SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔

Take notes. THIS is how you articulate the difference between warm fuzzy marketing and propaganda for a commercial dystopia.

Good riddance @discord.com

Exclusive: Hacktivist scrapes over 500,000 stalkerware customers' payment records More than half-a-million people who bought access to phone surveillance and social media snooping apps had their email address and partial payment card numbers published online.

techcrunch.com/2026/02/09/h...

Hacktivism lives.

YouTube video by Scraper Systems by Rite-Hite Automated Snow Removal for Truck Trailer Roofs | Scraper Systems™

www.youtube.com/watch?v=Y5o3...

LOOK AT THIS PRIVACY POLICY.
Look at it. You can read it because they don’t need a ton of legalese to make you stop reading all the ways they’ll sell your data.

They just don’t do that. None of it.

tessie.com/privacy

We want the soundtrack!

BSides312 - Chicago's Hacking Conference BSides312 is Chicago's biggest little non-profit hacking & information security conference.

Early bird tickets are still available! 🎉
Use code BS312-EB20 to get 20% off your #BSides312 ticket.

Grab yours now 👉 bsides312.org
While you’re there, consider volunteering and helping make the event awesome!
#BSides

cupholder.exe was one of my favorite memories when growing up.

To be clear. NetNTLMv1 support needs to go. But for the low security budgets, the companies that can’t navigate their way out from under this one, detection and effective response will be your saving grace (or it won’t be).

Releasing Rainbow Tables to Accelerate Protocol Deprecation | Google Cloud Blog Mandiant aims to lower the barrier for security professionals to demonstrate the insecurity of Net-NTLMv1.

If your SOC doesn’t already alert on NetNTLM with challenges of “1122334455667788” you should fix that NOW.

cloud.google.com/blog/topics/...

Combining NVIDIA DGX Spark + Apple Mac Studio for 4x Faster LLM Inference with EXO 1.0 Disaggregating Prefill and Decode: Faster First Tokens, Faster Streams

If you’re not watching EXO labs, and you have any good reason to run local LLMs stop now and read blog.exolabs.net/nvidia-dgx-s...

vmux Run anything in the cloud. Replace uv run with vmux run.

Fun way to host your payloads vmux.sdan.io

Did you know your taxes were being used to buy your flight records from commercial airlines so your movement could be tracked without a warrant?

This is fork&run to execute BOFs in a remote process, same API, and get output back over a pipe--demonstrated with Havoc.

Same arch could support explicit injection. Add-in an injector artifact + psexec, could remotely run a BOF without an agent and get output back too. bofexec? :)

You've been targeted by government spyware. Now what? | TechCrunch Tech companies are increasingly warning their customers that they have been targeted by governments with advanced government spyware, such as NSO's Pegasus or Paragon's Graphite. What happens after re...

NEW: Apple, Google, and WhatsApp now regularly notify their users if they suspect they have been targeted or hacked with government spyware, such as that made by NSO Group or Paragon.

We spoke to experts and wrote a guide on what to do, and where to go, if you receive one of those notifications.

This tool is an especially powerful and widely applicable one. Don’t get caught up in saying no, infosec.

ORLY?

This implies that getting a warrant for this was anything other than a rubber stamp in a web interface before now.

NARRATOR (V.O.) It wasn't.

30% of the code, and 100% of the design is now done by AI

0nrnicrosoft[.]com was registered last night

When 2040 me can’t give someone a dirty look without it being captured, catalogued, and sold to the surveillance state - this is one of the ways we got there.

We Let AI Run Our Office Vending Machine. It Lost Hundreds of Dollars. An AI agent ran a snack operation in the WSJ newsroom. It gave away a free PlayStation, ordered a live fish—and taught us lessons about the future of AI.

THIS would be an awesome base concept for a team of developers to build as a learning exercise for implementing LLMs that are customer facing.
www.wsj.com/tech/ai/anth...

Apple Maps in CarPlay does not allow you to tap on the numbers on the map. You MUST tap the item in the list, wait for the zoom animation to show you which of the map locations it was for, then (while no longer seeing the whole route) choose if you want to add to route or not.

Maybe Bieber will complain and Tim Apple will do something.

Ok, but can I PLEASE tap on the destination on the map instead of being forced to use a list and back button to discover where each location is while I’m TRYING TO DRIVE?

A receipt of drinks from the floor to at least (probably lol) 8’ high

Hey @wiz_io BurbSec really appreciates the CVS sized receipt!

Can we please stop using pictures of consumer drones for LE and military drone stories?

Not a fan of this company, but I LOVE the 2FA explainer. Very well executed.

I’m at 2x32GB modules and still have the 2x16GB modules just laying in the drawer from last spring. Maybe I should cash out and buy a new car?

There’s such a strange acceptance of LE skipping out on search and seizure laws by paying a private company for the data instead of (illegally) collecting it themselves. I feel like the outcome is a reality that fundamentally undermines the intent of the Fourth Amendment.