NIST says that besides focusing on enriching only the big bugs, it will also stop providing its own CVSS severity scores for NVD entries, and will now just show the severity score initially assigned by the organization that issued the CVE.
ruh-roh.... some CVSS drama incoming
Agentic AI is about as good at [insert task here] as I was at helping you write letters in 1996.
Back then you all made fun of me until I got fired. What gives?
I’m excited to let you know that the talks from [un]prompted—the AI Security Practitioner Conference—are now live on YouTube.
No fluff, no hype—just real-world AI security from people actually doing the work.
www.youtube.com/playlist?lis...
Spread the word! @phrack.org CFP with demoscene cracktro is live. Turn up the volume and enjoy the awesome stylings of @PiotrBania with some hopefully inspiring text from phrack staff :)
phrack.org
America according to European explorers in 1492
BlackHat US Call for Paper is open, and we're eagerly awaiting your submissions! I'm proud to be shepherding the Reverse Engineering track again this year and I'll be actively soliciting for cool research 😏😏😏
usa-briefings-cfp.blackhat.com
about to find every single vulnerability out there 💪
Wendy's cash register displaying "ALL YOUR BASE ARE BELONG TO US"
Never has such a meme swept the earth. At one point the HP .com homepage title bar said "All your base are belong to us". My local Wendy's had it scrolling on the cash register: (pic is from June 2001)
Me, to my watch: What time is it
My watch (on screen): It is 12:14:36
My watch (speaking): It is twelve, two, thirty six
Google has invented a watch that doesn't understand time
Supply chain attack on eScan antivirus
securelist.com ->
A threat that's many people warned about for a long time. A bit ironic to read this on Kaspersky's site...
h/t @zh4ck
Original->
Hadn't realised that the third party review of Twitter's chat protocol had been published and wow github.com/trailofbits/...
A whistleblower trapped inside a “pig butchering” scam compound gave WIRED a vast trove of its internal materials—including 4,200 pages of messages that lay out its operations in unprecedented detail. www.wired.com/story/the-re...
According to people smarter than me one needs 2330 logical qubits to break Bitcoin. I will not hold my breath until such quantum computer is built …
According to people smarter than me one needs 2330 logical qubits to break Bitcoin. I will not hold my breath until such quantum computer is built …
My DEF CON 33 talk about "How Not to IoT:Lessons in Security Failures" is available on YT \o/ www.youtube.com/watch?v=TTdK...
With support from Synthient, we've just pushed out a corpus of 183M stealer log victims to @haveibeenpwned.com. We'd never seen 16.4M of those before, either, so there's a lot of new stuff in there, and that's just the first part. More here: www.troyhunt.com/inside-the-s...
(comic) Bedtime story
I'd like to propose that hackers are the opposite, typically the "bringers of bad news". But we need a better word for this.
Given that the Greek word of the same era for "bad/badly" is either δυς/dys or κακο/caco, but predominantly the first.
The word would be 'dysangelist'. Tech Dysangelism.
October is Cybersecurity Awareness Month! Please be aware of cybersecurity. If you encounter cybersecurity, DO NOT APPROACH IT. Back away slowly. Protect children and pets. Make noises to scare it away.
People who have spent hundreds or even thousands of dollars to equip their home with SoundTouch audio have been frustrated about their gadgets losing some of their most coveted features soon.
New life achievement unlocked - last weekend I presented (a lightning talk) right after the legendary @joegrand.bsky.social a.k.a Kingpin.
Do I have video proof that this happened? No
Do I have witnesses? Yes
Are they gonna testify? No
Do I have circumstantial evidence? Yes
🐊 #HackThePlanet
If you think online age verification mandates are the key to holding Big Tech companies accountable, you need to see what’s happening in Mississippi. www.eff.org/deeplinks/2...
Infosec celebrities I met this week 😊
@malwarejake.bsky.social
@liveoverflow.bsky.social
Viktor Gazdag
@nmatt0.bsky.social
@johnhammond.bsky.social
So far one of the most interesting stat from #defcon
I am really interested in the back story
DEF CON officially arrived to Las Vegas 😜
#defcon
Love me some dumb US news in the morning
...sips coffee
