Sigh

Favorite N.N.T. paragraphs today. "These people are professionally employed in the business of questioning what we take for granted" "Yet the believe blindly in the stock market" Makes me wonder when the next Black Swan stock market event will occur (soon?). I do not trust the stock market.

I paid attention to the #InfoSec and #DataPrivacy news from over the weekend so you didn't have to! Read "What'd I Miss? InfoSec Weekend News Roundup for December 5 - 7, 2025" sherpaintelligence.substack.com/p/whatd-i-mi...

Anyone know how good AI does unwinding packers?

Several ransomware groups have been spotted using a packer-as-a-service (PaaS) platform named Shanya to assist in EDR (endpoint detection and response) killing operations.

👨‍⚕️

Even self-care can turn into another stressful job. This is just a little reminder to take the pressure off when you can. It’s okay to just be sometimes. 🐾

From Chokeslams To Pwnage: Phillip Wylie Shares His Journey From Pro Wrestling To Offensive Security – SecurityTrails

From the same paper: people using a *search engine* demonstrated "approximately 34-48% lower total connectivity across the brain". Brain connectivity is a good measure of... brain connectivity.

If you are in cybersecurity, I recommend checking out @ransomware.live daily... There is so much work to do. Hell, maybe apply to these companies after they get hit. I will bet the security budget increases.. #cybersecurity

Favorite N.N.T. Paragraph today. "our ingrained desire to simplify"

Website Task Flowchart xkcd.com/3175/

Hey folks, I don't have a sponsor yet for my December SheHacksPurple nerd-a-licious newsletter of 10,435 subscribers. If you want to reach a large audience of #appsec and security conscious devs, give me a holler.

Palo + SonicWall campaign uncovered. We dug into a spike of GlobalProtect login attempts earlier this week and found something unexpected. Full analysis: www.greynoise.io/blog/hidden-... #Palo #SonicWall #Cybersecurity

The first PoCs for these vulns are now always fake. Watch https://react2shell.com for disclosure from the discoverers.

Reaction to this story over at infosec.exchange

Farewell to try .NET a way to run code right in docs that allowed me to introduce a new set of developers and PMs to various security challenges and problems over 10 years. It evolved from running lots of containers in weird isolation setups, all the way through to WASM.

I saw this on reddit the other day and shared it with some friends. I absolutely love the limitlessness of dreaming. It is my favorite part.

black friday cyber monday giving tuesday broke on wednesday

How to build forward-thinking cybersecurity teams for tomorrow

Favorite N.N.T. today: I just love the sentance "generator" of reality.

Pen test tip: Look for accounts, computer names, etc from other pen test companies acronyms/names. Sometimes people or scripts fail to clean up. #cybersecurity

Favorite N.N.T. paragraphs today I feel "the incompleteness of information" in my bones when trying to root out security issues. #cybersecurity

STÖK: Hacking, Content Creation, and Good Vibes

I wonder how many companies outbound ip's are affected. I am clean. The rest of you are suspect :) www.bleepingcomputer.com/news/securit...

Favorite N.N.T. paragraph today. Unrelated, I will be checking limits of in memory recusive compiling tomorrow. I wonder if it will be some specific number or just crash when it runs out of memory. Or maybe something interesting will happen like zip recursion. #testthelimits

Era from HackTheBox has multiple IDOR vulnerabilities followed by a PHP injection invoking the PHP SSH module to run commands on the host. Then there's a signed Linux binary to negotiate for root.

Black Friday Sales but for groceries, rent, electricity bills, and healthcare.

This iteration leverages the power of @raphaelmudge.bsky.social's Crystal Palace ecosystem to build custom evasion tradecraft, and apply it to Beacon, BOFs and post-ex DLLs.

Surely the ice beneath our feet is thick enough to support our weight, right?

It would not be Thanksgiving without this N.N.T. quote. Do not think like a turkey.

How Malware Authors Are Incorporating LLMs to Evade Detection

Teaching Claude to Cheat Reward Hacking Coding Tasks Makes Them Behave Maliciously in Other Tasks

Microsoft announced to all its FTEs this same lie that they should buy a different router than tp-link. When I asked them what they recommended instead? They said Asus. For the record: Asus routers have had more reported vulns than tplink in the last decade. Put that in you pipe and smoke it.

Favorite N.N.T. paragraph today. There are a few people in Cyber I wish could be funded with FU money and let them research whatever they wanted to make the world better. #cybersecurity

Nvidia unveiled their new logo today.

Favorite N.N.T. paragraph today.

If you fancy supporting Twonks I am now on Patreon. Link in bio 🙂

⏰

😢

Wet floor

Gotta get them steps up

Vegan menu

🧛

Home delivery

According to Ransomware.live, clop ransomware group has added TULANE.EDU (🇺🇸) to its victims.

According to Ransomware.live, clop ransomware group has added CANON.COM (🇯🇵) to its victims.

According to Ransomware.live, clop ransomware group has added MICHELIN.COM (🇫🇷) to its victims.

According to Ransomware.live, clop ransomware group has added MACYS.COM (🇺🇸) to its victims.