Rik Ferguson
@rikferguson.com
Immigrant. VP Security Intelligence @Forescout, Co-founder @RespectInSec. Board @vaultree, Cybersecurity Futurist, Researcher, Award-winning writer/producer. He/Him. Pussy in bio.
Substack - Ferguson.ink
Slava Ukraini 🇺🇦
Substack - Ferguson.ink
Slava Ukraini 🇺🇦
Pinned
Rik Ferguson
@rikferguson.com
· Nov 8
Reposting this tweet from Oct 2017, so I can pin it here too.
Public note: If you ask me to sit on any public panel I will decline if there are no women on the panel. I can’t do much but I can do this.
Public note: If you ask me to sit on any public panel I will decline if there are no women on the panel. I can’t do much but I can do this.
There’s advertising, there’s devices…
It’s almost as if AI is not a product in itself. Who’d have thought?
Here comes the pin…
It’s almost as if AI is not a product in itself. Who’d have thought?
Here comes the pin…
OpenAI executive Chris Lehane says the company is "on track" to unveil its first device in the "latter part" of 2026; reports suggest it will be a wearable (Axios)
Main Link | Techmeme Permalink
Main Link | Techmeme Permalink
January 19, 2026 at 3:44 PM
There’s advertising, there’s devices…
It’s almost as if AI is not a product in itself. Who’d have thought?
Here comes the pin…
It’s almost as if AI is not a product in itself. Who’d have thought?
Here comes the pin…
So, it seems I can still get into my Sharnbrook school shirt. Last time I was wearing it was 1986, I was 16! Pretty sure I wouldn’t be able to get into the trousers though 😀
It’s the shirt that I had a whole bunch of lunatics write messages on the the end of term.
It’s the shirt that I had a whole bunch of lunatics write messages on the the end of term.
January 19, 2026 at 7:10 AM
So, it seems I can still get into my Sharnbrook school shirt. Last time I was wearing it was 1986, I was 16! Pretty sure I wouldn’t be able to get into the trousers though 😀
It’s the shirt that I had a whole bunch of lunatics write messages on the the end of term.
It’s the shirt that I had a whole bunch of lunatics write messages on the the end of term.
One for your hard block list.
✅ @icegov.bsky.social has been verified by @bsky.app.
January 17, 2026 at 9:11 AM
One for your hard block list.
The bursting of the AI bubble will be orders of magnitude worse than the dot com bubble.
So many individuals have already learned to “unthink”, have voluntarily surrendered their creative and critical faculties, that the solution can only be generational.
So many individuals have already learned to “unthink”, have voluntarily surrendered their creative and critical faculties, that the solution can only be generational.
January 16, 2026 at 10:33 PM
The bursting of the AI bubble will be orders of magnitude worse than the dot com bubble.
So many individuals have already learned to “unthink”, have voluntarily surrendered their creative and critical faculties, that the solution can only be generational.
So many individuals have already learned to “unthink”, have voluntarily surrendered their creative and critical faculties, that the solution can only be generational.
“Love Destruction” was equally angry and equally prescient.
“Love my hatred, love my treason
It's what you wanted and that's my reason
Caught you livin' the empty feeling
A corporate handout to you is pleasing
You love destruction”
“Love my hatred, love my treason
It's what you wanted and that's my reason
Caught you livin' the empty feeling
A corporate handout to you is pleasing
You love destruction”
Warrior Soul - Love Destruction
YouTube video by WarriorSoulVEVO
youtu.be
January 16, 2026 at 9:20 PM
“Love Destruction” was equally angry and equally prescient.
“Love my hatred, love my treason
It's what you wanted and that's my reason
Caught you livin' the empty feeling
A corporate handout to you is pleasing
You love destruction”
“Love my hatred, love my treason
It's what you wanted and that's my reason
Caught you livin' the empty feeling
A corporate handout to you is pleasing
You love destruction”
The Party from all the way back in 1992. Were you not listening? youtu.be/8snFF8FSTxU?...
The Party
YouTube video by Warrior Soul - Topic
youtu.be
January 16, 2026 at 9:16 PM
The Party from all the way back in 1992. Were you not listening? youtu.be/8snFF8FSTxU?...
Blimey, Camilla Tominey seems to be a fairly awful human #newsnight. Never encountered the lady before this evening, hope to continue in that vein in future.
January 8, 2026 at 11:06 PM
Blimey, Camilla Tominey seems to be a fairly awful human #newsnight. Never encountered the lady before this evening, hope to continue in that vein in future.
Oh, and I managed to slam the fingers of my left hand in the armour plating of a tank “window”. I was very accident-prone as a kid.
10 years old I managed to close one of the old “slam-shut” British Rail train doors while one hand was still gripping the door frame (I had to lean out to grab the handle). Right thumb burst like a little tomato and I sat holding the wreckage in a tissue all the way back from London to Three Bridges
What's the most ridiculous way you ever hurt yourself? I got out of the tub, skidded in water and tripped over the toilet. Ankle sprain.
😅
😅
January 6, 2026 at 12:00 AM
Oh, and I managed to slam the fingers of my left hand in the armour plating of a tank “window”. I was very accident-prone as a kid.
10 years old I managed to close one of the old “slam-shut” British Rail train doors while one hand was still gripping the door frame (I had to lean out to grab the handle). Right thumb burst like a little tomato and I sat holding the wreckage in a tissue all the way back from London to Three Bridges
What's the most ridiculous way you ever hurt yourself? I got out of the tub, skidded in water and tripped over the toilet. Ankle sprain.
😅
😅
January 5, 2026 at 11:58 PM
10 years old I managed to close one of the old “slam-shut” British Rail train doors while one hand was still gripping the door frame (I had to lean out to grab the handle). Right thumb burst like a little tomato and I sat holding the wreckage in a tissue all the way back from London to Three Bridges
“I just want to watch ballet,
Let the swans dance.”
Just discovered this Russian song from 3 years ago. If only this strength of feeling could be translated into something substantive in that oppressive pit of hopelessness.
Let the swans dance.”
Just discovered this Russian song from 3 years ago. If only this strength of feeling could be translated into something substantive in that oppressive pit of hopelessness.
Noize MC — Кооператив «Лебединое озеро» / Community „Swan Lake“ (текст + English subtitles)
YouTube video by Music4all
youtu.be
December 20, 2025 at 12:10 AM
“I just want to watch ballet,
Let the swans dance.”
Just discovered this Russian song from 3 years ago. If only this strength of feeling could be translated into something substantive in that oppressive pit of hopelessness.
Let the swans dance.”
Just discovered this Russian song from 3 years ago. If only this strength of feeling could be translated into something substantive in that oppressive pit of hopelessness.
I’m beginning to realise nostalgia doesn’t make me happy. The state of humanity in 2025 stains everything, even my own memories, with self-centred, I’m-alright-Jack, wilfully ignorant selfishness. Looking back doesn’t comfort me. It leaves me angry at how easily we were satisfied, how little it took
December 19, 2025 at 10:39 PM
I’m beginning to realise nostalgia doesn’t make me happy. The state of humanity in 2025 stains everything, even my own memories, with self-centred, I’m-alright-Jack, wilfully ignorant selfishness. Looking back doesn’t comfort me. It leaves me angry at how easily we were satisfied, how little it took
Time for my semi-regular promotion of TraffickCam, an app which helps to identify locations where abuse & trafficking has occurred. All you need to do is upload pics of your hotel room. traffickcam.com please use and RT.
TraffickCam
traffickcam.com
December 11, 2025 at 3:37 PM
Time for my semi-regular promotion of TraffickCam, an app which helps to identify locations where abuse & trafficking has occurred. All you need to do is upload pics of your hotel room. traffickcam.com please use and RT.
With the most recent zero day in Google Chrome (466192044), we hit an uncomfortable milestone. 100 zero day vulnerabilities in 2025 so far. Equalling the full year figure for 2024. One more and 2025 becomes the busiest year on record.
I don’t think anyone is seriously betting against that outcome.
I don’t think anyone is seriously betting against that outcome.
December 11, 2025 at 12:21 PM
With the most recent zero day in Google Chrome (466192044), we hit an uncomfortable milestone. 100 zero day vulnerabilities in 2025 so far. Equalling the full year figure for 2024. One more and 2025 becomes the busiest year on record.
I don’t think anyone is seriously betting against that outcome.
I don’t think anyone is seriously betting against that outcome.
Who knows the legal outcome, but it’s certainly worth heading over to twitter.new to claim your handle…
#BackWithYourEx
#BackWithYourEx
Operation Bluebird wants to relaunch “Twitter,” says Musk abandoned the name and logo
“Abandonment” offers rare chance to reclaim one of tech’s most recognized brands.
arstechnica.com
December 11, 2025 at 5:39 AM
Who knows the legal outcome, but it’s certainly worth heading over to twitter.new to claim your handle…
#BackWithYourEx
#BackWithYourEx
Every time I think I have seen the limit of cyber “expert” bios, someone proves me wrong. This is not about gatekeeping. It is about integrity, honesty and transparency in a field where people make decisions that really matter.
Cybersecurity has a credential problem
..
www.linkedin.com
December 10, 2025 at 2:51 PM
Every time I think I have seen the limit of cyber “expert” bios, someone proves me wrong. This is not about gatekeeping. It is about integrity, honesty and transparency in a field where people make decisions that really matter.
Never a dull moment with Mister Cluley, and his Smashing Security podcast ❤️
Terrific to have @rikferguson.com join me on episode 446 of the Smashing Security podcast, where we discussed how a teenage cybercriminal's attempt to mock a sextortion scammer badly backfired, and take a crystal ball look ahead to what 2026 might have in store...
open.spotify.com/episode/0paB...
open.spotify.com/episode/0paB...
A hacker doxxes himself, and social engineering-as-a-service
open.spotify.com
December 5, 2025 at 11:04 AM
Never a dull moment with Mister Cluley, and his Smashing Security podcast ❤️
Dear America, I have tried your “chocolate” and it is awful. So bad that I completely fail to grasp why Hallowe’en ever even took off in the US.
Do better.
Do better.
November 22, 2025 at 1:37 PM
Dear America, I have tried your “chocolate” and it is awful. So bad that I completely fail to grasp why Hallowe’en ever even took off in the US.
Do better.
Do better.
Anthropic’s report is being called the first AI-orchestrated cyber-espionage campaign. For many it’s the moment the alarm bell was finally audible.
For me, it’s different: the moment a warning I’ve been giving since 2017 stopped being “nightmare scenario” panel fodder & started leading the news.
For me, it’s different: the moment a warning I’ve been giving since 2017 stopped being “nightmare scenario” panel fodder & started leading the news.
We Built the Kill Chain for Humans. AI Didn’t Get the Memo.
Right now, Anthropic is all over the news for exposing what it calls the first largely AI-orchestrated cyber-espionage campaign: a suspected Chinese state-sponsored group, GTG-1002, hijacking Claude C...
www.linkedin.com
November 17, 2025 at 9:09 PM
Anthropic’s report is being called the first AI-orchestrated cyber-espionage campaign. For many it’s the moment the alarm bell was finally audible.
For me, it’s different: the moment a warning I’ve been giving since 2017 stopped being “nightmare scenario” panel fodder & started leading the news.
For me, it’s different: the moment a warning I’ve been giving since 2017 stopped being “nightmare scenario” panel fodder & started leading the news.
Lars Ulrich is definitely one of the drummers of all time.
November 3, 2025 at 9:38 PM
Lars Ulrich is definitely one of the drummers of all time.
Xi-phoon or Xi-clone? It’s so difficult to tell them apart.
Salt, Volt, Flax, Silk; they all rely on Xiploits.
Remember, just because something is not “required” doesn’t mean you shouldn’t do it.
Salt, Volt, Flax, Silk; they all rely on Xiploits.
Remember, just because something is not “required” doesn’t mean you shouldn’t do it.
FCC will vote to scrap telecom cybersecurity requirements
The commission’s Republican chair, who voted against the rules in January, calls them ineffective and illegal.
www.cybersecuritydive.com
October 30, 2025 at 9:26 PM
Xi-phoon or Xi-clone? It’s so difficult to tell them apart.
Salt, Volt, Flax, Silk; they all rely on Xiploits.
Remember, just because something is not “required” doesn’t mean you shouldn’t do it.
Salt, Volt, Flax, Silk; they all rely on Xiploits.
Remember, just because something is not “required” doesn’t mean you shouldn’t do it.
TAFKNAP - The Andrew Formerly Known As Prince.
October 30, 2025 at 9:18 PM
TAFKNAP - The Andrew Formerly Known As Prince.
Our team at Forescout has discovered multiple new vulnerabilities in TP-Link routers. You may have noticed an uncredited vulnerability disclosure from TP-Link yesterday, that was us.
Several additional vulnerabilities are still in the disclosure process and will be detailed in upcoming publications.
Several additional vulnerabilities are still in the disclosure process and will be detailed in upcoming publications.
New TP-Link Router Vulnerabilities: A Primer on Rooting Routers
Forescout’s Vedere Labs research uncovers TP-Link router vulnerabilities that allow attackers to root devices. See how, including mitigation guidance.
www.forescout.com
October 23, 2025 at 5:16 PM
Our team at Forescout has discovered multiple new vulnerabilities in TP-Link routers. You may have noticed an uncredited vulnerability disclosure from TP-Link yesterday, that was us.
Several additional vulnerabilities are still in the disclosure process and will be detailed in upcoming publications.
Several additional vulnerabilities are still in the disclosure process and will be detailed in upcoming publications.
