Ted James, SQL Agent Man

Google Threat Report Links AI-powered Malware to DPRK Crypto Theft - Decrypt New research from Google’s threat unit shows hackers are using LLMs to mutate malware and study how to steal from crypto wallets.

decrypt.co/347781/googl...

Who's going to LASCON this week? #lascon #appsecurity

YouTube video by Seytonic Government Data Center Destroyed... NO BACKUP

Rule #1: Always back up.
Rule #2: Store your backups offsite.
Any questions?
www.youtube.com/watch?v=pGjX...

a man in armor is playing a bass guitar in front of a fireball . ALT: a man in armor is playing a bass guitar in front of a fireball .

I used to rock and roll night and party every day. But lately I'm lucky if I can get down a few hours a month.

What do you say when a developer you're trying to teach about security asks, "Isn't security YOUR job?"

So this is some bullshit. They want to disclose my PHI to their buddies so they can market health-related products and services to me. You don't get to opt in; you have to opt out. Many people just click without reading. #hipaa

Interesting error:

two knights are standing in the woods and one of them is saying i 've had worse . ALT: two knights are standing in the woods and one of them is saying i 've had worse .

Guy next door is mowing the grass while looking at his cell phone. What could possibly go wrong?

I remember hearing this myth 20 years ago. Do people still believe it?

Gold Zeppelin

You're replacing a system in exactly one year. Do you continue to hunt for and remediate/mitigate vulnerabilities up until replacement time or do you blow it off since it'll be replaced, anyway?

A U.S. startup is selling your hacked, stolen data to anyone with $50 An exposé details how anyone with a credit card can get easy access to a huge database of stolen personal information, sold in the open.

www.pcworld.com/article/2854...

You have a system that's going to be replaced in a year. Should you continue to update it and conduct periodic security testing until you're ready to retire it or should you just let it go? I know my feelings. Anything could happen within that year. Is there a best practice for this?

www.msn.com/en-us/travel...

a crowd of people with their hands on their heads Alt: a crowd of people facepalming

A new medical provider created an account for me. Then, they emailed me my username and password - in the same email - in cleartext. The password was 6 numbers. Argh! I did have to change it the first time I logged in. They give new users 30 days to do so. Everybody logs in right away, right? Right?

But did you stay at a Holiday Inn last night and save a ton on your car insurance?

🔨🕸️👨‍💻

Should accessibility be built into an application/website the way security is supposed to be or should it be left to someone else to implement during the SDLC? Is it the developer's job?

YouTube video by Seytonic Trump's Signal Clone App was Hacked in 15 minutes

www.youtube.com/watch?v=hFgd...

CrowdStrike announces 5% job cuts, says AI is 'reshaping every industry' CrowdStrike, which has found gains from artificial intelligence in sales, recruiting and other areas, is cutting about 5% of its workforce.

www.cnbc.com/2025/05/07/c... Apparently, their CEO made $46mil last year. He could take a $5mil cut and save many of those jobs.

Myth of the Masons i flod the flod (the OED) unshod with finger cuffs enough to swear "the pharaohs fly conceivably consumed" yet whispers soft the eye )in IED(

text is in the alt-text to the image.
a video of this poem is at
oddwritings.com/mindspillage...

#poetrycommunity #writingcommunity #poetry #poem #poems #blueskypoets #BlueskyPoetry

I don't think of it as a baseline as I've heard of others doing. I use it mostly for research. If I discover a particular vulnerability, I can check out the Top 10 to find more info. I also use it when training others on my team. I'm a team of one, but some of our developers assist me when they can.

When you license art for your project and it says "AI Generated," are you really required to give the "artist" credit? All they did was tell AI to create an image that looks like "this." Are you really an artist if software creates it for you?

Why You Can (And Should) Opt Out Of TSA Facial Recognition Right Now Do you really want to be submitting a face scan to the current U.S. government?

www.huffpost.com/entry/why-yo...

Your reminder that the facial recognition tech at airports is still totally voluntary.

Spread the word that HATCHET GIRLS is 25% off for the next couple of days until this Friday, 4/25.

@barnesandnoble.com

#hapandleonard

Nevermind. I found it. It can be set in the Resource Pool. There's also a plugin called Distribute Damage that will accomplish this.

Is there a way to slow down a Burp Suite Pro Intruder attack? Essentially, I would like to put a certain amount of time in between each attack. #burp #burpsuite #burpsuitepro

Texas Cyber Command Legislation Passes Texas House The Texas Cyber Command was made an emergency item by Gov. Greg Abbott.

Texas may be getting a bigass Cyber Command: thetexan.news/state/legisl...

a cartoon of homer simpson is holding a newspaper that says old man yells at cloud ALT: a cartoon of homer simpson is holding a newspaper that says old man yells at cloud

Is it too much to ask that a new movie not be recolored and full of cartoonish CGI effects? How about a real soundtrack and not generic background music? Remember when the hero and villain each had their own theme?