Lobster Roll

All LHN/.

Security / Privacy (2025-11)

RSS

Showing stories from 2025-11. View all

Oops! It's a kernel stack use-after-free: Exploiting NVIDIA's GPU Linux drivers (blog.quarkslab.com)
L 30 pts 0 comments by pl Nov 30, 2025 clinuxsecurity Systems / Low-Level / OSSecurity / Privacy thread
Landlock-ing Linux (blog.prizrak.me)
L 48 pts 5 comments by fanf Nov 30, 2025 linuxsecurity Systems / Low-Level / OSSecurity / Privacy thread
Is anyone using Project Hummingbird? (redhat.com)
L 4 pts 10 comments by Mordo Nov 28, 2025 security Security / Privacy thread
Fort Knox for your secrets - Manage secrets with encryption or cloud providers (fnox.jdx.dev)
L 12 pts 3 comments by Couto Nov 28, 2025 cryptographypracticessecurity Security / PrivacyProductivity / Career / Business thread
Leak of identity of anonymous reviewers, authors, and area chairs on OpenReview
L 2 pts 0 comments by asb Nov 28, 2025 security Security / Privacy thread
https://openreview.net/forum/user|statement_regarding_api_security_incident (As the URL contains a `|` it is being rejected in the URL field).
ML-KEM Mythbusting (keymaterial.net)
L 31 pts 10 comments by fpbgg Nov 28, 2025 cryptographymathsecurity Security / PrivacyScience / Math / Physics thread
PyPI and Shai-Hulud: Staying Secure Amid Emerging Threats (blog.pypi.org)
L 3 pts 2 comments by fcbsd Nov 26, 2025 pythonsecurity Programming (General)Security / Privacy thread
Chat Control: EU lawmakers finally agree on the voluntary scanning of your private chats (techradar.com)
L 50 pts 23 comments by mseri Nov 26, 2025 cryptographylawprivacy Security / Privacy thread
fail2ban RCE (cve.org)
L 5 pts 7 comments by gmem Nov 26, 2025 securityvibecoding AI / Machine LearningSecurity / Privacy thread
Releasing Packages with a Valet Key: npm, PyPI, and beyond (byk.im)
L 3 pts 0 comments by byk Nov 26, 2025 javascriptpracticessecurity Web DevelopmentSecurity / PrivacyProductivity / Career / Business thread
SecretSpec 0.4.0 (devenv.sh)
L 11 pts 2 comments by zupo Nov 26, 2025 devopssecurity Data / Databases / InfrastructureSecurity / Privacy thread
Stop Hacklore - An Open Letter (hacklore.org)
L 82 pts 34 comments by rslabbert Nov 25, 2025 security Security / Privacy thread
Stop Putting Your Passwords Into Random Websites (Yes, Seriously, You Are The Problem) (labs.watchtowr.com)
L 32 pts 11 comments by rw-rw-rw- Nov 25, 2025 rantsecurity Security / Privacy thread
Project Foxhound - on the Scent of Client-Side Web Vulnerabilities (community.sap.com)
L 1 pts 0 comments by freddyb Nov 25, 2025 browserssecurity Web DevelopmentSecurity / Privacy thread
Counter Galois Onion: Improved encryption for Tor circuit traffic (blog.torproject.org)
L 20 pts 0 comments by cve Nov 24, 2025 cryptographysecurity Security / Privacy thread
Shai Hulud Strikes Again (aikido.dev)
L 4 pts 3 comments by UkiahSmith Nov 24, 2025 security Security / Privacy thread
Shai-Hulud Returns: Over 300 NPM Packages infected via Fake Bun Runtime Within Hours (helixguard.ai)
L 64 pts 69 comments by bezdomni Nov 24, 2025 javascriptsecurity Web DevelopmentSecurity / Privacy thread
Rust for Malware Development (bishopfox.com)
L 6 pts 2 comments by rggr Nov 23, 2025 rust Systems / Low-Level / OSSecurity / Privacy thread
Windows ARM64 Internals: Deconstructing Pointer Authentication (preludesecurity.com)
L 5 pts 6 comments by jevinskie Nov 22, 2025 hardwaresecuritywindows Security / PrivacyMaker / DIY / Hardware thread
A Reverse Engineer’s Anatomy of the macOS Boot Chain & Security Architecture (stack.int.mov)
L 9 pts 5 comments by fro Nov 22, 2025 macreversingsecurity Systems / Low-Level / OSSecurity / PrivacyApple / macOS / iOS thread
We should all be using dependency cooldowns (blog.yossarian.net)
L 121 pts 55 comments by yossarian Nov 21, 2025 security Security / Privacy thread
Beyond the cloud: smarter choices for control, security & costs (bevuta.com)
L 2 pts 0 comments by sjamaan Nov 21, 2025 practices Security / PrivacyProductivity / Career / Business thread
Adversarial Poetry as a Universal Single-Turn Jailbreak Mechanism in Large Language Models (arxiv.org)
L 18 pts 6 comments by df Nov 20, 2025 aisecurity AI / Machine LearningSecurity / Privacy thread
Preventing Abuse of Digital Credentials (w3.org)
L 3 pts 0 comments by freddyb Nov 20, 2025 privacysecurityweb Web DevelopmentSecurity / PrivacyInternet / Digital Culture thread
Inside a global campaign hijacking open-source project identities (fullstory.com)
L 14 pts 1 comments by nfriedly Nov 19, 2025 security Programming (General)Security / Privacy thread
WhatsApp Census (github.com)
L 21 pts 1 comments by sunflowerseastar Nov 18, 2025 pdfsecurity Security / Privacy thread
Mind the encryptionroot: How to save your data when ZFS loses its mind (sambowman.tech)
L 4 pts 0 comments by mtlynch Nov 18, 2025 devopsfreebsd Systems / Low-Level / OSData / Databases / InfrastructureSecurity / Privacy thread
6 years after too much crypto (bfswa.substack.com)
L 75 pts 8 comments by Johz Nov 18, 2025 cryptographysecurity Security / Privacy thread
FunkSec – Alleged Top Ransomware Group Powered by AI (research.checkpoint.com)
L 1 pts 0 comments by weinzierl Nov 17, 2025 security AI / Machine LearningSecurity / Privacy thread
k-anonymity, the parent of all privacy definitions (desfontain.es)
L 11 pts 0 comments by Mbat Nov 17, 2025 privacy Security / Privacy thread