Not sure if the iPhone’s Lockdown Mode is for you? Here’s some advice on who it’s for and when to use it. ssd.eff.org/module/how-...

Substack suffered a data breach back in October 2025 that was just recently identified.

Elevated False Positive Alert Activity SentinelOne's Status Page - Elevated False Positive Alert Activity.

For anyone else dealing with a mass of SentinelOne “:Zone.Identifier” (Mark of The Web: indicates a file originated from the internet zone) alerts starting this morning. SentinelOne MDR team confirmed these as false positives due to 3rd party misclassification:
status.sentinelone.com/incidents/xj...

Microsoft down — live updates on outage affecting 365, Office, Outlook, Teams and more Multiple Microsoft services aren't working

Microsoft is having another outage again today, even the status page has gone down now… www.tomsguide.com/news/live/mi...

Cisco warns of unpatched AsyncOS zero-day exploited in attacks ​Cisco warned customers today of an unpatched, maximum-severity Cisco AsyncOS zero-day actively exploited in attacks targeting Secure Email Gateway (SEG) and Secure Email and Web Manager (SEWM) applia...

Cisco reports an unpatched AsyncOS zero-day: CVE-2025-20393! Specifically affects both physical & virtual appliances Cisco Secure Email Gateway, Cisco Secure Email, & Web Manager. Impacted devices have “Spam Quarantine” enabled & are exposed to the internet.
www.bleepingcomputer.com/news/securit...

Two new React Server Components vulnerabilities have been discovered:
- Denial of Service (High): CVE-2025-55184 -> CVE-2025-67779
- Source Code Exposure (Medium): CVE-2025-55183

If you previously updated to 19.0.2, 19.1.3, or 19.2.2, those patches were incomplete & you will need to update again!

Even if your app uses or connects to something that supports React Server Components! This one is nasty

CVE-2025-55182: Unauthenticated remote code execution vulnerability in React Server Components.

If your app supports React Server Components (if your app connects to a server, uses a framework, bundler, or bundler plugin that supports React Server Components) you need to upgrade immediately!

Thrilled to be able to announce that our #shortfilm "Midnight Snack" has been nominated for Best Haunted Garage Film at #ShockfestAdventure in Las Vegas, NV this November 13th - 14th!

Get your tickets here:
www.shockfestadventure.com

Cell-Site Simulators/ IMSI Catchers Cell-site simulators, also known as Stingrays or IMSI catchers, are devices that masquerade as legitimate cell-phone towers, tricking phones within a certain radius into connecting to the device rathe...

Apropos of nothing… This is a really excellent write up on Cell-site simulators/ISMI Catchers (aka stingrays) and how they can be used to “gather the IMSI (and later the identity) of anyone in a specific area.” #TheMoreYouKnow sls.eff.org/technologies...

Tonight at Midnight our comedy-horror short film: "Midnight Snack", airs on Chicago's CAN TV 19 (cable channel 19). If you're not in Chicago/don’t have cable then you can still watch via the link below:
cantv.org/watch/stream...
“Midnight Snack” will air on #CANTV all through this Halloween season!

It’s movie night! Eagerly awaiting the premiere screening of our new short, "Midnight Snack"at Landmark Century Cinemas in Chicago! @samclocke.bsky.social and the rest of the cast and crew did an incredible job creating this and I’m thrilled to be a part of it! www.youtube.com/watch?v=sg_j...

Milwaukee Horror Con - Fall Frightmare Get tickets online for Milwaukee Horror Con - Fall Frightmare here.

If you’re in Milwaukee, WI today and are a fan of #HorrorFilms, stop by the Milwaukee Horror Con for Block One of their #FilmFestival at 5:15pm to catch our short film: #MidnightSnack (it’s been nominated for an award)! unholy-entertainment.ticketspice.com/milwaukee-ho...

Active Exploitation of SonicWall VPNs | Huntress A likely zero-day vulnerability in SonicWall VPNs is being actively exploited to bypass MFA and deploy ransomware. Huntress advises disabling the VPN service immediately or severely restricting access...

Security researchers are warning of a possible zero-day vulnerability in TZ and NSa-series SonicWall firewalls with SSLVPN enabled that is being actively exploited to bypass MFA and deploy ransomware. Firmware versions 7.2.0-7015 and earlier appear to be impacted.
www.huntress.com/blog/exploit...

A trick I picked up from @k8em0.bsky.social some years ago: Always ask if they have the technical means, such as logs, to detect evidence of exfiltration (and/or exploitation)?

"No evidence" doesn't mean data wasn't taken. It can simply mean that they don't have the ability to check.

Free decryptor for victims of Phobos ransomware released Police have released a free decryptor capable of recovering files encrypted by both the notorious Phobos ransomware, and its offshoot 8Base.

Great news that Japanese police have put together a free decryptor for the Phobos ransomware (helped no doubt by arrested of suspected members of the gang, and the seizure of its infrastructure)

www.fortra.com/blog/free-de...

Broadcom is warning that a trio of VMware vulnerabilities (tracked as CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226) are currently being actively exploited in the wild.

As an old theatre kid myself, I wholeheartedly approve! 🏅

Officially going to avoid investing in any Zyxel products in the future…

Poster for a comedy show, reads: Date Night with The Rats. 7:30pm Saturday, February 1st deMaat Studio Theatre Second City. With special guests Sarah Jank (image of Sarah doing standup) and Underhanded Improv (image of a man about to strike a rabbit puppet with a cane back chair). Text on poster is surrounded by images of the members of Ghost Rats, the hosts and an award winning an improv team, in various poses.

Chicago folks: I’ve got a show this Saturday, February 1st at 7:30pm CT at The Second City!

Join us for some laughs, maybe a little romance, and the exact amount of rats you’d expect! Grab your tickets now for Date Night with the Rats:

www.secondcity.com/shows/chicag... #comedy #improv #chicago

Bookmarking this site for inevitable future use! #techsupport

Google Quietly Installed A.I. to My Workspace. Getting Rid of It Was Creepy. Opting out should not be a premium feature. It’s a basic right.

Great article highlighting the frustration a lot of IT teams are experiencing right now with A.I.

“Google has made opting in to generative A.I. the default. You have to go the extra mile and wait, sometimes hours, in the support queue to even have the option to opt out.”

slate.com/technology/2...

Copilot should have been an opt-in feature to begin with, but the fact that Microsoft did not build a way for IT to disable it right “out-of-the-box” is incredibly irresponsible.

Many companies are already blocking AI tools only for them to learn that the call is now coming from inside the house.

100% this!

Cloudflare Issue Can Leak Chat App Users' Broad Location A security researcher made a tool that let them quickly check which of Cloudflare's data centers had cached an image, which allowed them to figure out what city a Discord, Signal, or Twitter/X user mi...

A bug in Cloudflare (and just the nature of how CDNs work) let an attacker learn the broad location of Discord, Signal, Twitter users by just sending them an image, according to a security researcher. It works because check which data center cached the image www.404media.co/cloudflare-i...

The Chicago Legal Responder Network created a series of short videos (los videos están en español) about what to do if ICE shows up at your house, job, stops you while driving, etc.

Conozca sus derechos. Qué hacer si lo detiene la policía de inmigración.

youtube.com/@chicagolega...

If you’re running FortiOS 7.0.0 - 7.0.16 or FortiProxy 7.0.0 - 7.0.19 and 7.2.0 - 7.2.12 you need to upgrade asap! An authentication bypass, tracked as CVE-2024-55591, is being actively exploited in the wild & may allow remote attackers super-admin privileges.
fortiguard.fortinet.com/psirt/FG-IR-...

DOJ confirms FBI operation that mass-deleted Chinese malware from thousands of US computers | TechCrunch The FBI says it was authorized to mass-remove “PlugX” malware from more than 4,000 compromised machines in the United States

The FBI says it has mass-deleted malware planted by the China-backed hacking group known as “Twill Typhoon from thousands of infected systems across the US techcrunch.com/2025/01/14/d...

Data broker Gravy Analytics confirms a data breach after a hacker leaked millions of location records The company confirmed the breach after a hacker posted millions of location data records online.

We've also included some helpful guidance on what you can do to prevent advertising surveillance, including at the mobile device level.

“If you disable the app tracking, your data has not been shared,” @fs0c131y.com told TechCrunch.

Ad-blockers are your friend!

techcrunch.com/2025/01/13/g...