zh4ck

about to find every single vulnerability out there 💪

Wendy's cash register displaying "ALL YOUR BASE ARE BELONG TO US"

Never has such a meme swept the earth. At one point the HP .com homepage title bar said "All your base are belong to us". My local Wendy's had it scrolling on the cash register: (pic is from June 2001)

Me, to my watch: What time is it
My watch (on screen): It is 12:14:36
My watch (speaking): It is twelve, two, thirty six

Google has invented a watch that doesn't understand time

Supply chain attack on eScan antivirus


securelist.com ->

A threat that's many people warned about for a long time. A bit ironic to read this on Kaspersky's site...

h/t @zh4ck


Original->

Hadn't realised that the third party review of Twitter's chat protocol had been published and wow github.com/trailofbits/...

Revealed: Leaked Chats Expose the Daily Life of a Scam Compound’s Enslaved Workforce A whistleblower trapped inside a “pig butchering” scam compound gave WIRED a vast trove of its internal materials—including 4,200 pages of messages that lay out its operations in unprecedented detail.

A whistleblower trapped inside a “pig butchering” scam compound gave WIRED a vast trove of its internal materials—including 4,200 pages of messages that lay out its operations in unprecedented detail. www.wired.com/story/the-re...

According to people smarter than me one needs 2330 logical qubits to break Bitcoin. I will not hold my breath until such quantum computer is built …

According to people smarter than me one needs 2330 logical qubits to break Bitcoin. I will not hold my breath until such quantum computer is built …

YouTube video by DEFCONConference DEF CON 33 - How Not to IoT:Lessons in Security Failures - Zoltan "zh4ck" Balazs

My DEF CON 33 talk about "How Not to IoT:Lessons in Security Failures" is available on YT \o/ www.youtube.com/watch?v=TTdK...

Inside the Synthient Threat Data Where is your data on the internet? I mean, outside the places you've consciously provided it, where has it now flowed to and is being used and abused in ways you've never expected? The truth is that ...

With support from Synthient, we've just pushed out a corpus of 183M stealer log victims to @haveibeenpwned.com. We'd never seen 16.4M of those before, either, so there's a lot of new stuff in there, and that's just the first part. More here: www.troyhunt.com/inside-the-s...

(comic) Bedtime story

I'd like to propose that hackers are the opposite, typically the "bringers of bad news". But we need a better word for this.

Given that the Greek word of the same era for "bad/badly" is either δυς/dys or κακο/caco, but predominantly the first.

The word would be 'dysangelist'. Tech Dysangelism.

October is Cybersecurity Awareness Month! Please be aware of cybersecurity. If you encounter cybersecurity, DO NOT APPROACH IT. Back away slowly. Protect children and pets. Make noises to scare it away.

Bose SoundTouch home theater systems regress into dumb speakers Feb. 18 Ending support for SoundTouch may help Bose avoid a Sonos situation.

People who have spent hundreds or even thousands of dollars to equip their home with SoundTouch audio have been frustrated about their gadgets losing some of their most coveted features soon.

Toy Train Joins The Internet Of Things [Zoltan] was developing a workshop on Matter for DEF CON, and wanted to whip up a fun IoT project to go with it. His idea was simple—take a simple toy train, and put it on the Internet of Things. S…

You can't stop the Internet of Things, it will be everywhere

hackaday.com/2025/09/30/t...

New life achievement unlocked - last weekend I presented (a lightning talk) right after the legendary @joegrand.bsky.social a.k.a Kingpin.

Do I have video proof that this happened? No
Do I have witnesses? Yes
Are they gonna testify? No
Do I have circumstantial evidence? Yes

🐊 #HackThePlanet

Age Verification Is A Windfall for Big Tech—And A Death Sentence For If you live in Mississippi, you may have noticed that you are no longer able to log into your Bluesky or Dreamwidth accounts from within the state. That’s because, in a chilling early warning sign

If you think online age verification mandates are the key to holding Big Tech companies accountable, you need to see what’s happening in Mississippi. www.eff.org/deeplinks/2...

Infosec celebrities I met this week 😊

@malwarejake.bsky.social
@liveoverflow.bsky.social
Viktor Gazdag
@nmatt0.bsky.social
@johnhammond.bsky.social

So far one of the most interesting stat from #defcon
I am really interested in the back story

DEF CON officially arrived to Las Vegas 😜
#defcon

Love me some dumb US news in the morning

...sips coffee

A private hospital in Thailand was fined $37,000 after patient paper records were discovered being repurposed as snack bags

databreaches.net/2025/08/04/t...

Angelina Jolie was right.

"RISC architecture is gonna change everything."

#HackThePlanet!

Pig butchering / investment scams are next level recently. This is how my Viber and X DMs looks like
Is the bot problem solved on X? Asking for a friend

If you are interested in IoT Security, visit DEF CON Creator Stage 4 this Saturday, LVCC - L2 - W228
defcon.org/html/defcon-...

Thumby and Thumby Color: impossibly tiny Game Boys that are actually playable!

Just one inch tall. And yes, they can run Doom.

Going to BlackHat next week and passionate about reverse engineering? Or, wanting to be? Come hang out with Jos Wetzels and I on the 7th at 11.20am to chat about projects, books and tools you really enjoy, let us know if you're hiring or looking for a job in reverse engineering!