Lightnews — Scholar-powered news

Reposted by Nicolas Grégoire

Kim Zetter @kimzetter.bsky.social · 23h

Apple announces new payouts for certain types of bugs - company will pay up to $2 million for anyone disclosing a chain of bugs that could be abused for spyware like Pegasus, as well as bonus awards for exploits that can bypass Lockdown Mode or are found while Apple software is still in beta testing

Apple Announces $2 Million Bug Bounty Reward for the Most Dangerous Exploits

With the mercenary spyware industry booming, Apple VP Ivan Krstić tells WIRED that the company is also offering bonuses that could bring the max total reward for iPhone exploits to $5 million.

www.wired.com

1 12 23

Nicolas Grégoire @agarri.fr · 1d

In case you're looking for something nice to read this weekend

Paged Out #7 has been released pagedout.institute

Paged Out!

Deeply technical zine. And it's free.

pagedout.institute

3

Nicolas Grégoire @agarri.fr · 1d

What a shame for Deloitte!!

apnews.com/article/aust...

Deloitte to partially refund Australian government for report with apparent AI-generated errors

Deloitte Australia will partially refund the Australian government for a report filled with apparent AI-generated errors.

apnews.com

1 2

Reposted by Nicolas Grégoire

Tom Quinn @tomquinn.bsky.social · 1d

Kidnapped in international waters, extraordinary rendition to a genocidal state, and then imprisoned indefinitely.

You'd think this would trigger the immediate expulsion of the Israeli Ambassador for these inexcusable actions against an Australian citizen.

Dave Earley @earleyedition.bsky.social · 1d

An Australian woman who has not agreed to sign a waiver acknowledging she sought to 'illegally break Israel’s naval blockade' on Gaza will be “indefinitely detained” in Israel’s Ketziot prison unless she agrees to sign the waiver.

Australian woman on pro-Palestinian aid flotilla will be ‘indefinitely detained’ by Israel unless she signs waiver

Madeleine Habib, who captained the Conscience ship, was arrested by Israeli forces on 8 October and detained in Israel’s Ketziot prison

www.theguardian.com

3 160 310

Nicolas Grégoire @agarri.fr · 1d

AppSec Ezine - 607th edition #AppSec #Security

pathonproject.com/zb/?53e6a08f...

AppSec Ezine

pathonproject.com

3

Nicolas Grégoire @agarri.fr · 7d

I’m just a reposter…

Ask simps0n on X, he is the guy maintaining the ezine

x.com/simps0n

尺Ξn4tø 尺ødɿiguΞ5ǃ͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗͗ ็็้้้ (@simps0n) / X

x.com

1 1

Nicolas Grégoire @agarri.fr · 7d

Afaik this ezine doesn’t have a RSS feed

1

Nicolas Grégoire @agarri.fr · 7d

AppSec Ezine - 606th edition #AppSec #Security 🤖

pathonproject.com/zb/?eaf34249...

AppSec Ezine

pathonproject.com

1 2 2

Reposted by Nicolas Grégoire

Nicolas Grégoire @agarri.fr · 10d

The ticketing for @grehack.bsky.social opened one hour ago, and my Burp Suite Pro workshop is already full booked 😎

a cartoon drawing of a person singing into a microphone with the words sold out behind them

ALT: a cartoon drawing of a person singing into a microphone with the words sold out behind them

media.tenor.com

2 7

Nicolas Grégoire @agarri.fr · 10d

The ticketing for @grehack.bsky.social opened one hour ago, and my Burp Suite Pro workshop is already full booked 😎

a cartoon drawing of a person singing into a microphone with the words sold out behind them

ALT: a cartoon drawing of a person singing into a microphone with the words sold out behind them

media.tenor.com

2 7

Reposted by Nicolas Grégoire

Molly White @molly.wiki · 11d

You would think the obvious solution to "the volunteer-powered project we all train our AI models on for free isn't adequately twisting reality to our political views" would be "... and so we stopped training on it" and not "... and so we will force the volunteers to bend to our will"

8 98 940

Nicolas Grégoire @agarri.fr · 12d

Same, it’s always a pleasure!

1

Nicolas Grégoire @agarri.fr · 12d

Seriously enjoyed my first time at the Romhack conference! 🤩 🇮🇹

Next year, there’s the Romhack camp, and I’m looking forward giving it a try ⛺️

romhack.io/romhack-camp...

RomHack Camp 2026

The second edition of RomHack Camp is scheduled for September 2026, follow us to stay updated!

romhack.io

1 4

Reposted by Nicolas Grégoire

💥 leonjza @leonjza.bsky.social · 13d

Romhack was absolute 🔥! The conference, the community, the vibe - all of it was just something else. Special mention to merlos1977@x and the CybersaiyanIT@x team for making the speaking experience excellent too. 🙃

1 7

Reposted by Nicolas Grégoire

Marco Ivaldi @raptor.infosec.exchange.ap.brid.gy · 13d

“When you’re using a cloud proxy, you’re importing everyone else’s technical debt into your website” — @albinowax

1 2

Reposted by Nicolas Grégoire

Tanner Rowlett @trowlett0.bsky.social · 16d

GUIFuzz++ is the first general-purpose fuzzer for desktop GUI software! Fuzzing by translating AFL++ random input into user interaction with GUIs, leading to the discovery of 23 new bugs!

Paper: futures.cs.utah.edu/papers/25ASE.pdf
Source: github.com/FuturesLab/GUIFuzzPlusPlus

Go test some GUIs!

1 11 16

Reposted by Nicolas Grégoire

Zack Whittaker @zackwhittaker.com · 14d

Since moving to Ghost, all of my past newsletters are now readable at this.weekinsecurity.com. That's 7+ years of cyber history documented weekly since mid-2018.

That's also 7+ years of reader-submitted cyber cats (and friends)! 🐈‍⬛

Please consider subscribing for extra articles, analysis, and more.

~this week in security~

a weekly cybersecurity newsletter by Zack Whittaker, plus articles and more.

this.weekinsecurity.com

9 21

Nicolas Grégoire @agarri.fr · 14d

AppSec Ezine - 605th edition #AppSec #Security 💎

pathonproject.com/zb/?1e18fef9...

AppSec Ezine

pathonproject.com

2 3

Nicolas Grégoire @agarri.fr · 15d

#FrenchPolitics

1 1 8

Nicolas Grégoire @agarri.fr · 20d

The conference is sold-out, but you can still watch the stream

romhack.io

RomHack Conference, Training and Camp

RomHack is a format made by the non-profit association Cyber Saiyan and composed by a Conference a Training session and a Hacker Camp.

romhack.io

Nicolas Grégoire @agarri.fr · 20d

I will be at RomHack the whole week.
If you're around, please say hi!

a cartoon of a penguin flying a small plane with an italian flag attached to it

ALT: a cartoon of a penguin flying a small plane with an italian flag attached to it

media.tenor.com

1 4

Nicolas Grégoire @agarri.fr · 20d

AppSec Ezine - 604th edition #AppSec #Security

pathonproject.com/zb/?50916f33...

AppSec Ezine

pathonproject.com

2 2

Reposted by Nicolas Grégoire

Olga Nesterova @onestpress.onestnetwork.com · 20d

Per Reuters, Pentagon has informed European diplomats that the United States will partially halt military assistance to the Baltic nations and NATO member states bordering Russia.

The department stated that the decision is linked to the United States’ new priority — “homeland defense.”

Olga Nesterova @onestpress.onestnetwork.com · 21d

As part of the “America First” program, Pentagon has classified certain weapons types, including Patriot, as “in short supply” and is beginning to block requests for these systems from European partners.

110 360 500

Nicolas Grégoire @agarri.fr · 20d

See you there! 🍕

2

Reposted by Nicolas Grégoire

Jimmy Wylie @mayahustle.com · 21d

I learned about it reading Orange’s write up in Phrack72: phrack.org/issues/72...

And the blog post it references here by Orange and Splitline: devco.re/blog/2025/0...

Both of these are excellent write ups and great reads if you’re into vulnerability research, CTFs, or hacker history.
3/3

The Art of PHP - My CTF Journey and Untold Stories!

Click to read the article on phrack

phrack.org

2 5