Jeff Jarmoc

CISA’s Red Team has been cut by DOGE. Somebody go hire them, they’re really good.

ABA It has been three weeks since Inauguration Day. Most Americans recognize that newly elected leaders bring change. That is expected. But most Americans also expect that changes will take place in accordance with the rule of law and in an orderly manner that respects the lives of affected individuals and the work they have been asked to perform. Instead, we see wide-scale affronts to the rule of law itself, such as attacks on constitutionally protected birthright citizenship, the dismantling of USAID and the attempts to criminalize those who support lawful programs to eliminate bias and enhance diversity. We have seen attempts at wholesale dismantling of departments and entities created by Congress without seeking the required congressional approval to change the law. There are efforts to dismiss employees with little regard for the law and protections they merit, and social media announcements that disparage and appear to be motivated by a desire to inflame without any stated factual basis. This is chaotic. It may appeal to a few. But it is wrong. And most Americans recognize it is wrong. It is also contrary to the rule of law. The American Bar Association supports the rule of law. That means holding governments, including our own, accountable under law. We stand for a legal process that is orderly and fair. We have consistently urged the administrations of both parties to adhere to the rule of law. We stand in that familiar place again today. And we do not stand alone. Our courts stand for the rule of law as well.

Someone at the American Bar Association ate their Wheaties this morning.

Around 35% of SpaceX’s revenue comes directly from the federal govt.

Less than 1% of NPR’s budget comes from the federal govt.

Here is a list of groups actually litigating against the barrage of illegal and unconstitutional actions by the the Trump Administration.

LAW FIRMS should be providing pro bono support. Don't cower in a corner. Your business depends on the rule of law. 1/

www.justsecurity.org/107087/track...

I'll subscribe to a lot of criticisms, but the blind non-specific ageism against GenZ isn't doing a lot for the Democratic Party, and seems like a stupid line of attack when you should be talking specific experience.

What are we even doing here. Have you seen the voting demographics recently.

When I first switched to application security, I feared not knowing all the answers. Watch the video to hear about how I dealt with this, built up my confidence, and how you can too. #impostersyndrome
youtu.be/crHKiVkWotk

FBI Uncovers Al-Qaeda Plot To Just Sit Back And Enjoy Collapse Of United States WASHINGTON—Putting the nation on alert against what it has described as a “highly credible terrorist threat,” the FBI announced today that it has uncovered a plot by members of al-Qaeda to sit back an...

FBI Uncovers Al-Qaeda Plot To Just Sit Back And Enjoy Collapse Of United States

This is infuriating.

I miss that little InfoSec/hacking corner of Twitter where I could escape for a while. It seems both of those things are long gone thanks to Elon.

Digital Security In Uncertain Times For the past few weeks, I've been getting frantic texts, calls, and emails from people who are concerned about their own digital security and are seeking guidance—some for the first time. The guidanc...

Lately people have been asking me for digital security tips, so I wrote a little post with some basics, some resources, and some dreams of a better world.

Capitol Hill reporters: Please ask congressional Republicans if they believe the Trump administration should follow federal court orders.

If they say yes, ask them what Congress should do if Trump refuses.

That there is some high quality thought leadering.

Black Hat Black Hat

People often ask me how they can improve CFP submissions for Blackhat. Here’s some info on what the review board looks for, and a few resources that can help.

www.blackhat.com/html/blog/20...

This information largely applies to other cons as well.

This is exactly the sort of honest lede that I expect to see from the fourth estate. Anything less is cowardice and complicity.

i.ebayimg.com/images/g/RrQ...

I actually kind of like this album.

Those IOCs though… who’s going to tell them?

Clearly this must be legit.

One of the cool things about JavaScript is that all numbers are floats, so all loop iterators and incremented counters will eventually get stuck

WorstFit: Unveiling Hidden Transformers in Windows ANSI! 📌 This is a cross-post from DEVCORE. The research was first published at Black Hat Europe 2024. Personally, I would like to thank splitline, the co-author of this research & article, whose help

OMG, Orange Tsai released his latest new research 🤯 💣

blog.orange.tw/posts/2025-0...

SQLslammer worm FBI FOIA docs : FBI : Free Download, Borrow, and Streaming : Internet Archive FOIA documents from the FBI in response to a request for records relating to the SQLslammer worm that first appeared in 2003 but has continued to infect...

New #FBI #FOIA docs in response to my request for records relating to the SQL Slammer worm of 2003. Gradually working my way through these big worm / #malware outbreaks pre-2010. Main thing that jumped out for me was that FBI identified a suspect in a foreign country.
archive.org/details/sqls...

🎶 Its the final Shmoooocon! 🎵

Bah duh buhhh dum
Bah duh buh bum dum

Ohh, you’ll know!

Adding to this even a bit more, for a while this was the google search result for “nuclear weapons jeff”

I have my Kamala Won flag fashioned with weapons, my flak jacket, walkie-talkie, and bear spray. I’m ready to storm the Capitol and smear my feces on the walls tomorrow to Stop The Steal.

Said no sane democrat ever because we’re not in a cult.

It’s funny Zuck says “I started building social media to give people a voice” when in fact, he started building social media to publicly rate the hotness of undergrads.

The original chart there says “Jeff” instead of you. It gave me a little pause; do I have nukes I’ve forgotten about?!

License Plate Readers Are Leaking Real-Time Video Feeds and Vehicle Data Misconfigured license plate recognition systems reveal the livestreams of individual cameras and the wealth of data they collect about every vehicle that passes them by.

We tested a flaw in Motorola's ALPR system that caused real-time vehicle data from license plate readers to be leaked. In just 20 minutes, 30 LPRs recorded 4,000 car images. One vehicle was captured three times as it passed different cameras.

www.wired.com/story/licens...

You have to understand that back in my day, it was possible to make a career out of sending a lot of AAAAAAs to computer programs

LinkedIn email recommendation to follow Vivek Ramaswamy.

lol, yeah.. I’ll get right on that.