Ron Bowes's Avatar

Ron Bowes

@iagox86.bsky.social

Principal Security Researcher at GreyNoise. https://skullsecurity.org Mostly post about work stuff, maybe some improv stuff and maybe even magic some day. Seattle-based (originally Canadian), queer, cybersecurity nerd. (He/him)

3,197 Followers  |  704 Following  |  1,160 Posts  |  Joined: 23.05.2023  |  1.5918

Latest posts by iagox86.bsky.social on Bluesky

Glad to see people talking about Penn Jillette. The 2024 interview was done by me. I found him to be a refreshingly reflective, self-critical individual who has remained curious and willing to evolve.

08.12.2025 05:02 β€” πŸ‘ 1311    πŸ” 279    πŸ’¬ 13    πŸ“Œ 16

To this day he speaks highly of that interview on his podcast

He's a shockingly kind and thoughtful person, despite being weird and abrasive sometimes

08.12.2025 06:41 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

This setting was just pointed out to me in Bsky's Accessibility settings

06.12.2025 21:57 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

Bluesky and Mastodon both have settings to remind you. I wish they were on by default, because most people are forgetful and just get excited to post their thing!

07.12.2025 16:43 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

They aren't mistakes, they're just examples of the odd phrasing throughout the article. It reads to my ear like an ai summary

07.12.2025 16:32 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Am I crazy or is that ai written? "His most significant takeaway..." and "another things he learned..." has that awkward ai sound to my ear

07.12.2025 16:07 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
A Duolingo treasure chest that you have to tap for some sorta useless currency

A Duolingo treasure chest that you have to tap for some sorta useless currency

I've spent years building a habit of using Duolingo nightly, but I can't stand their attempts at making their app addictive.. I just want to skip this sorta thing and do my lessons

06.12.2025 06:42 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

It feels like all of the "year in review" things are LLM-generated this year and I hate it so much. Just text like "let's hit play on the story of your year!". Do others not notice how cheap it sounds?

06.12.2025 02:10 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I've heard that voice actors have lost a lot of work for very similar reasons

I just want to live in a world where artists can make art and improve society and not have to worry about whether enough people are gonna pay for it so they don't starve :(

05.12.2025 18:03 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

My advice to people in this situation is to be friendly and helpful, and at worst they'll ignore you (if they do and it's important, escalate through your/their manager if you're an employee)

In all the time I've been doing this, nobody had reacted poorly. Worst case is polite disinterest

05.12.2025 16:49 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

GitHub sometimes takes down malicious repos when I report them, but usually not

It's crazy how little they care and how little effort they put in to be good Internet denizens

05.12.2025 16:47 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
CVE-2025-55182 (React2Shell) Opportunistic Exploitation In The Wild: What The GreyNoise Observation Grid Is Seeing So Far GreyNoise is already seeing opportunistic, largely automated exploitation attempts consistent with the newly disclosed React Server Components (RSC) β€œFlight” protocol RCEβ€”often referred to publicly as...

CVE-2025-55182 (React2Shell) attacks have begun.
We are seeing broad automated exploitation, PoE math probes, encoded PS stagers, and AMSI bypass attempts, with botnets already adding the vuln.

Patch fast. Watch your logs.

05.12.2025 15:09 β€” πŸ‘ 3    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0

Palo + SonicWall campaign uncovered. We dug into a spike of GlobalProtect login attempts earlier this week and found something unexpected.
Full analysis: www.greynoise.io/blog/hidden-...

#Palo #SonicWall #Cybersecurity

04.12.2025 22:31 β€” πŸ‘ 3    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
SVG Filters - Clickjacking 2.0 A novel and powerful twist on an old classic.

Developer attempts to replicate "Liquid Glass" in CSS, and once finished realizes what she'd actually created is an exploit for a fundamental, previously unknown, and rather serious browser vulnerability

lyra.horse/blog/2025/12...

"CSS hack accidentally becomes regular hack"

05.12.2025 02:03 β€” πŸ‘ 2038    πŸ” 579    πŸ’¬ 25    πŸ“Œ 39

I need to re-read The Stand post-Covid to see how the first half hits differently

I remember them arriving in Denver and realizing that the beast of a book I just read was only the set-up!

04.12.2025 17:18 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

I read a lot of Stephen King, and while I really enjoy his books and get into them, boy are they long!

I read The Passage trilogy by Cronin last year and same thing - couldn't put them down but still multiple days to read

04.12.2025 16:45 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

I'm cheating a bit because I started reading @tkingfisher.com's horror books.. they're not super long and they're so good that it's hard to NOT read them in one sitting! That really padded out my late-year reading stats

04.12.2025 15:05 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0

I felt like I was doing pretty good at 18!

04.12.2025 06:15 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
New Amtrak Cascades Playing Cards are now for sale on Amtrak Cascades trains! The playing cards are pictured with the back of a hand, a deck, and the ace of hearts on a mahogany table. The cards feature an image of a new train arriving in 2026, Mt. Rainier, Laura's three horses grazing contently in a green grassy field, a pink Rhododendron with a mated pair of goldfinches, the Amtrak Cascades logo, the www.AmtrakCascades.com web address, all nestled under a peaceful blue sky.

New Amtrak Cascades Playing Cards are now for sale on Amtrak Cascades trains! The playing cards are pictured with the back of a hand, a deck, and the ace of hearts on a mahogany table. The cards feature an image of a new train arriving in 2026, Mt. Rainier, Laura's three horses grazing contently in a green grassy field, a pink Rhododendron with a mated pair of goldfinches, the Amtrak Cascades logo, the www.AmtrakCascades.com web address, all nestled under a peaceful blue sky.

David shows off the new Amtrak Cascades Playing Cards when they arrived in Seattle. Get yours onboard now. They are for sale in the Cafe Car.

David shows off the new Amtrak Cascades Playing Cards when they arrived in Seattle. Get yours onboard now. They are for sale in the Cafe Car.

Ohhh! Look what just arrived in Seattle. πŸ‘€ The new Amtrak Cascades Playing Cards are here and are being stocked for sale on the trains right now! So exciting! Go get yours onboard. Then let me know when you find Bigfoot! #trains #playingcards #fun #bigfoot #pnw

03.12.2025 21:51 β€” πŸ‘ 29    πŸ” 4    πŸ’¬ 1    πŸ“Œ 0
Preview
Developers scramble as critical React flaw threatens major apps The open-source code library is one of the most extensively used application frameworks. Wiz found vulnerable versions in around 39% of cloud environments.

FUD sucks. The warnings around this React vuln are not FUD. Get those patch plans in motion cyberscoop.com/react-server...

03.12.2025 19:27 β€” πŸ‘ 19    πŸ” 10    πŸ’¬ 1    πŸ“Œ 1

Does *anybody* want "most relevant" results first when searching small datasets (like emails)? It drives me crazy when things aren't in chronological order

03.12.2025 18:15 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

It's insane that corporations can put random civilians at risk without any consequences.. this is exactly why we have government and regulations

03.12.2025 18:02 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
NoiseLetter November 2025 Get GreyNoise updates! Read the November 2025 NoiseLetter for product news, key resources, the latest tags and vulnerabilities, and more.

The holiday season brings travel, warm drinks, and... serving as the family IT help desk. Check it all out in November's NoiseLetter ❄️

02.12.2025 18:51 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

I feel like the more time I spend looking at this the more confused I get

01.12.2025 22:17 β€” πŸ‘ 5    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Why are there three bathrooms next to each other? And a kitchen right outside of them?

Also what's a wakmin closet? Is a coat bath a thing I'm not aware of? And why did they put a master roksn right by the foyer?

01.12.2025 22:17 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0
Post image

Improv block party is next week! Come see us and other groups perform!!

partiful.com/e/ovSm7FhkQh...

01.12.2025 19:42 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
Holiday cyber scams are getting more inventive Hackers are hoping to take advantage of the holiday season, and they're not just stealing money or data.

Check out @hrbrmstr.dev's convo with @npr.org about the spike in inventive holiday cyber scams, from fake shipping alerts to bogus charity requests. ’Tis the season for scammers, so slow down, double-check links, + stay safe out there. πŸŽπŸ”’

01.12.2025 19:34 β€” πŸ‘ 2    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Preview
Snake-Eater Amazon.com: Snake-Eater eBook : Kingfisher, T.: Kindle Store

Today! Yes, on a Monday! The official release of SNAKE-EATER! www.amazon.com/dp/B0DW4KNLR...

01.12.2025 19:22 β€” πŸ‘ 438    πŸ” 91    πŸ’¬ 38    πŸ“Œ 19

The problem is next-quarter thinking: you save money up front while giving users a worse experience and losing them later

01.12.2025 18:04 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I remember when the government infringing on the media's right to speech without government intervention was held sacred

30.11.2025 00:03 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@iagox86 is following 20 prominent accounts