Si says "Noid and Jake said it was OK"

@SchizoDuckie @vxunderground @UK_Daniel_Card Filmed in Cheltenham?

@vxunderground @UK_Daniel_Card I lack the cultural knowledge to understand what I'm looking at but this is a top class production 🤣🤣🤣

@vxunderground Can you help explain what i'm looking at here? I just found this in a public bucket The name is weird ncsc-gov.co.uk.s3.amazonaws.com/chicken.html

@ScottMcGready @julesndcomputer Tequilla?

@julesndcomputer Tempest! That was the name of it. I kept googling tempura this morning thinking I was going nuts

Can anyone genuinely tell me what risk this is addressing or is it a solution in search of a problem?

@cyb3rops "the user was actively searching for and downloading game exploits, specifically Roblox “auto-farm” scripts and executors. These types of malicious downloads are notorious vectors for Lumma" Was there any targeting of this key user or just luck?

There is now a write-up on infostealers.com, apparently based on Hudson Rock data, that adds more detail to the #Vercel breach Many will focus on the Lumma stealer infection and the Roblox download. Okay. That matters too. But for me, the bigger failure came after that … Infections happen - always. The real question is what one infected machine can reach afterwards. If one compromised path was enough to expose access to Google Workspace, Supabase, Datadog, Authkit and Vercel-related admin resources, then the problem was not just the infostealer. The problem was too much access, weak separation, missing limits and security monitoring that failed to highlight highly suspicious activity on that account The mantra should be: “assume compromise” infostealers.com/article/breaki…

@happygeek Interestingly, Adobe Creative Cloud on Mac not showing an update for Acrobat even though it was version 26.001.21367 however opening the application and selecting Check for Updates showed that 26.001.21411 was available. Not good for Adobe as users would expect CC to show updates

It's always at the weekend, innit? Adobe urges admins to patch Adobe Acrobat and Reader on Windows and macOS within 72 hours as CVE-2026-34621 attacks confirmed. forbes.com/sites/daveywin…

@happygeek Sent you a DM

Motivate me.

@happygeek Do you get a Chequebook and Pen with that?

@happygeek Step away from the keyboard and put your hands behind your back

My dad used to put me in tyres and roll me down hills when I was a child. Those were the Goodyears.

@Cannibal Because you didn't do the blood sacrifice before hitting print

It's 2026, why is printing still so cursed?

@happygeek You're only as old as the woman you feel But my wife's older than me Well there you go old man

It’s really weird being the same age as old people.

@dakacki @CryptoGangsta @WSIIAOfficial Love you too

@dakacki @CryptoGangsta @WSIIAOfficial I recommend watching this one (no personal interest, honest) youtube.com/watch?v=tYFOXe…

@endingwithali Hello ali, Nice hat.

i got a new hat and i want to show it to you

@happygeek @Forbes Was finding the flaw the final frontier in security?

Nice little exclusive @forbes for a Friday. NASA vulnerability sat unfixed for three years. forbes.com/sites/daveywin…

@ZephrFish And still ginger. Love you @ZephrFish

10 days away in Vegas - 5 days of Defcon inc prep - 2 days travel - 3 days exploring - 74.17 miles walked - 148,887 steps - 8KGs in weight dropped 🥵 - 1000 photos taken on my Leica

@WeldPond Noobs

Just realized that in the roof pool scene they were idiots to not have someone hang by the door.

Watching Hackers on Laserdisc.

@dakacki @Cannibal @Cannibal has a special "handsome" filter fitted

@happygeek Don't you mean Bigly Chair and Bigly Screen?

I’m at the big desk, in front of the big screen and in the BIG chair - I’ve got this, let’s get to work. #infosec

@happygeek @Forbes Davey in his Fed getup

By me @Forbes: Noice. Couldn't happen to a scummier bunch. And, no, I'm not a fed. Arf. #infosec forbes.com/sites/daveywin…

@happygeek Yes, I suppose you're right. Story of my life!

@SecuritySense Nah, disposable. 🤣

By me @Forbes: Hey Google, this sucks. I'm usually pretty upbeat about your security protections, but this, did I mention, sucks. Hard. #infosec forbes.com/sites/daveywin…

@happygeek I suppose I mush be speshul then?

I’m not sure which is worse, not being considered worthy of immediate protection or being considered a test dummy. Just test the thing properly and then release it, dammit.