Farhan Nearhan ❼
LightNews LightNews
farhanible.bsky.social
Farhan Nearhan ❼
@farhanible.bsky.social
200 followers 220 following 46 posts
Former CISO | Now Advisory/Fractional CISO | NYC | Founder ovrsr.com | A very personal account | Been to @arbys once
Posts Replies Media Videos
Reposted by Farhan Nearhan ❼
defcon.bsky.social
Wishing you and yours the hackerest of holidays.
December 26, 2025 at 7:24 AM
Reposted by Farhan Nearhan ❼
campuscodi.risky.biz
Password vaults stolen from LastPass at the end of 2022 were cracked and used to steal cryptocurrency as recently as this year, with the stolen funds being laundered through Russia-based cryptocurrency exchanges

www.trmlabs.com/resources/bl...
TRM Traces Stolen Crypto from 2022 LastPass Breach — On-chain Indicators Suggest Russian Cybercriminal Involvement | TRM Blog
TRM traced LastPass-linked Bitcoin laundering through mixers to high-risk Russian exchanges, showing how demixing exposes infrastructure reuse and limits mixer anonymity.
www.trmlabs.com
December 25, 2025 at 1:36 PM
Reposted by Farhan Nearhan ❼
campuscodi.risky.biz
The IBM X-Force Exchange, the company's in-house vulnerability database that was founded even before the CVE program, appears to have been abandoned

jericho.blog/2025/12/23/r...
Rest In Peace IBM X-Force Vulnerability Database
Within the vulnerability ecosystem, the CVE project / vulnerability database is certainly the most well-known. Over the past 30 years many others have come and gone, and others are still around. So…
jericho.blog
December 25, 2025 at 1:07 PM
Reposted by Farhan Nearhan ❼
evacide.bsky.social
MIT Technology Review profiles @rondeibert.bsky.social, who understood that civil society needed digital defense long before just about anyone else and has been doing it ever since.

www.technologyreview.com/2025/12/24/1...
Meet the man hunting the spies in your smartphone
Ronald Deibert and his research group, the Citizen Lab, have rigorously worked to unveil alarming digital threats for the past two decades. Now, he warns, this kind of work is under threat.
www.technologyreview.com
December 24, 2025 at 9:44 PM
Reposted by Farhan Nearhan ❼
404media.co
iCloud, Mega, and as a torrent. Archivists have uploaded the 60 Minutes episode Bari Weiss spiked.
Archivists Posted the 60 Minutes CECOT Segment Bari Weiss Killed
iCloud, Mega, and as a torrent. Archivists have uploaded the 60 Minutes episode Bari Weiss spiked.
www.404media.co
December 23, 2025 at 12:15 AM
Reposted by Farhan Nearhan ❼
andyjabbour.bsky.social
A good mix of real security fails & a healthy dose of snark. @eff.org: 'The Breachies 2025: The Worst, Weirdest, Most Impactful Data Breaches of the Year.' Congrats (?) @troyhunt.com? www.eff.org/deeplinks/20... #cybersecurity @gate15.bsky.social @campuscodi.risky.biz @ransomwaresommelier.com
The Breachies 2025: The Worst, Weirdest, Most Impactful Data Breaches of the Year
Another year has come and gone, and with it, thousands of data breaches that affect millions of people. The question these days is less, Is my information in a data breach this year? and more How many...
www.eff.org
December 22, 2025 at 12:31 PM
Reposted by Farhan Nearhan ❼
kellybarnhill.bsky.social
"Why is everyone SO OBSESSED with the Epstein Files," whined the guy who is in the Epstein Files.

www.theguardian.com/us-news/2025...
New York Times columnist David Brooks appears in latest Epstein photos
Brooks, who dismissed Epstein scandal as ‘stupid story’, wrote column expressing lack of interest in developments
www.theguardian.com
December 18, 2025 at 9:00 PM
Reposted by Farhan Nearhan ❼
rodger.bsky.social
Terrifying headline if you don’t realize they are sports teams.
Rockets owners expand talks to buy, move Sun
December 19, 2025 at 4:37 PM
Reposted by Farhan Nearhan ❼
bencollins.bsky.social
This is fucking grim. Somebody invented a white guy, an "IT professional" named Edward Crabtree, who stopped the Bondi shooting and spread it all over the internet, which was picked up by AI agents and slop aggregation sites.

The real hero is a fruit stand owner named Ahmed el Ahmed.
A wrong Grok post making up a white guy who stopped the Australian mass shooting. BBC 'Hero' who wrestled gun from Bondi shooter named as Ahmed al Ahmed Emily Atkinson Sun, December 14, 2025 at 1:06 p.m. CST 2 min read A "hero" bystander who was filmed wrestling a gun from one of the Bondi Beach attackers has been named as 43-year-old Ahmed al Ahmed. Video verified by the BBC showed Mr Ahmed run at the gunman and seize his weapon, before turning the gun round on him, forcing his retreat. Mr Ahmed, a fruit shop owner and father of two, remains in hospital, where he has undergone surgery for bullet wounds to his arm and hand, his family told 7News Australia.
December 14, 2025 at 8:02 PM
Reposted by Farhan Nearhan ❼
mehdirhasan.bsky.social
Horrific, disgusting, inexcusable, antisemitic
December 14, 2025 at 12:29 PM
Reposted by Farhan Nearhan ❼
cje.io
PATCH YO’ IOS

About the security content of iOS 26.2 and iPadOS 26.2 - Apple Support support.apple.com/en-us/125884
About the security content of iOS 26.2 and iPadOS 26.2 - Apple Support
This document describes the security content of iOS 26.2 and iPadOS 26.2.
support.apple.com
December 13, 2025 at 12:09 AM
Reposted by Farhan Nearhan ❼
carnage4life.bsky.social
When Americans were cheering on a billionaire (and soon trillionaire) firing low level government employees in the hopes that they’d get a refund check from the savings was when I realized how much propaganda has turned our brains to mush.
December 7, 2025 at 8:19 PM
Reposted by Farhan Nearhan ❼
mobiusstripper.bsky.social
Every car made today is an incredibly sophisticated computer on wheels. Really unfortunate that there is simply no solution to having it die because one (1) little overhead light was left on overnight.
November 24, 2025 at 7:32 PM
Reposted by Farhan Nearhan ❼
ant0i.net
curl known risks, i actually wasn't aware of that one.

curl.se/docs/knownri...
November 22, 2025 at 1:32 PM
farhanible.bsky.social
Spongebob voice: 50 yEaRs LaTEr
campuscodi.risky.biz Catalin Cimpanu @campuscodi.risky.biz · Nov 20
Cisco has announced Resilient Infrastructure, a project to improve the security of its products.

This includes:

-increase default protections
-remove legacy insecure features
-reduce the attack surface
-enable better detection and response

blogs.cisco.com/news/doublin...
Doubling down on resilient infrastructure
As global networks face escalating threats, Cisco is strengthening resilient infrastructure by setting secure defaults, eliminating legacy risks, and empowering proactive defense.
blogs.cisco.com
November 20, 2025 at 6:04 PM
Reposted by Farhan Nearhan ❼
asmartbear.com
Your time is the ultimate zero-sum game.

If you work on P for an hour, you're not working on Q.

So, prioritization is paramount, and whiling away a useless hour is prohibitively expensive.

Except, rest and creativity and daydreaming generates ideas and well-being.
November 15, 2025 at 11:01 PM
Reposted by Farhan Nearhan ❼
rincewind.run
the biggest lesson from the emails today is that powerful people are so unafraid of consequences for crimes as bad as “raping children” that they will just talk about it openly in emails

the only path to a better society is one where that is no longer true
November 12, 2025 at 10:51 PM
Reposted by Farhan Nearhan ❼
jsrailton.bsky.social
CRUSHING BLOW TO NSO: 🇺🇸Court permanently bans Pegasus spyware-maker from targeting WhatsApp

🚫Must destroy tools exploiting WhatsApp
🚫Stop future development of WA targeting

Foreign gov customers exempt from data deletion but...
🚫NSO is barred from helping them hack WA. 1/
November 13, 2025 at 12:41 AM
Reposted by Farhan Nearhan ❼
premthakker.bsky.social
My gosh — After Israeli forces tear-gassed this kid, making him collapse, other soldiers then "detained the ambulance carrying Aysam from the Beita Emergency Center to Nablus for several minutes, interrogating the driver about Aysam’s injury, location, and cause before it was allowed to continue."
premthakker.bsky.social Prem Thakker ツ @premthakker.bsky.social · Nov 11
New — Israeli forces just killed this Palestinian boy.

Last month, he and his family were harvesting olives. Soldiers bombarded them with tear gas, making him collapse.

He was in critical condition until today.

He is the 47th kid killed by Israeli soldiers and settlers in the West Bank this year.
Ramallah, November 11, 2025-A 13-year-old Palestinian boy died today, one month after Israeli forces attacked his family while they were harvesting olives. Aysam Jihad Labib Naser, 13, was harvesting olives with his family around 10 a.m. on October 11 in the Wadi Aziz area on Jabal Qamas in Beita, south of Nablus in the northern occupied West Bank, when Israeli soldiers heavily bombarded the area with tear gas and fired several tear gas canisters toward Aysam, causing him to choke severely and collapse, according to documentation collected by Defense for Children International - Palestine. A nearby nurse examined Aysam, noting he had a very weak pulse and was not breathing, and performed cardiopulmonary resuscitation. An ambulance, which had been stationed close by in case of Israeli settler attacks, brought Aysam to the Beita Emergency Center, where doctors resuscitated his heart using a defibrillator, then Aysam was transferred to Al-Watani Governmental Hospital in Nablus. The next day, Aysam was transferred to An-Najah National University Hospital. Aysam remained in critical condition in the cardiac intensive care unit until he died on November 11 around 6 p.m. "Aysam should have been able to pick olives with his family in peace, and instead Israeli forces targeted him and his family with deadly force," said Ayed Abu Eqtaish, accountability program director at DCIP. "Targeting a child who poses absolutely no threat to a soldier's life is shockingly routine for Israeli soldiers, who are never held accountable for killing Palestinian children." Israeli settlers have been attacking Palestinian families harvesting olives in the northern occupied West Bank, frequently accompanied by the Israeli military. Three Israeli military vehicles entered the area where Aysam and his family were harvesting olives around 10 a.m. on October 11. The soldiers dismounted around 300 meters (984 feet) away and shouted through loudspeakers that everyone was ordered to evacuate the area w…
November 11, 2025 at 8:29 PM
Reposted by Farhan Nearhan ❼
jsrailton.bsky.social
Bringing NSO Group out of the cold would signal to the rest of the spyware industry that even the most notorious mercenary spyware company..

...with a history of harming the US.

...and a mountain of abuses..

Can get a free pass.

It would defang US efforts to curb proliferation & bad behavior.
skirchy.bsky.social Stephanie Kirchgaessner @skirchy.bsky.social · Nov 10
We asked David Friedman, the former US ambassador to Israel, who has been named exec chairman of the NSO Group holding company, whether he would try to get sanctions on NSO lifted. He said: “I hope that will be accomplished, but we haven’t made that request yet”. www.theguardian.com/technology/2...
Tech giants vow to defend users in US as spyware companies make inroads with Trump administration
Apple and WhatsApp say they’ll keep warning users if their phones are targeted by governments using hacking software against them
www.theguardian.com
November 10, 2025 at 7:18 PM
Reposted by Farhan Nearhan ❼
jsrailton.bsky.social
YIKES: NSO floats Pegasus spyware used in hypothetical "time of domestic crisis" in 🇺🇸America.

I believe they won't stop lobbying until they get Pegasus into USA.

To hack Americans. 1/
November 7, 2025 at 8:36 PM
Reposted by Farhan Nearhan ❼
michaelcaley.bsky.social
(in case you want to play around with any NYC elections data: docs.google.com/spreadsheets...)
NYC Election Analysis (from Michael Caley)
docs.google.com
November 6, 2025 at 8:20 PM
Reposted by Farhan Nearhan ❼
campuscodi.risky.biz
Repeat after me: Do not fill in and sync your government ID data to your Google account

blog.google/products/chr...
Chrome now helps you fill in passport, driver’s license, vehicle information and more.
Chrome already saves you time every day by securely filling in your addresses, passwords and payment information. Today, we’re making it even more helpful. For desktop u…
blog.google
November 6, 2025 at 1:10 AM
Reposted by Farhan Nearhan ❼
campuscodi.risky.biz
CISA's election day monitoring room was not stood up yesterday for the first time in years

According to Bloomberg, remaining CISA election security staff, who have not been fired, have been "prohibited" from contacting state election officials.

www.bloomberg.com/news/article...
US Elections Face Security Test as DHS Cuts Local Cyber Support
As voters across the US from New York City to New Jersey and Virginia prepare to cast ballots Tuesday, election officials are operating with sharply reduced support from a federal government agency th...
www.bloomberg.com
November 5, 2025 at 10:56 PM
Reposted by Farhan Nearhan ❼
gregpak.net
Halloween is the best holiday because it's all about people giving neighbors and strangers treats for free and telling kids how awesome they are.
November 1, 2025 at 2:03 AM