We're gonna have a really fun guest on the podcast within the next couple weeks...

Sick of your friends not understanding your hacking jokes? You're not alone. You just need some hacker friends! Unless you already have hacker friends... ...in that case, you probably need some new jokes.

Hey Proton, why are you cancelling journalists and ghosting us. Need help calibrating your moral compass❓ First therapy session is for free 😘 Regarding phrack.org/issues/72/7_md…

AI models are developing a spidey-sense for malicious prompts and instructions. AI security work is going to become even more like social engineering. We're gonna need a lot of persuasion and good POCs. I had been hosting my prompt injection payloads on t4[.]rs but that domain

A threat actor installed Huntress. ... a hysterical mistake on their part, giving us first-hand insight to their tooling, workflow & routine. Phishing infra, stealer logs, Telegram+dark web sites, AI... Hilarious goldmine of cybercrime deets with a front row seat:

TFC 2025 writeups available now, courtesy of Charly

NEED YOUR HELP! My Friend/Teacher Soroush (Soroush Dalili) Is looking for a new company to join, you know him as the .NET-God, the guy who has popped exchange, sharepoint, has maintained ysoserial_.net for years, contributed to the exploitation scene numerous times, taught all of you

kernel hackers go serverless ring0 → cloud 9 ☁️ ?? brb pwning yr gpu nodes ✨

We have a really cool announcement: We’re opening the Critical Research Lab to submissions! Our goal is to give hackers some incentive to write about the things they’re studying, provide an extra reach for your work and give the community some incentive to share knowledge.

it’s linkedin official, i joined Sybil as a founding member of technical staff. super excited to be making one computer (ai) hack another computer (web apps) with an absolutely cracked team.

🗣️ Catch Dio9sys talk this weekend at #PancakesCon! ⏰ Sunday, 9/21 from 12:20–1:00 PM CT 🎤 One-liners and One Needle: Bash and Needlebinding 📺 youtube.com/live/P4Shsxw...

New tutorial: "Bypassing" Cloudflare's Turnstile CAPTCHA With thermoptic github.com/mandatoryprogr…

Coming back from a bit of a hacking break and have a few blog post drafts written up. Would anyone be interested in reading about hacking online gambling companies, even if the bugs are super simple? So many actuators/easy findings with crazy impact, but nothing very complicated.

🚨 BE CAREFUL OUT THERE This is a new scam tactic. It looks like they properly spoofed a third party X app. If you authorize the app, they can do basically anything on your account.

welcome to the team! we're really cooking with gas

Today, members of our research team at Searchlight Cyber, Dylan Pindur and Adam Kues (hashkitten), presented on pre-auth vulns in Adobe Experience Manager at BSidesCanberra. Will publish a blog post and slides in early Oct. For now, you can grab the tooling here: github.com/assetnote/hopg…

Bad auditors miss obvious bugs. We built an AI tool that finds them. Introducing V12: the only autonomous Solidity auditor that actually finds Highs and Criticals. We'll be releasing it for free. V12 finds Crits in Zellic audits, High/Mediums in Cantina, and a bug in Pendle.

Yooooo Douglas Day congrattttttttts!

Really disappointed to see HackerOne do this. I also had a similar interaction with h1 about a month ago where they questioned my nationality and place of residence after 10+ on the platform.

Excited to introduce Dreamer 4, an agent that learns to solve complex control tasks entirely inside of its scalable world model! 🌎🤖 Dreamer 4 pushes the frontier of world model accuracy, speed, and learning complex tasks from offline datasets. co-led with Wilson Yan