Larry W. Cashdollar's Avatar

Larry W. Cashdollar

@larry0.bsky.social

Principal Security researcher at Akamai. Exploit Coder. Research covered by Slashdot, ZDNet, arstechnica, MSN + more also a Mitre CVE CNA with 200+ CVEs

674 Followers  |  586 Following  |  32 Posts  |  Joined: 18.08.2023  |  1.8783

Latest posts by larry0.bsky.social on Bluesky

@adamshostack.bsky.social

12.02.2026 18:45 β€” πŸ‘ 4    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0
Post image

Shipped a copy of this book that contains an entry from me to the library of congress. They accepted it as a donation for inclusion in their collection.

10.02.2026 13:18 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 0    πŸ“Œ 1

Ok, you can stop texting me, I saw the Ring ad. Troubling things about it 🧡:

-The long awaited (much warned about) intro of β€œAI” recognition. It starts w/ searching for a β€œbrown dog” but means the tech is there for lisence plate reading, face recognition, searching for suspects by description, etc

09.02.2026 02:45 β€” πŸ‘ 1705    πŸ” 631    πŸ’¬ 26    πŸ“Œ 61
Post image

-Chat & Ask AI leaks chatbot messages
-Nobel Committee investigates hack
-Data leak at the Ttareungyi bike-sharing service
-Comcast agrees to $117.5m settlement over 2023 breach
-Aperture Finance and SwapNet get hacked
-NVIDIA RTX comes to Linux
-Tor Browser gets vandalized
-US investigates WhatsApp

02.02.2026 09:07 β€” πŸ‘ 7    πŸ” 4    πŸ’¬ 1    πŸ“Œ 0

www.akamai.com/blog/securit... command injection in vivotek camera firmware

22.01.2026 02:56 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

I've been looking at legacy IOT camera firmware checking for command injection vulnerabilities -> www.akamai.com/blog/securit...

21.11.2025 11:02 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

At 50 years old I put my foot on a skate board after not touching one for 20+ years and it felt like peering into death's face.

22.10.2025 20:44 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Video thumbnail

Science is under attack! 🚨 Join Bill Nye and thousands of science supporters in fighting back against this anti-science administration. Your voice matters!

➑️ act.ucsusa.org/41Eqmxm

08.09.2025 20:42 β€” πŸ‘ 153    πŸ” 61    πŸ’¬ 5    πŸ“Œ 2
Preview
CyberScoop 50 reveals 2025 winners; honors Amit Yoran with lifetime award The cybersecurity world stands immeasurably stronger because of the vision, expertise, and leadership of Amit Yoran. Throughout his distinguished career, Amit fundamentally shaped the field of cyberse...

Honored to be named an Industry Visionary in the 2025 #CyberScoop50.

Special respect to Amit Yoran, who was posthumously awarded Lifetime Achievement. Amit’s vision & integrity shaped our industry. Many of us followed his lead, myself included. His example endures.

cyberscoop.com/cyberscoop-5...

11.08.2025 16:53 β€” πŸ‘ 4    πŸ” 5    πŸ’¬ 0    πŸ“Œ 0

Nope. never heard of it. haha

09.08.2025 12:37 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

TIL there is professional pillow fighting.

09.08.2025 06:13 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
I witnessed hacker history @biascilab #hackers #hackerhistory #infosec #cultofthedeadcow
YouTube video by Maxtheautowolf I witnessed hacker history @biascilab #hackers #hackerhistory #infosec #cultofthedeadcow

witnessed a new member joining the #cDc tonight! @biascilab.bsky.social youtube.com/shorts/kg7Qh... #defcon

08.08.2025 05:21 β€” πŸ‘ 21    πŸ” 6    πŸ’¬ 0    πŸ“Œ 0

I started kindergarten a year early (age 4) because I watched sesame street and PBS children’s programs in general as a child.

30.07.2025 12:46 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I’ll be at Defcon this year.

28.07.2025 14:23 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Trump is delusional as usual the world is always laughing at him.

26.06.2025 17:07 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image Post image

Neat phishing campaign sending out docusign requests redirecting to a fake apple icloud login page

23.06.2025 02:29 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Avocados are like schrΓΆdinger’s cat.

13.05.2025 15:08 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
DOGE bro Kyle Schutt's computer infected by malware, credentials found in stealer logs Kyle Schutt is a 37 year old "DOGE software engineer," according to ProPublica. In February, Drop Site News reported that he gained access to FEMA's "core financial management system." His computer wa...

@micahflee.com gets the goods.

If this doesn’t tell you how unserious the current administration is about Security then I don’t know what will.

micahflee.com/doge-bro-kyl...

08.05.2025 20:00 β€” πŸ‘ 100    πŸ” 38    πŸ’¬ 2    πŸ“Œ 3
Post image

PhD Timeline xkcd.com/3081

25.04.2025 15:32 β€” πŸ‘ 60177    πŸ” 20599    πŸ’¬ 593    πŸ“Œ 831
Post image

fawn in my yard

20.04.2025 20:57 β€” πŸ‘ 5    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Unpatched Edimax Camera Flaw Exploited for Mirai Botnet Attacks Since Last Year Unpatched Edimax IC-7100 flaw (CVE-2025-1316) exploited for Mirai botnet malware since May 2024, enabling DDoS attacks via default credentials.

thehackernews.com/2025/03/unpa...

18.03.2025 17:43 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I can’t even anymore. I am so fed up.

08.03.2025 23:22 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
How I Rob Banks: A Journey into the World of Ethical Hacking with Freakyclown by Phillip Wylie Show About The Guest: FC Barker aka Freakyclown is an ethical hacker and professional cyber criminalist with over three decades of experience. He is the co-founder of Sygenta, a company that specializes in ethical hacking and penetration testing. Freakyclown has a background in offensive cyber research and has worked for major defense firms. Summary:Freakyclown shares his experience as an ethical hacker and professional cyber criminalist. He discusses the type of pen testing he does, which goes beyond the typical cookie-cutter approach. He emphasizes the importance of manual work and understanding the foundations of hacking. Freakyclown also talks about the evolution of hacking over the years and the changes he has witnessed. He provides advice for those interested in getting into offensive security, including participating in CTFs and bug bounty programs. Freakyclown also talks about his new book, "How I Rob Banks," which shares anecdotes and tips from his career in physical pen testing. Key Takeaways: Ethical hacking goes beyond automated tools and requires manual work and understanding of the foundations. The barrier to entry in offensive security has lowered, but the threat landscape has expanded. Participating in CTFs and bug bounty programs is a great way to gain skills and experience in offensive security. Freakyclown's book, "How I Rob Banks," provides entertaining anecdotes and tips from his career in physical pen testing. Freakyclown resources: https://twitter.com/_Freakyclown_ https://www.linkedin.com/in/freakyclown/ https://www.cygenta.co.uk/ How I Rob Banks book: https://www.wiley.com/en-us/How+I+Rob+Banks%3A+And+Other+Such+Places-p-9781119911517

How I Rob Banks: A Journey into the World of Ethical Hacking with Freakyclown podcasters.spotify.c...

21.02.2025 15:38 β€” πŸ‘ 8    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0

I’m sorry. You can’t conduct β€œpeace talks” with Russia over its invasion of Ukraine without Ukraine at the table.

18.02.2025 15:30 β€” πŸ‘ 8251    πŸ” 958    πŸ’¬ 408    πŸ“Œ 61

πŸ™„

18.02.2025 15:35 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
a man in a helmet is saying `` bring out your dead '' while standing in the rain . ALT: a man in a helmet is saying `` bring out your dead '' while standing in the rain .

Now that RFK Jr. is confirmed as HHS Secretary, and with the bird flu moving toward becoming a pandemic, we can all look forward to this:

13.02.2025 16:52 β€” πŸ‘ 29    πŸ” 11    πŸ’¬ 4    πŸ“Œ 8

I personally will continue to use "Gulf of Mexico" because our president is a wrathful felonious nincompoop with the intellect of paramecium and I do not consent to his cartographic buffoonery

12.02.2025 23:14 β€” πŸ‘ 28543    πŸ” 3713    πŸ’¬ 943    πŸ“Œ 200

EncyclopΓ¦dia Britannica will continue to use β€˜Gulf of Mexico’ for a few reasons:

-We serve an international audience, a majority of which is outside the U.S.

-The Gulf of Mexico is an international body of water, and the U.S.’s authority to rename it is ambiguous.
πŸ§΅β¬‡οΈ

12.02.2025 17:18 β€” πŸ‘ 32810    πŸ” 7044    πŸ’¬ 572    πŸ“Œ 595
Analyzing ELF/Sshdinjector.A!tr with a Human and Artificial Analyst | FortiGuard Labs FortiGuard Labs reverse engineers a malware’s binaries to look into what the malware is actually doing.…

Analyzing ELF/Sshdinjector (IoT bot) with r2ai.

Really helpful and time save to use AI (with r2ai) for analysis *but* use it with a non-AI decompiler side by side:

1. To direct the AI
2. To spot more easily hallucinations or extrapolations.

www.fortinet.com/blog/threat-...

#r2ai #IoT #botnet #AI

06.02.2025 08:34 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

A file would be cool.

07.02.2025 20:29 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

@larry0 is following 16 prominent accounts