Spanky
@spankowitz.bsky.social
I like threat intel, purple team, and turtles.
Reposted by Spanky
If Pentesting, AppSec, Bug Bounties or Security Engineering is your focus the Security Bugs section of my blog may be for you. Here I explore a serialization CVE in SolarWinds and prevention methods
Programming Languages and Serialization CVEs
teriradichel.substack.com/p/programmin...
Programming Languages and Serialization CVEs
teriradichel.substack.com/p/programmin...
Programming Languages and Serialization CVEs
Taking a look at a recent critical Solar Winds CVE
teriradichel.substack.com
January 30, 2026 at 10:24 PM
If Pentesting, AppSec, Bug Bounties or Security Engineering is your focus the Security Bugs section of my blog may be for you. Here I explore a serialization CVE in SolarWinds and prevention methods
Programming Languages and Serialization CVEs
teriradichel.substack.com/p/programmin...
Programming Languages and Serialization CVEs
teriradichel.substack.com/p/programmin...
Reposted by Spanky
🔥 #ThreeBuddyProblem Ep83 has been pushed to your earholes. Poland CERT on Russian wipers, Sandworm or not Sandworm, new FortIvanti nightmares + some KasperSekrets chit-chat @craiu.bsky.social @jags.bsky.social
securityconversations.com/episode/a-de...
securityconversations.com/episode/a-de...
A destructive cyberattack in Poland raises NATO 'red-line' questions - Security Conversations
(Presented by Material Security: We protect your company’s most valuable materials — the emails, files, and accounts that live in your Google Workspace and Microsoft […]
securityconversations.com
January 30, 2026 at 8:20 PM
🔥 #ThreeBuddyProblem Ep83 has been pushed to your earholes. Poland CERT on Russian wipers, Sandworm or not Sandworm, new FortIvanti nightmares + some KasperSekrets chit-chat @craiu.bsky.social @jags.bsky.social
securityconversations.com/episode/a-de...
securityconversations.com/episode/a-de...
Reposted by Spanky
Reposted by Spanky
Today’s Daily Cartoon, by Teresa Burns Parkhurst. #NewYorkerCartoons
January 7, 2026 at 11:00 PM
Today’s Daily Cartoon, by Teresa Burns Parkhurst. #NewYorkerCartoons
Reposted by Spanky
NPR built a visual archive of the Jan. 6, 2021, attack on the Capitol, showing exactly what happened through the lenses of the people who were there. In "Chapter 2: Stop the Steal," we look at how false claims of a stolen election mobilized Trump supporters.
Jan. 6, 2021: A visual archive of the Capitol attack
NPR’s Jan. 6 archive brings together reporting, video, documents and testimony to show what really happened during the Capitol riot. Explore the timeline, cases and evidence behind the attack.
n.pr
January 6, 2026 at 1:27 PM
NPR built a visual archive of the Jan. 6, 2021, attack on the Capitol, showing exactly what happened through the lenses of the people who were there. In "Chapter 2: Stop the Steal," we look at how false claims of a stolen election mobilized Trump supporters.
Reposted by Spanky
The 2025 selection follows its predecessors, "brain rot" from 2024, "rizz" from 2023 and "goblin mode" from 2022.
Don't get angry, but the 2025 Oxford Word of the Year is 'rage bait'
The 2025 selection follows its predecessors, "brain rot" from 2024, "rizz" from 2023 and "goblin mode" from 2022.
n.pr
December 28, 2025 at 1:32 PM
The 2025 selection follows its predecessors, "brain rot" from 2024, "rizz" from 2023 and "goblin mode" from 2022.
Reposted by Spanky
A fresh problem has been pushed to your podcast platforms! @craiu.bsky.social @jags.bsky.social
- Spotify open.spotify.com/episode/68US...
- Apple podcasts.apple.com/us/podcast/w...
Presented by our friends at ThreatLocker 😍
- Spotify open.spotify.com/episode/68US...
- Apple podcasts.apple.com/us/podcast/w...
Presented by our friends at ThreatLocker 😍
What's behind US gov push to 'privatize' cyber operations?
open.spotify.com
December 20, 2025 at 6:31 PM
A fresh problem has been pushed to your podcast platforms! @craiu.bsky.social @jags.bsky.social
- Spotify open.spotify.com/episode/68US...
- Apple podcasts.apple.com/us/podcast/w...
Presented by our friends at ThreatLocker 😍
- Spotify open.spotify.com/episode/68US...
- Apple podcasts.apple.com/us/podcast/w...
Presented by our friends at ThreatLocker 😍
Reposted by Spanky
AI isn’t reinventing ransomware — it’s industrializing it.
That’s the core finding from new @sentinellabs.bsky.social research on how threat actors are actually using LLMs today. s1.ai/llm-rw
That’s the core finding from new @sentinellabs.bsky.social research on how threat actors are actually using LLMs today. s1.ai/llm-rw
LLMs & Ransomware | An Operational Accelerator, Not a Revolution
LLMs make competent ransomware crews faster and novices more dangerous. The risk is not superintelligent malware, but rather industrialized extortion.
s1.ai
December 17, 2025 at 8:07 PM
AI isn’t reinventing ransomware — it’s industrializing it.
That’s the core finding from new @sentinellabs.bsky.social research on how threat actors are actually using LLMs today. s1.ai/llm-rw
That’s the core finding from new @sentinellabs.bsky.social research on how threat actors are actually using LLMs today. s1.ai/llm-rw
Reposted by Spanky
Outgoing 15-year head of GAO says he's worried the government is "taking our foot off the gas at CISA" and would "live to regret it." He also said CISA's one-third workforce cut was "obviously untenable" and "they may not be postured" to support the midterm elections. fedscoop.com/cisa-workfor...
Outgoing GAO chief warns of ‘taking our foot off the gas’ at CISA
Gene Dodaro, who is set to retire from the watchdog at the end of this month, shared final concerns with senators Tuesday about how the government is prioritizing cybersecurity.
fedscoop.com
December 17, 2025 at 8:30 PM
Outgoing 15-year head of GAO says he's worried the government is "taking our foot off the gas at CISA" and would "live to regret it." He also said CISA's one-third workforce cut was "obviously untenable" and "they may not be postured" to support the midterm elections. fedscoop.com/cisa-workfor...
Reposted by Spanky
The BloodHound Query Library, launched by @martinsohn.dk & @joeydreijer.bsky.social, democratizes tradecraft with a shared, searchable ecosystem. With 180+ Cypher queries & counting, the library is an increasingly valuable tool for the BloodHound community!
Browse ➡️ ghst.ly/bql_eoybsky
Browse ➡️ ghst.ly/bql_eoybsky
December 11, 2025 at 11:07 PM
The BloodHound Query Library, launched by @martinsohn.dk & @joeydreijer.bsky.social, democratizes tradecraft with a shared, searchable ecosystem. With 180+ Cypher queries & counting, the library is an increasingly valuable tool for the BloodHound community!
Browse ➡️ ghst.ly/bql_eoybsky
Browse ➡️ ghst.ly/bql_eoybsky
Reposted by Spanky
Today’s Daily Cartoon, by Brendan Loper. #NewYorkerCartoons
December 10, 2025 at 12:00 AM
Today’s Daily Cartoon, by Brendan Loper. #NewYorkerCartoons
Reposted by Spanky
AI tooling and MCP servers are entering enterprises fast, often faster than security teams can assess the risks.
During a recent engagement, @xpnsec.com found a new Claude Code vuln (CVE-2025-64755) while exploring MCP abuse paths.
👀 Read the details: ghst.ly/49ybl4W
During a recent engagement, @xpnsec.com found a new Claude Code vuln (CVE-2025-64755) while exploring MCP abuse paths.
👀 Read the details: ghst.ly/49ybl4W
An Evening with Claude (Code) - SpecterOps
This blog post explores a bug, (CVE-2025-64755), I found while trying to find a command execution primitive within Claude Code to demonstrate the risks of web-hosted MCP to a client.
ghst.ly
November 21, 2025 at 4:34 PM
AI tooling and MCP servers are entering enterprises fast, often faster than security teams can assess the risks.
During a recent engagement, @xpnsec.com found a new Claude Code vuln (CVE-2025-64755) while exploring MCP abuse paths.
👀 Read the details: ghst.ly/49ybl4W
During a recent engagement, @xpnsec.com found a new Claude Code vuln (CVE-2025-64755) while exploring MCP abuse paths.
👀 Read the details: ghst.ly/49ybl4W
Reposted by Spanky
White Knight Labs: Part 2
White Knight Labs: Part 2 - Phillip Wylie
About the Guests: Greg Hatcher and John Stigerwalt are co-founders of White Knight Labs, a boutique cybersecurity company specializing in offensive security services and advanced training programs. Greg’s background includes a remarkable career as a Green Beret in the U.S. Army, transitioning into cybersecurity with a focus on penetration testing and red teaming. John’s journey…
thehackermaker.com
December 2, 2025 at 10:47 PM
White Knight Labs: Part 2
Reposted by Spanky
Reposted by Spanky
A U.S. District Judge has ruled that interim U.S. Attorney Lindsey Halligan (who had no prosecutorial experience before this role) was improperly appointed by the Trump administration, agreeing with Comey’s defense team.
The ruling means that both federal indictments are dismissed. trib.al/WZbNPi9
The ruling means that both federal indictments are dismissed. trib.al/WZbNPi9
November 24, 2025 at 10:43 PM
A U.S. District Judge has ruled that interim U.S. Attorney Lindsey Halligan (who had no prosecutorial experience before this role) was improperly appointed by the Trump administration, agreeing with Comey’s defense team.
The ruling means that both federal indictments are dismissed. trib.al/WZbNPi9
The ruling means that both federal indictments are dismissed. trib.al/WZbNPi9
@cyberwarcon.bsky.social how do you get so much talent packed into one day? This is my favorite conference. Every talk is a banger.
November 19, 2025 at 9:02 PM
@cyberwarcon.bsky.social how do you get so much talent packed into one day? This is my favorite conference. Every talk is a banger.
Reposted by Spanky
When Matt Thomas dropped out of law school, he devoted himself to a sport he initially thought was a joke: chess boxing. cbsn.ws/3LB3nOz
Chess boxers fight to win by hook or by rook
Chess boxing got its start in a graphic novel. Now actual competitors fight for knockouts and checkmates. Russia has dominated for years, but the sport's popularity is growing in the U.S.
cbsn.ws
November 18, 2025 at 1:00 PM
When Matt Thomas dropped out of law school, he devoted himself to a sport he initially thought was a joke: chess boxing. cbsn.ws/3LB3nOz
Reposted by Spanky
79-year-old Paul Bojerski was born to Polish parents in a WWII German refugee camp. His family legally emigrated to the U.S. when he was 5.
He’s been taken by ICE in Florida.
www.orlandosentinel.com/2025/11/16/s...
He’s been taken by ICE in Florida.
www.orlandosentinel.com/2025/11/16/s...
Sanford grandfather, born in refugee camp, nabbed by ICE after 70 years in U.S.
Paul Bojerski never gained official residency, but he checked in regularly with ICE for years. Then in July, at age 79, he was detained and sent to Alligator Alcatraz.
www.orlandosentinel.com
November 17, 2025 at 2:18 PM
79-year-old Paul Bojerski was born to Polish parents in a WWII German refugee camp. His family legally emigrated to the U.S. when he was 5.
He’s been taken by ICE in Florida.
www.orlandosentinel.com/2025/11/16/s...
He’s been taken by ICE in Florida.
www.orlandosentinel.com/2025/11/16/s...
Reposted by Spanky
This Thursday @strandjs.bsky.social join us to talk about China!
A cross between history and technology John breaks down exactly what he will be discussing in his webcast here!
Interested? Come join us and register here: events.zoom.us/ev/AhsoFeh2O...
A cross between history and technology John breaks down exactly what he will be discussing in his webcast here!
Interested? Come join us and register here: events.zoom.us/ev/AhsoFeh2O...
November 11, 2025 at 11:00 PM
This Thursday @strandjs.bsky.social join us to talk about China!
A cross between history and technology John breaks down exactly what he will be discussing in his webcast here!
Interested? Come join us and register here: events.zoom.us/ev/AhsoFeh2O...
A cross between history and technology John breaks down exactly what he will be discussing in his webcast here!
Interested? Come join us and register here: events.zoom.us/ev/AhsoFeh2O...
Reposted by Spanky
Politico is reporting that the breach at the Congressional Budget Office is "ongoing."
“Do NOT click on any links in emails from CBO. Do NOT share sensitive information with CBO colleagues over email, Microsoft Teams, or Zoom at this time,” the email to CBO staff reads.
“Do NOT click on any links in emails from CBO. Do NOT share sensitive information with CBO colleagues over email, Microsoft Teams, or Zoom at this time,” the email to CBO staff reads.
Cybersecurity breach at Congressional Budget Office remains a live threat
Library of Congress employees were informed to take caution when emailing the office of the congressional scorekeeper.
www.politico.com
November 10, 2025 at 9:40 PM
Politico is reporting that the breach at the Congressional Budget Office is "ongoing."
“Do NOT click on any links in emails from CBO. Do NOT share sensitive information with CBO colleagues over email, Microsoft Teams, or Zoom at this time,” the email to CBO staff reads.
“Do NOT click on any links in emails from CBO. Do NOT share sensitive information with CBO colleagues over email, Microsoft Teams, or Zoom at this time,” the email to CBO staff reads.
Reposted by Spanky
I found myself using this career advice slide a lot lately and thought I would share it more broadly.
November 10, 2025 at 11:00 AM
I found myself using this career advice slide a lot lately and thought I would share it more broadly.
Reposted by Spanky
We deployed MCP honeypots to understand how threat actors engage with AI middleware exposed to the internet. What we observed was unexpected. Full analysis ⬇️
#GreyNoise #AI #AISecurity #MCP #MCPSecurity #Cybersecurity #ThreatIntel
#GreyNoise #AI #AISecurity #MCP #MCPSecurity #Cybersecurity #ThreatIntel
What GreyNoise Learned from Deploying MCP Honeypots
GreyNoise deployed MCP honeypots to see what happens when AI middleware meets the open internet — revealing how attackers interact with this new layer of AI infrastructure.
www.greynoise.io
November 5, 2025 at 7:15 PM
We deployed MCP honeypots to understand how threat actors engage with AI middleware exposed to the internet. What we observed was unexpected. Full analysis ⬇️
#GreyNoise #AI #AISecurity #MCP #MCPSecurity #Cybersecurity #ThreatIntel
#GreyNoise #AI #AISecurity #MCP #MCPSecurity #Cybersecurity #ThreatIntel
Reposted by Spanky
The rushed and uneven rollout of A.I. has made it tempting to conclude that it’s all hype. But its advancement may have profound implications for the field of neuroscience.
The Case That A.I. Is Thinking
ChatGPT does not have an inner life. Yet it seems to know what it’s talking about.
www.newyorker.com
November 3, 2025 at 4:01 PM
The rushed and uneven rollout of A.I. has made it tempting to conclude that it’s all hype. But its advancement may have profound implications for the field of neuroscience.
Reposted by Spanky
🎇New package alert @wired.com! This one has been in the works for months. If WIRED was going to tackle AI -- something we cover daily -- we had to go big. So here are 17 different stories about the way AI is changing us, even as the technology itself keeps moving www.wired.com/ai-issue/
AI of a Thousand Faces
What happens now that AI is everywhere and in everything? WIRED can’t tell the future, but we can try to make sense of it. Behold: 17 readings from the furthest reaches of the AI age.
www.wired.com
October 27, 2025 at 11:21 AM
🎇New package alert @wired.com! This one has been in the works for months. If WIRED was going to tackle AI -- something we cover daily -- we had to go big. So here are 17 different stories about the way AI is changing us, even as the technology itself keeps moving www.wired.com/ai-issue/
Reposted by Spanky
Summary of the Amazon DynamoDB Service Disruption in Northern Virginia (US-EAST-1) Region
I bet someone wishes they had checked for an empty value in this code right about now:
The root cause of this issue was …
I bet someone wishes they had checked for an empty value in this code right about now:
The root cause of this issue was …
October 24, 2025 at 4:44 PM
Summary of the Amazon DynamoDB Service Disruption in Northern Virginia (US-EAST-1) Region
I bet someone wishes they had checked for an empty value in this code right about now:
The root cause of this issue was …
I bet someone wishes they had checked for an empty value in this code right about now:
The root cause of this issue was …