SerHack

@vtnerd great!

ccs.getmonero.org/proposals/vtne… My new CCS is in funding! Upcoming: LWSF /feed unit testing, investigate (indirect) block limits, and new lib for encrypting wallet data with FIDO2. Done: LWS+F ready for fmcp++, LWS+F /feed implemented, monerolws.com, and Docker improvements.

Monero's RandomX v2 is released! 🎉 github.com/tevador/Random…

@tuxpizza Finally a good news :- )

PSA: Cake Wallet itself is *unaffected* by this recent NPM supply chain attack, as we don't even use NPM or Node.js. 🫡🎂

@gootecks Thanks for the feedback! I have a couple of drafts, but I haven't got any time to work on it (yet). Anything fun you'd like to have for new articles? :- )

@serhack_ hey just wanted to say I really enjoyed your article on the bitcoin genesis block and the reolink firmware analyses! i stumbled upon your site while I was trying to figure something out for monero, but stayed for the rest of your blog. any new articles on the way?🙏

@usgraphics The font on the backside looks amazing, any hints on what they used?

Siemens Nixdorf ATM test currency notes. Circa 90's.

@anhdres Barolo for everyone!

Congrats to those not selling your XMR for less than $400 fedcoins a piece. We spent so much time in stablecoin land that now I cannot meme a pump like I feel I should. 🍷

Bravo @serhack_! "Mastering Monero" has been featured in our list of best Monero books of all time! bookauthority.org/books/best-mon…

@pinkflawd nostarch.com/introduction-s… nostarch.com/tlpi

Is there such thing as a Windows Internals book, but for Linux? Like, the whole OS in one book?

Before copying & pasting an entire article from my blog, you should check the text!

@DouglasTuman Nice to see Italy appreciated!

He delivered on the 10lbs of Parmigiano Reggiano cheese!😋😋 This looks tempting too!! Any monero users looking to go on an Italian eating adventure in the Parma area or Italy (home of the best Prosciutto!!), give this a look. Great way to spend some digital cash among like minded opt-outers.

@evilsocket I'll make a frame of it (la metterò sul muro questa ^ 😂)

@serhack_ from great work comes a great amount of bestemmie

* Unauthenticated RCE vs all GNU/Linux systems (plus others) disclosed 3 weeks ago. * Full disclosure happening in less than 2 weeks (as agreed with devs). * Still no CVE assigned (there should be at least 3, possibly 4, ideally 6). * Still no working fix. * Canonical, RedHat and others have confirmed the severity, a 9.9, check screenshot. * Devs are still arguing about whether or not some of the issues have a security impact. I've spent the last 3 weeks of my sabbatical working full time on this research, reporting, coordination and so on with the sole purpose of helping and pretty much only got patronized because the devs just can't accept that their code is crap - responsible disclosure: no more.

@__alula It crashes because of arm_mac_user64.dylib and for not having a signature against the modified/patched dylib

@Azerpolious @Little_34306 Yes you have to put a generic xml data :) you could figure it out

@serhack_ @Little_34306 entitlements.xml: cannot read entitlement data

@Azerpolious @Little_34306 Yes codesign --sign - --entitlements entitlements.xml --force libida.dylib

@Little_34306 dowe have to resign it after we replace the dylib

Most of my emails look like someone who's confusing my nickname to the last thing I would do 😂

@Cloudflare Good feature!

To help preserve a safe Internet for content creators, we’ve just launched a brand new “easy button” to block all AI bots. It’s available for all customers, including those on our free tier. Read our blog post for more details: cfl.re/3RQYlxz

@evilsocket I can't believe it, most of the people that started with infosec long time ago they were playing with dSploit...

And now Amazon too!!! Funny, i'm not qualified as senior software engineer, or AI engineer, or defensive tech engineer even tho I spent the last 15+ years working on exactly that (some of them are actually using my code). Ages ago I developed one of the first WAFs before Cloudflare was even a thing (evilsentinel, in php, it was crap but visionary), Google scans Android apps for malware every single day with my code ... Amazon is working with technologies I have a patent for ... but I'm not qualified I guess! LOL how freaking disconnected is the hiring process from reality?