Satnam Narang

@MLB @MLBPS_US Hoping for @Mariners @Dodgers #KonamiWorldSeriesSweepstakes

⚾️ Who do YOU want to see in the 2025 World Series? Follow @MLBPS_US and drop your pick in the comments using #KonamiWorldSeriesSweepstakes for a chance to win a trip to the 2025 Capital One World Series! 🏆✈️

THE MARINERS ARE GOING TO PLAY FOR THE AMERICAN LEAGUE CHAMPIONSHIP! #SeizeTheMoment

It has begun: AI tools are being used to perform OSINT to determine which orgs and people to target in a hack, write infostealer malware, determine the right ransom amount per victim, organize stolen documents, and write the emails. AI doesn’t change the attack, it SCALES it.

LOLdrivers.io now has SIEM queries and a tool section for those looking to operationalize the data. Thanks to @Cyb3rMonk and @M_haggis for sharing the queries with the community! Also shout out to @TenableSecurity for sharing the Nessus plugin, @Oddvarmoe for the powershell script, @rtfmkiesel for the super fast client, and finally @mgreen27 for the Velociraptor integration using YARA. Let me know if we missed any tools that are out there on the wild implementing loldrivers 🙏

andrea gibson’s poetry is one of the few things that kept me together when everything felt meaningless. the world lost a beautiful spirit today and everyone should take the time to read their poetry if they haven’t already

🚨NEW INVESTIGATION: We just forensically unmasked #Paragon's Apple spyware. Zero-click targets: Journalists. In 🇪🇺Europe. Like 🇮🇹Italian reporter @ciropellegrino. Reopen's #Italy's spyware scandal. Follows our @citizenlab investigation of their Android spyware. 1/

I told Congress the story of how I got into hacking: winning the Hack the Air Force competition at 17, and helping start Stanford's bug bounty program as a freshman. While we've made progress, we need to do more to normalize security research. I called on Congress to reform the Computer Fraud and Abuse Act by exempting good-faith security research.

The FBI has released a FLASH report to provide technical details associated with Funnull Technology Inc., a company that provides infrastructure for thousands of websites linked to cryptocurrency investment fraud, often referred to as “pig butchering” ic3.gov/CSA/2025/25052…

BREAKING —Sanctions target pig butchering infra! 💪 OFAC sanctioned Funnull which provided scam domains and design templates. More of this! home.treasury.gov/news/press-rel…

The largest Sanskrit text corpus is only 500M tokens. GPT-2 used 50x more. We could get a GPT-2 size Sanskrit corpus if we OCR a ton of documents, but we first need to bootstrap a VLM to do the OCR! How? Synthetic data. Announcing Samhitika-0.0.1📜: a translation of BookCorpus.

In only 4 days we're now at 18 (!!!) @WISPorg Scholars covered for @defcon @BlackHatEvents @DianaInitiative @_squadcon to show their skills & find their next job! Thank you @wendiwhitmore, Jake, Sara, Helen, anons! Who can help us hit 20 scholars today??! wisporg.app.neoncrm.com/forms/hackersu…

⚠️ This is Bad News — A new wave of ransomware attacks is on the way Whenever there is a leak or publication of ransomware code or builders, there is a spree of attacks using it. It happened with LockBit Black/3.0 and Babuk for ESXi.

Thank you @satnam for matching my $1k donation and bringing our FIFTH @wisporg SCHOLAR to @defcon @BlackHatEvents @DianaInitiative @_squadcon this year!!!

I matched Rachel’s donation of $1,000 to send another @wisporg scholar to @defcon @BlackHatEvents @DianaInitiative @_squadcon. Who will match my donation to help Rachel achieve her goal of sponsoring 45 scholars? wisporg.app.neoncrm.com/forms/hackersu…

@Mariners @JRODshow44 We gotta get @NintendoAmerica in here. “It’s-A Me, Julio!” @JRODshow44 🤗

GET 🆙

Reused passwords are the very easiest way to get hacked and the majority of people, including high profile folks, still do reuse passwords. Password managers, passkeys, and MFA should be a mandatory part of onboarding for every role.

In 2024, attackers exploited 75 zero-days across end-user platforms and enterprise tech. Google’s latest report unpacks what this trend says about evolving threat priorities. Full analysis here: bit.ly/4cTQzMI

MITRE supports a ton of federal cybersecurity work, with the CVE program probably being the most famous example. It's a globally used repository for vital information about vulnerabilities. cve.mitre.org I've asked DHS what's going on with the MITRE contract.

INCORRECT