Toddzilla

2 to 3 Cups of Coffee a Day May Reduce Dementia Risk. But Not if It’s Decaf.

I plan to increase my coffee intake, and forget that decaf stuff. www.nytimes.com/2026/02/09/h...

Analysis of active exploitation of SolarWinds Web Help Desk | Microsoft Security Blog We are seeing exploitation of SolarWinds Web Help Desk via CVE‑2025‑40551 and CVE‑2025‑40536 that can lead to domain compromise; here is how to patch, hunt, and mitigate now.

Microsoft Defender Research has published details, mitigation, detection, and hunting guidance on the observed exploitation of internet‑exposed SolarWinds Web Help Desk (WHD) systems: msft.it/63327QPD9N

Como dicen en México, no mames! Spanish has a long run ahead in influencing American culture. Nice headline to get attention, though.

Trump’s Big Loser Energy, and Other Tales From the Annals of Political Messaging A few days ago Donald Trump said he’s deciding to “nationalize” American...

Play your game, not the other guy's game. Outrage ain't the way - I'd go for contempt, scorn, and laughter. The guy is a losing, lying weasel. talkingpointsmemo.com/edblog/trump...

On iPhone: five rapid taps in succession on the lock button shuts off all biometrics.

So sorry to see this happen @joemenn.bsky.social - you are a superstar. One door closes and others open. I look forward to reading your news of the next adventure.

FBI Couldn’t Get into WaPo Reporter’s iPhone Because It Had Lockdown Mode Enabled Lockdown Mode is a sometimes overlooked feature of Apple devices that broadly make them harder to hack. A court record indicates the feature might be effective at stopping third parties unlocking some...

New from 404 Media: the FBI has been unable to get into the iPhone of raided Washington Post journalist because the phone had Lockdown Mode enabled. Apple markets Lockdown Mode mostly to stop spyware like NSO. Here, a real world example of it stopping access too www.404media.co/fbi-couldnt-...

Lockdown Mode - use it or risk losing control of your data if someone is able to physically take your IOS (iPhone) device.

FBI Couldn’t Get into WaPo Reporter’s iPhone Because It Had Lockdown Mode Enabled Lockdown Mode is a sometimes overlooked feature of Apple devices that broadly make them harder to hack. A court record indicates the feature might be effective at stopping third parties unlocking some...

Exhibit 1 on why IOS Lockdown Mode is useful: www.404media.co/fbi-couldnt-...

Pondering on this, LinkedIn is like print media of old - you have tabloids (mediocrity) and reputable new sources (NYT, WSJ, FT,...). It depends what you read... or in case of LinkedIn, who you follow or are connected with. Of course, we also have the LI algo injecting rubbish ads into our feeds...

Where is a reputable gofundme to help defray legal costs?

Expect these strategies to proliferate to other professional leagues if they succeed consistently. Fortunately my Sunday league of soccer duffers has to worry about showing up for work on Monday uninjured - nobody wants to get hurt trying to crowd the keeper.

Some things you should know about Fulton County, Georgia The county has already seen numerous claims about election fraud — all debunked. There's no reason to think that Kash Patel's FBI will find something new.

I felt obliged to write up an overview of all of the Fulton County fraud claims that have already been made — and dismissed. Let me know if I forgot any. www.pbump.net/o/some-thing...

People, think carefully before putting your sensitive personal information into random apps. They frequently have vulnerabilities and can leak your information. See below for the latest example courtesy of @404media.co .

Umm, why isn't the local police department ticketing the vehicles for violating state law by not having license plates?

Bitte, mach es!

On Tilt, by Jasper Craven America’s new gambling epidemic

"Nearly half of all American men aged 18 to 49 maintain an online sports-betting account...Emerging research suggests that the spread of sports gambling portends a huge increase in gambling addiction, which has the highest rate of suicide of any addictive behavior."

harpers.org/archive/2026...

Security Engineer 2 - Red Team | Microsoft Careers Discover and exploit vulnerabilities end-to-end in order to assess the security of systems and services Advocate for security change through building partnerships and clearly communicating impact of r...

Want to red team azure?

Jimmy Butler can’t put weight on his right knee. Buddy Hield and Jonathan Kuminga helping him to the locker room after a concerning scene in Chase Center.

How a hacking campaign targeted high-profile Gmail and WhatsApp users across the Middle East | TechCrunch The phishing campaign targeted users on WhatsApp, including an Iranian-British activist, and stole the credentials of a Lebanese cabinet minister and at least one journalist.

NEW: A hacking campaign targeted high-profile Gmail and WhatsApp users across the Middle East this week.

I obtained a copy of the phishing page & analyzed it with the help of experts. The page stole passwords, hijacked WhatsApp accounts, and took location data.

A bug also *exposed* victims' data.

Great scoop! Those officials are showing their smallness and pettiness.

Signal creator Moxie Marlinspike wants to do for AI what he did for messaging Introducing Confer, an end-to-end AI assistant that just works.

Moxie Marlinspike—the engineer who set a new standard for private messaging with the creation of the Signal Messenger—is now aiming to revolutionize AI chatbots in a similar way.

arstechnica.com/security/202...

What a story! The quote "I am not a pacifist" says a lot about the guy. And amazing strength in commenting on the personal damage perpetrated by the apartheid regime.

Delinea + StrongDM to Unite: Redefine Identity Security for the AI Era Delinea today announced it has signed a definitive agreement to acquire StrongDM.

More acquisitions in identity-land. Delinea moving to be the authorization vendor of choice by acquiring StrongDM. StrongDM shines in dynamic authorization and policy-based access control. delinea.com/news/delinea...

Interesting to hear. I am sticking with Sequoia for now.

Hidden Telegram proxy links can reveal your IP address in one click A single click on what may appear to be a Telegram username or harmless link is all it takes to expose your real IP address to attackers due to how proxy links are handled. Telegram says it will add w...

Hidden Telegram proxy links can reveal your IP address in one click
www.bleepingcomputer.com/news/securit...

WEF: Deepfake Face-Swapping Tools Are Creating Critical Risks Researchers at the World Economic Forum have shown that threat actors can use commercial deepfake tools to bypass corporate security protections

Tools that can create deepfakes are getting better, and the identity verification crowd needs to up its game. There are some new deepfake detection players like Get Real and Nametag that are changing the game - www.infosecurity-magazine.com/news/wef-dee...

CrowdStrike buys SGNL, identity security startup, for $740M : Authentication is basically solved. Authorization is another thing entirely...

I can now die a satisfied man. I've been quoted in the NYTimes before, but never in The Register (my absolute favorite IT tabloid). Today I was quoted in The Reg. Thank you @jessicalyons.bsky.social for letting me contribute to your article - www.theregister.com/2026/01/08/c...

Welcome to 2026 and the year's first identity security acquisition! Crowdstrike acquires SGNL for $740M as it continues to build out its identity portfolio. SGNL's ability to centralize identity & security context in an intelligence layer sharpens CRWD's threat focus. www.msn.com/en-us/money/...

Congratulations! I'll need to finagle a copy to read. Does Forrester provide an estimate of when the industry will see a cryptographically relevant quantum computer. Enterprises absolutely need to prepare (a long process). Any prognostication of when the threat becomes real?