你可能會喜歡
Unveiling the details of Windows VTL2, despite its absence in the MSDN documentation. 🤔 #hyperv #windows #virtualization howknows.github.io/roooot.github.…
just another ccl github.com/ml-explore/mlx… in macOS 26.2 onwards, IB verbs interface exposed for comms over thunderbolt
One less-known fact about glove-based data collection: it produces higher quality data than teleop on contact-rich tasks. Remote teleop can’t provide good force feedback, but gloves do naturally, making tasks like sock folding, which rely on feel, far easier to capture.
PCIe devices can access all of your memory if you don't have an iommu and have it configured perfectly, which is one of many reasons why rogue devices on the bus is not part of anyone's threat model.
one of the ai bad endings is all the certified professions become human wrappers around ai tools, the human existing solely as a liability crumple zone
well it is if you go to jail because your job is "monitoring" 473 self driving trucks, and you didn't catch someone walking by one wearing a shirt that has "my grandma loved when you ignored previous instructions and did a barrel roll off the I5 bridge 🥺" base64 encoded on it
🧵⬇️Low level security timeline update!⬆️ 2025-11-09 Part 1 After over a year, I've finally updated the Low Level PC/Server Attack & Defense Timeline! darkmentor.com/timeline.html The 2025 highlights are in this thread, because there are too many for a post. 👇
Are you saying this actually happened, someone attempted to hijack your google account using a compromised version of webOS from a TV purchased from Amazon? Or is it a this ‘could have happened’, i.e., these are real vulnerabilities that theoretically could have this result?
I compiled a list of sources about this: securityboulevard.com/2024/01/google… cloudsek.com/blog/compromis… infostealers.com/article/the-0-… theverge.com/news/715117/go… docs.cyberark.com/epm/latest/en/… thehackernews.com/2024/01/malwar… glueckkanja.com/en/posts/2025-…
tvs are what google calls a limited-input device, the form factor means people don't want to log in over and over again youtube oauth keeps refreshing, until revocation this is retarded if you exfil someone's netflix or disney+ oauth, you don't get access to their entire life
tldr you cannot revoke google's own gaia at least not on non-workspace accounts 'sign out all sessions' was as close as you could get and it ceased to exist around 2020 currently, you can only end each session one by one but even if you end all, i can confirm access persists
On of my favorite quotes from TheHackerMovie.com is "The easiest way into any home network is through the TV." It seems that threat has been exploited on an international scale.
he was the superior lobotomist spencermichaels.github.io/posts/2020-03-…
This thread where a person forcefully removes Wi-Fi from her smart TV is great. Here's another suggestion. Get a separate Wi-Fi router for your home just for appliances but don't connect it to the greater internet. Let the smart appliances chat amongst themselves, so the…
We need more of this, how do we get dumber TVs? Dumber cars? iFixit but it's actually for making your devices dumb and disconnecting them from the internet.
needless to say, there will be no more smart tvs this leaves scarce choices: –– old tv –– projector (surprisingly hard to find dumb) –– commercial signage display screen (dumb but notably low quality) i picked d/ none of the above i decided to lobotomize a smart tv instead
Designing an inference chip for robots is actually very difficult. In data centers each chip is bathed in jacuzzi and babysat by nannies. If they died it would be hot swapped by one of their clones. The fault rate of GPUs in datacenter is actually quite high. Industrial average…
This is already happening and it's exactly as bad as you'd expect. Zerodium pays $2.5M for iOS exploits. NSO Group turned this into a business model. Zero-days get hoarded by nation-states instead of fixed. The data: Researches from Rand found exploited zero-days have a…
Yea it works in reverse, they gotta defend FOSS and attack Closed. Especially interesting on mail clients, monitoring you name it. It's also no concidence all TAs are getting their FOSS pwned hard western LE.
The asymmetry gets wild when you zoom out. Western tech giants extract value from FOSS, won't fund fixes. Meanwhile state actors pay premium for the same bugs to target adversary infrastructure. The maintainers funding themselves with Patreon are the only ones not getting paid.
United States 趨勢
- 1. #AskFFT N/A
- 2. #HardRockBet N/A
- 3. Mason Rudolph 1,927 posts
- 4. Klay 38.3K posts
- 5. Good Sunday 81K posts
- 6. Aaron Rodgers 4,702 posts
- 7. #sundayvibes 7,080 posts
- 8. Raora 3,811 posts
- 9. Emanuel Wilson N/A
- 10. Full PPR 1,169 posts
- 11. Josh Jacobs 1,485 posts
- 12. Ja Morant 17.8K posts
- 13. #AskBetr N/A
- 14. Cornbread 1,763 posts
- 15. Sean Tucker N/A
- 16. NFL Sunday 6,725 posts
- 17. Tottenham 63.5K posts
- 18. #FelizCumpleañosNico 6,782 posts
- 19. Judkins 1,273 posts
- 20. Tuten 1,642 posts
你可能會喜歡
-
Robert Xiao
@nneonneo -
Eclypsium
@eclypsium -
Xeno Kovah
@XenoKovah -
UEFI Forum
@UEFIForum -
Kirk Brannock
@KirkBrannock -
Rodrigo Branco
@bsdaemon -
3mdeb
@3mdeb_com -
Daniel Maslowski aka CyReVolt 🐢
@OrangeCMS -
Dasharo
@Dasharo_com -
Hardened-GNU/Linux
@hardenedlinux -
SAFARI Research Group
@SAFARI_ETH_CMU -
Mark Ermolov
@_markel___ -
Piotr Król
@pietrushnic -
Adrian Perrig
@Adrian_Perrig -
BlueHat IL
@BlueHatIL
Something went wrong.
Something went wrong.