Justin Elze

This is what we needed... corp vs corp. Source: x.com/BleepinCompute…

the research showing Google AI Overview is stopping people from clicking links is a huge huge huge problem not just for websites but for people's brains which are about to be absolutely mangled 404media.co/googles-ai-is-…

Someone else got the wild idea to try and heat/bend a piece of carbon fiber for the top of tunnel which seems to be working. It’s really only a cover for the transmission case which is SFI so if it’s weaker nbd.

Looks like the Entra QR code authentication method is going GA 🥳 They've also added some great guidance on suppressing the camera permission prompt for iOS :) learn.microsoft.com/en-us/entra/id…

The best thing about posting this was that people thought I meant cars in general, not performance car stuff as a hobby. 😂

One of the strangest myths about vulnerability disclosure policies & programs is that they have always been ways for vendors to receive vulnerability reports. Nah, these policies were borne out of hackers telling vendors when to expect public disclosure to inform & protect users.

How to be financially responsible Step 1 : Don’t get into cars You’re Welcome

Hogan and Ozzy in one week 🤯

There will be a lot of magnet memes. Like an uncomfortable amount of them 😂

I have been presenting the risk to Active Directory if VMware infrastructure isn't well protected since 2015. adsecurity.org/wp-content/upl… VMWare admins can access the storage associated with virtual Domain Controllers and therefore have access to the AD database file (ntds.dit).…

Blog for ToolShell Disclaimer: The content of this blog is provided for educational and informational purposes only. blog.viettelcybersecurity.com/sharepoint-too… #SharePoint #ToolShell

We are very happy to announce the nominees for the 2025 Pwnie Awards! As a reminder, we will be presenting the winners at DEF CON this year. Saturday the 9th, 10:00AM Main Stage. Hope to see you there! docs.google.com/document/d/1fy…

Chat, I don't wanna brag, but Black Mass Volume III is going crazy - Number 1 best-seller on Amazon (trending). We managed to pass the "Cybersecurity for Seniors" series - Insane amounts of cash flowing in. We might buy a Porsche or two from the sales

The FBI has put out a much more nuanced explanation of what CTI researchers have been tracking for years: ic3.gov/PSA/2025/PSA25… Completely different from what CISA put out in 2023 on “Scattered Spider” here: cisa.gov/news-events/cy… One is holistic, the other is DFIR focused.

Interesting talk on AI and developer productivity youtu.be/tbDDYKRFjhk?si…

We updated our blog with expanded analysis and threat intelligence from newly observed activity by Storm-2603 leading to the deployment of Warlock ransomware. msft.it/6011s132J

I had a great time replicating this exploit and even tho it’s being used for bad stuff you gotta appreciate the elegance of vuln chaining. However, we can’t ignore that while the vulns change the outcomes remain the same. binarydefense.com/resources/blog…

The delay it takes GitHub Copilot to finish things makes my day more productive. I send off a few requests, go about my other tasks, and completely forget about the side project, only to receive an email with pull requests to review. Now if I can figure out this Spark thing 🤣

This will end well I'm interested if this will change how infosec research/blogs are handled in the future putting them into free to register portal or bringing back mailing lists. x.com/ichbinGisele/s…

Everyone thinks the battle is InfoSec vs ransomware it's really InfoSec vs InfoSec marketing.