The Dustin Childs

It looks even better in real life. Who will claim it?

Zero Day Initiative — Pwn2Own Automotive Returns to Tokyo with Expanded Chargers and More! If you just want to read the rules, click here .  Now entering its third year, Pwn2Own Automotive returns to Automotive World in Tokyo on January 21 – 23, 2026. Over the last two years, ...

Announcing #Pwn2Own Automotive 2026! We're heading back to Tokyo and we're adding new targets Level 3 charging thanks to #Aplitronic & the OCTT thanks to the @openchargealliance.org. Tesla is back, too. Check out the details at www.zerodayinitiative.com/blog/2025/10...

I do call it out in my blog. I feel sorry for all the developers who are going to have to recompile/redeploy their apps. Nasty bug for sure.

Zero Day Initiative — The October 2025 Security Update Review I’m currently in Cork, Ireland as we prepare for Pwn2Own Ireland, but that doesn’t stop patch Tuesday from coming. Take a break from your scheduled activities and let’s take a look at the latest secur...

It's #Microsoft's biggest monthly release ever with more than 170 CVEs addressed - including 3 0-days being exploited in the wild. #Adobe had a small release, with a few interesting items. Join Dustin Childs as he breaks down a spooky patch Tuesday www.zerodayinitiative.com/blog/2025/10...

Come on @adobe.com - why are your security updates so late these days??!? I know I'm being impatient, but I gots blogs to publish and such! #PatchTuesday

There are over 170 CVEs in the #Microsoft patch Tuesday release - including three 0-days being exploited in the wild. Wow. I’ll have my full thoughts out shortly - and once Adobe posts their patches as well.

Fish and chips

Ah Ireland - how I’ve missed ye

ZeroDay Cloud: Cloud Security Hacking Competition Join the world's top researchers in a competition to find zero-day vulnerabilities in core open-source software powering the cloud. Put your skills to the test, win huge prizes from our $4.5M prize po...

Hey #Wiz - congrats on starting your own contest (zeroday.cloud) but uh... did you have to cut/paste sections of the rules from @thezdi.bsky.social? Seems like you should at least run that through ChatGPT to reword it. I guess imitation is the sincerest form of plagiarism.

Political violence is bad. It usually begets more political violence.

Celebrating political violence is bad. It usually encourages more political violence, against various targets.

Campus shootings are bad. They make everyone on campus less safe.

It's bad that what I wrote here is controversial.

YouTube video by Trend Zero Day Initiative The Patch Report for September 2025

No time to read the blog? Just like living walls and shrubbery? Check out the Patch Report for September 2025. @dustinchilds.bsky.social summarizes the Patch Tuesday release from the @TrendMicro Dallas office and points out the patches with extra flair. youtu.be/TIkwpdP2YAU

Zero Day Initiative — The September 2025 Security Update Review There’s a crispness in the air – at least here in North America – and with it comes the latest security patches from Adobe and Microsoft. Take a break from your scheduled activities and join us as we ...

It's a moderate release from both #Adobe and #Microsoft, but there's still lots to cover. Join @dustinchilds.bsky.social as he breaks down the September Patch Tuesday and highlights some fixes that require some extra attention. www.zerodayinitiative.com/blog/2025/9/...

Microsoft patches are live. 80 CVEs with only 1 being publicly known. Still awaiting #Adobe patches....

Ralph speaks for all of us...

WhatsApp, Apple warn of highly targeted attacks with zero-day vulnerability WhatsApp believes the vulnerability could have been combined with a separate OS-level vulnerability on Apple devices to potentially launch sophisticated attacks against “specific targeted users."

This really intrigues me. Does this inspire people to go for the $1 million prize at #Pwn2Own Ireland? Let's hope so.
---
WhatsApp, Apple warn of highly targeted attacks with zero-day vulnerability therecord.media/whatsapp-app...

YouTube video by Trend Zero Day Initiative Getting ready for Pwn2Own Berlin!

I just realized Zed accurately predicted the #SharePoint exploits that came out of Pwn2Own Berlin. Who knew a puppet could be so president? The puppet knows things, man.... It knows... www.youtube.com/shorts/R_jo8...

Microsoft released 3 bulletins today documenting bugs they silently patched in May and June. I really wish they wouldn't do that. Anyway, check out msrc.microsoft.com/update-guide..., msrc.microsoft.com/update-guide..., and msrc.microsoft.com/update-guide...

YouTube video by Trend Zero Day Initiative The Patch Report for August 2025

No time to read the patch blog? Just want to put it on double speed and hear @dustinchilds.bsky.social talk silly? The Patch Report for August 2025 is now available. youtu.be/agMv21gLZI8

And just like that, Adobe drops 13 bulletins on me. Off to analyze!

Microsoft patches are out. 107 new CVEs, but nothing is listed as exploited in the wild. Still waiting on Adobe - again. Sigh. I'll have my full thoughts out soon. #PatchTuesday

Me playing with this year’s @defcon.bsky.social badge.

I feel seen

ZDI in the house for the #Microsoft researcher party

You know I got one for you. Be at our booth around 3 and I will hook you up.

Ha! I didn’t even notice that!

Now THAT’S a wine list. A bit beyond my budget…

Come to Nashville. I have a room for you and will show you where the good hot chicken is.

New challenge coins celebrating 20 years of @thezdi.bsky.social ! Want one? Find me at hacker summer camp!

Reports of Vegas being a ghost town are greatly exaggerated. There may be fewer people here this year, but there are still plenty.

Ballpark and a beer. Happy place unlocked.