Microsoft security has chomped the AI bit hard. Think we are headed back to the 90s? Micro$oft haters needent reply, we get it. https://www.microsoft.com/en-us/security/blog/2025/11/18/ambient-and-autonomous-security-for-the-agentic-era/

They're gonna take over!! Wolves in Canada spotted using line to pull up crab traps in first possible tool use by the species https://ground.news/article/a-wolf-raided-a-crab-trap-was-it-tool-use-or-just-canine-cunning

What cool shit can I add to a response header if I found poisoning? Aside from the boring "send in a whole new page?" #appsec #pentesting

Jeremy Motherfuckeing Alliare is on Bloomberg. I talked to him on the phone a few times in '96 while building Americash Mall, when ColdFusion was new enough that he WAS tech support.

Burp Suite has a "turn off all AI under any circumstances" button.

Oh, yeah, this cloudflare thing sucks. Might be time for a morning cigar. Wasn't the whole idea behind Arpanet was no single point of failure?

This is how misinformation happens. It's always heavily surrounded with truth. In this particular example, yes, 20% of the population does take SSRIs. Yes, they do have some suicidal side effects. There's a lot of truth here, but then he slips in the word […] [Original post on infosec.exchange]

It got by me, but a few folks you might know put up a lightning talks meets 60 My nurses style series on cool security AI tricks. I haven't watched them yet but I know some of the folk. https://youtube.com/@promptorgtfo?si=CH5WXhmNYYDDWdeZ #genai #infosec

The Goog sez using a newer, arguably better programming language leads to a better product. https://thehackernews.com/2025/11/rust-adoption-drives-android-memory.html?m=1 #android #rust

I have a client that is being legit spearphished.

I am starting to understand why engineers don't like GRC meetings.

Sunrise accomplishing Full Loaf. #catsofmastodon

I love the Pebble charging animation. It's filling a coffee cup. I feel that, Pebble, I feel that.

Hey, people with an electronics desk in your office: How do you organize your little bits and scraps of things you just want to keep around because they might be useful sometime? For instance, I have a pile of remotes from things that I've gotten rid of but I've kept the remote equipment […]

No Mr. Bond, I expect you to die!

Here's @Gabrielle: "@jack_daniel? The man the myth the legend. His beard has its own zip code."

"This is the agentic AI security trilemma. Fast, smart, secure; pick any two." https://www.schneier.com/blog/archives/2025/10/agentic-ais-ooda-loop-problem.html #agenticai #oodaloop

Bruce stretches his anthropology chops. The Role of Humans in an AI-Powered World https://www.schneier.com/blog/archives/2025/11/the-role-of-humans-in-an-ai-powered-world.html #ai #philosophy

Sit up. Your back looks like a fucking stadium pretzel. Get a bottle of water and go outside.

<checks task list> Oh, blow job today!

💉💉 If anyone needs me, well, don't.

Well this is slightly better news. Google will let ‘experienced users’ keep sideloading Android apps. https://www.theverge.com/news/819835/google-android-sideloading-experienced-users-developer-verification #android #playstore

i refuse to belive that "generic, faceless attackers" who are not named, their code isnt shown, there are no logs, and these "just trust me bro" flavored articles equate to 'oh noes attackers are doing superhuman badguy heavylifting and we should all be […] [Original post on mastodon.social]

Fuck yeah got my 2012 Pebble up and running. I'd be impressed with myself, but it was really the thousands of hours the Rebble team put in. This is solid. Fuck planned obsolescence.

Man, I really need to get out from under Google. Do you have any idea how HARD that will be? I bought in DEEP. Was sold by "Don't be evil." I'm a sucker.

BARRY MOTHERFUCKING DORRANS

Chatting with an eBay seller. He's sold 18 of the item I am buying to folks in the US, and he mentioned there MAY be tariffs. Some people reported having to pay on delivery, some people got a bill, some people just got the package. It's as much of a shitshow as we all thought it would be.

I'm starting to think that colorized ASCII is the main .NET 10 feature.

"Visual Studio 2026! Built AI FIRST!!!" le sigh

File based apps in .NET are gonna save me from my crappy python code forevs. I can just write my stupid scripts in C#! Or VB.NET! :devious_horns_ms:

something something clown car something circus something...

Heckin wimby in the 614.

Just catching up with this Ring camera face recognition debacle. https://www.eff.org/deeplinks/2025/11/legal-case-against-rings-face-recognition-feature

Another fed banker out. I wonder what kind of pressure the White House is applying to these folks. I would imagine two FBI agents scoping out their kids' school would probably do the trick.

Windows kernel bugs of any significant validity are a rarity these days. https://decipher.sc/2025/11/11/microsoft-warns-of-exploited-windows-kernel-zero-day/ #microsoft #cve

And it begins, again. AI driven "pentesting platform". I'm just ... I'm just not sure. https://www.securityweek.com/tenzai-raises-75-million-in-seed-funding-to-build-ai-powered-pentesting-platform/ #pentesttools #genai

The #aurora from Bumfuck, Ohio.

Car shopping right now is the most awfulest thing recently.

Good analysis of the new OWASP Top 10 by Dark Reading. https://www.darkreading.com/application-security/owasp-highlights-supply-chain-risks-new-top-10 #appsec #owasp

Just in case any of those leaves left all greening and shit last week didn't understand what I meant about this week, I think it is more clear now.

Old farts of mastodon, unite. I'm looking for replacements for my Merrills. Their quality has just gone to shit. I need something that slides on, has the same toughness as Merrills, I can fit my orthotics in them, and that are still fairly warm. #shoes

Got a picture of myself talking regex and WAFs at BSides Cleveland last month!

awwrite people Let's do this Friday thing.

I wanna see some of this fancy AI malware crap put in a lab and tickled. https://www.infosecurity-magazine.com/news/aienabled-malware-actively/ #genai #malware

Gotta be the top risk right now, appsec wise. Synthient Credential Stuffing Threat Data - 1,957,476,021 breached accounts https://haveibeenpwned.com/Breach/SynthientCredentialStuffingThreatData #appsec #programming

<frodovoice>it's heeeere<\frodovoice> #lockpicking #edc #nde