how do you do
Mastodon Digest
Posts
A post about how Azure Relay Bridge (azbridge) can be abused by red teams to tunnel C2 traffic through Microsofts Azure Service Bus infrastructure🕵️♂️
https://hackerhermanos.com/azbridge
#infosec #cybersecurity #pentest #redteam #cloud #micorosoft
If you secretly like pumpkin spice lattes but are too embarrassed to order one, know that the ingredients are the same as those used for preparing a ham, so you can just ask for a “ham spice latte” and you’ll 100% get what you want and nobody will ask you any questions
Oh hey, I never noticed the Palo Alto Networks emoji before. :bloblamp:
watchTowr Labs keeping up the momentum of hot blog posts. I'm running out of popcorn.
This cat is fluent in the English language*!
*only word that matter, anyway
The Discord Hack is Every User’s Worst Nightmare — Why Uploaded IDs are a Problem
https://squeet.me/display/962c3e10-289dae7e-35d2e8a2979194eb
What I need to do is buy one of those old rotating comic racks like they had at the drug store when I was a kid and then set that up IN PUBLIC and keep it stocked at all times until I am not sitting on a mountain of comic books.
I'm sure the Republicans in Idaho, a stronghold of white supremacy, will love the idea of the Qatari military being stationed in their state. I'm sure they'll be very normal and very cool about it and won't cook up weird conspiracy theories.
https://www.cbsnews.com/news/hegseth-qatar-air-force-facility-us-base-idaho/
Oh come on now. "Premature HANDSHAKE_DONE" in quic-go is just too on-the-nose.
https://github.com/quic-go/quic-go/security/advisories/GHSA-47m2-4cr7-mhcw
my #dogsofmastodon entry for the day is my small/medium-size dog attempting to use the cat's bed, and ... kinda succeeding??
🎙️ New podcast!
@hdm joined #ITSPmagazine to ask the question: Are we still following security rules long past their expiration date?
HD dug into why legacy doctrines are holding us back. Advice like “change your password every 30 days” is not just outdated, it’s actively harmful.
😬 Oh, and the kicker? The tools we rely on to protect us, like firewalls, have become top breach vectors!
Big thanks to @Marcociappelli and @seanmartin for the great conversation!
📺 https://www.runzero.com/resources/itsp-magazine-sector-25/
#ecsc2025 was very well organised, thank you Poland, we had a very good time in Warsaw
The destination port 80 is well-known and used by attackers to evade detection.
Spyware maker NSO Group confirms acquisition by US investors https://techcrunch.com/2025/10/10/spyware-maker-nso-group-confirms-acquisition-by-us-investors/
I feel like the wholesomeness of hashtag asstodon is a really good barometer for the state of fedi. Once that goes, we know the capitalists are here.
Three CVEs in Amazon FreeRTOS-Plus-TCP.
https://aws.amazon.com/security/security-bulletins/AWS-2025-023/
MIT has formally rejected Trump’s odious “compact”. https://www.insidehighered.com/news/governance/executive-leadership/2025/10/10/mit-rejects-proposed-federal-compact
Boosts
Are you allergic to LaTeX? This pharmacy I'm at has this allergy warning. #latex
Forget ASDA’s soup & bread roll for a quid. Get yourself down to Parliament where they’re doing Miso roasted squash with cashew nut 'feta’, sesame tahini purée, parsnip crisps and sesame dukkah for £3.59.
Or If you're a bit strapped, pop down to the Members' Dining Room at the House of Commons for pressed chicken and caramelised onion with tarragon and chive jelly, pickled vegetables and thyme sourdough at £2.84.
Don't forget to vote against free school meals while you're there.
I have a bazillion new German followers (hello!), and I'm getting interviewed for German public radio in an hour about "sunlight as a service", and I don't speak any German and I've never been to Germany.
The Fediverse is a truly magical place!
What's interesting about "big tents" is that I've never seen their advocates try to stretch them as far to the left as they do to the right. It's never like "we're sending free laptops to this Maoist insurrectionary group because they have really interesting ideas." It's always about stretching the tent to fit the people advocating for fascism.
So, antifa won the Nobel Peace Prize.
this is the best thing that Microsoft ever did
O Google nunca se quer vendeu um dos seus produtos bons (ex: Google Pixels, ou Chromecasts) no Brasil, mas está pronto para nos utilizar como cobaia para saber como uma sociedade como a nossa aceitará o bloqueio de instalação de software livre.
Envie uma mensagem pros seus deputados.
https://f-droid.org/pt_BR/2025/09/29/google-developer-registration-decree.html
real shitposters only use lower case because we are anti-capitalism
Chinese artist Shou Xin brings cats to life with just a few marks of his pencil.
# Microsoft is making Word automatically save new documents to OneDrive by default
LibreOffice Writer doesn't.
And it is free.
And really rather good.
This part of the Nobel committee's statement hits.
https://www.nobelprize.org/prizes/peace/2025/press-release/
#politics #NobelPeacePrize
It's becoming increasingly clear to me that Reflect Orbital's fucking stupid giant mirror satellite, with absolutely NOTHING useful to offer, which will cause countless safety issues, ecological disasters, and destroy the night sky, is going to launch.
A bunch of astronomers and I have sent out a fact sheet about them to a bunch of journalists, but very few are going to write about this. So, let me try posting it all here.
Here's what I know about Reflect Orbital and all the downsides:
Bitcoin is pure, pure evil
Bitcoin’s energy use per dollar generated now exceeds that of mining copper or gold
Bitcoin mining significantly increases PM2.5 pollution, the tiny airborne particles linked to respiratory and heart disease.
Each bitcoin mining rig has a short shelf life of about 1.3 years. Once outdated, they’re dumped
Bitcoin mining needs massive water cooling systems
They did the Monster Slash
My therapist diagnosed me with ADHD and some other things that he’s still rambling about.