🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Google kernelCTF LTS/COS 0-day WIN! Successfully exploited an extremely complex race condition 0-day vuln on two instances without using namespaces 🎉 work with qwerty

I want to be as confident as the branch predictor

In less significant news, we have an open PhD position in COMSEC at ETH. We like low-level hw/sw with a security twist (think CPU/DRAM/RTL/browser/kernel). If you enjoy collaboration and want to see how deep the rabbit hole goes, send us your application! jobs.ethz.ch/job/view/JOPG_…

Another one for Killed by Google, this time in a good way, trust us :)

Seems no less dead than Mastodon at least bsky.app/profile/sirdar…

Despedida da H2HC! (My goodbye to H2HC!) (English Version Just After the Portuguese) TLDR: Para aqueles que não conseguem ler uma carta longa, estou saindo da organização da H2HC a partir do ano que vem (este ano ainda estarei à frente do evento, como sempre). Todas as

Back in H2HC last week, Jordy Zomer and me presented this tool we've been working on (with Artem) we now call "🐧 Kernel Explorer". It's still early on, I'll work on FF and a11y next! storage.googleapis.com/kernelctf-dash… storage.googleapis.com/kernelctf-dash… Code is github.com/google/securit…

linkedin.com/pulse/proud-da…

It doesn't happen very often, but Project Zero is hiring! goo.gle/41DBQBY Please share with anyone you think would be awesome for the role 🎉 Looking for at least one person. DMs open if you want to reach out about the role. The team: youtu.be/My_13FXODdU

I tried my hand at exploiting an nday on the Google Container Optimized OS instance in kCTF but sadly was very late to the party. Here is my exploit write-up for it. I learned a lot during the process, let me know what you think. I'll post TL;DR in thread h0mbre.github.io/Patch_Gapping_…

You can now jailbreak your AMD CPU! 🔥We've just released a full microcode toolchain, with source code and tutorials. bughunters.google.com/blog/542484235…

If the link 404s for u, press Ctrl+F5 harder

Just released: Google awarded nearly $12M to researchers around the world via our Vulnerability Reward Program: security.googleblog.com/2025/03/vulner…

.Google is sharing details on EntrySign, an AMD Zen microcode signature validation vuln the security team recently discovered: bughunters.google.com/blog/542484235…

THIS IS A GREAT TIME TO BUY 0DAY!!!

abrahamnavig.base.eth 2️⃣ We have authorized a 90 days PAUSE on all 0day tariffs, effective immediately!

"Decoding Signal: Understanding the Real Privacy Guarantees of E2EE" I am thrilled to announce that my talk at Black Hat has been accepted. Looking forward to sharing some of my research with everyone 💙🔐 #BHUSA

google.com/about/careers/…

We posted our slides! entrysign.top

And the video!! youtu.be/sUFDKTaCQEk?si…