Email: "we have carried out a phishing test company wide"

Me: Nice!

Email: "results are here"

Me: wow, already done? Didn't even see the email. I must've subconciously discarded it! Damn, I'm good!!

Email: "the test was carried out yesterday"

Me: *was OOO y-day*

Me: fuck

The more I look into Windows 11 the more I hate it. There's just 1 (one) more thing that's wrong with it every time I look.

It's a security and ethical nightmare. I almost wish I didn't specialize in computer recovery & cybersecurity.

So thankful that my high-end gaming-built PC is apparently "not compatible" with Windows 11. Oh, you don't want to break my computer and ruin my entire life? That's actually a complement, man.

I found a vulnerability in an online compiler.

So, I heard that people have been exploiting online compilers, and decided to try and do it (but for white-hat reasons) so I used the system() function, which made it a lot harder so i decided to execute bash with execl(). I tried doing that but I kept getting denied. That is until I realized that I could try using malloc(256) and fork() in an infinite loop while running multiple tabs of it. It worked. The compiler kept on crashing. After a while I decided that I should probably report the vulnerabilites.

There was no one to report them to. I looked through the whole website but couldn't find any info about the people who made it. I searched on github. No results. Well fuck.

Got a phishing email with a link to a website hosted by wix. The only thing on the site was a form and submit button so I’m sure it’s for collecting credentials. I was able to report them and wix shut it down which was nice. But I was thinking, if someone were to ddos the web server, what action would wix do? Would they let the requests keep coming and increase the customers bill? Or would they just shut down the server?

Wtf is going on at Patreon? Heard they fired their entire security staff a could days ago

People started to use ChatGPT to discover a new vulnerabilities (0day), I saw someone use it to help them break a smart contract, I mean if you already found a 0day you might ask it to write the exploit rather write it yourself 😬

Anyone here work as SOC Analyst or security engineer 🤔 ?!

!serious

Would you go with Rust or C/C++ to build Malware (rootkits, Ransomware kind) ? Why ? 🤔