the conference and training.

The CFP for SO-CON 2026 closes in about 12 hours (11:59 2025-11-15)! Have a cool approach to attack path management (or awesome connector for BloodHound OpenGraph)? Submit ASAP:

specterops.io/so-con/

Be KVM, Do Fraud Hi Everyone! It’s me, your friendly Wav3.

The clever folks at Grumpy Goose Labs have published even more ways to identify unauthorized IP KVMs across your environment, with some great memes to boot! Be KVM, Do Fraud - blog.grumpygoose.io/be-kvm-do-fr...

Your attack surface is sprawling & full of blind spots.

🎥 On Dec 3 at 2 PM ET, SC Media brings together @hdm.io, @todb.hugesuccess.org, & @sawaba.bsky.social to reveal how to operationalize attack surface management without losing your mind.

👉 Register here: www.scworld.com/cybercast/at...

runZero Hour is one week away!

Join us on Nov 19: @todb.hugesuccess.org, Rob King, @hdm.io, and Jared Atkinson ( CTO @specterops.io ) break down attacker movement, graph analysis, runZeroHound, and this month’s top vulnerabilities.

👉 Register here: www.runzero.com/research/run...

🚨Your secure enclave? More of a suggestion than a guarantee.

If you were expecting TEEs to provide private computing in untrusted data centers, this latest article by @arstechnica.com featuring our Founder & CEO @hdm.io is a must-read:

arstechnica.com/security/202...

Identify insecure TLS services with runZero Certificate Inventory The runZero Certificates Inventory is an essential tool for seeing and securing every certificate in your environment. Explore these essential use cases.

Identify insecure TLS services with the enhanced runZero Certificate Inventory: www.runzero.com/blog/identif...