Agree with this! LLMs excel at finding new variants of well understood patterns. It’s why they’re such powerful vulnerability discovery tools. But this is very different from novel vulnerability classes. I wrote about this exact topic for CSET recently: cset.georgetown.edu/article/ai-and…

🚨 The #OBTS v8 schedule just dropped: objectivebythesea.org/v8/schedule.ht… Three days of trainings followed by three days of talks makes for almost a full week of Apple security content from the best of the best! 🍏🧠 Don't miss it! (A few tickets still available 🎟️)

New blog post just dropped! West Shepherd breaks down extending the Mythic Poseidon agent for ARM64 Dylib injection on Apple Silicon. Details include: ✅ Shellcode construction ✅ Memory allocation ✅ Runtime patching ✅ Thread creation Read more ⤵️ ghst.ly/41Nu4ED

x.com/Laughing_Manti… Several years back I encountered a threat actor that would mimic your local ISP including delivering targeted ads that would display your ISP + numbers to call for support that eventually would result in a physical hardware implant delivery campaign. The

⚠️💻 Process isolation is like walls between your apps—keeping banking, passwords & emails safe But a flaw tsunekoh discovered in #macOS shatters that trust: with the right exploit, one app can spy on any other, even protected ones 👉nullcon.net/berlin-2025/sp… #NullconBerlin2025

Does anyone in my network contribute to LLVM, a compiler, or any sort of OS-related fuzzer? Contact me if you'd be willing to be interviewed for a blog post about your experience getting involved in the project. :) #InfoSec