Okay I know I could simply repair the keyboard with the intermittent keyboard problem impacting a couple of keys by taking apart my HP Dev One and cleaning/fixing/replacing things which will fix the problem, but am I doing that?
Of course not. Instead I'm of course thinking about just upgrading the laptop and I am trying to use this scenario as an excuse to try and justify a new fancy laptop purchase.
If you run Sendmail for a domain and are under regular attack by APT actors, then boy oh boy I have a fun blog post for you! What? Just me?
Ah well, you might find it interesting nonetheless as it is a monitoring problem I needed solving, and managed to actually meet my own needs.
https://www.markloveless.net/blog/2025/11/13/apt-and-sendmail-monitoring
A flaw led to more, then equipment upgrades and then things accelerated. What critical systems were impacted? Well, my own. Yup, massive techno-drama on the #homelab front.
https://www.markloveless.net/blog/2025/10/29/network-updates
It’s not a good rack rewiring day unless you scrape off some skin. But things are _slightly_ more secure.
I do appreciate the fact that many people are thrilled and excited to talk about the movie Hackers like they are. But when asked about it, they are typically shocked that I hated the film.
Yes it was in part that by comparison to the 1992 film Sneakers (and of course reality itself) it was wildly inaccurate, but as someone who remembers Eternal September* the film Hackers became its own version of that with a massive influx of newbies on security and hacker mailing lists and USENET channels saying "Teach me how to hack" who wanted instant results and would not respond well to pointers to papers and whatnot filled with technical details. "But I want to hack, not do homework!" was a reply I remember seeing that summed up a common feeling amongst newbs. Trying to explain that the film exaggerated and was fiction simply fell on deaf ears for many.
And that is why I hate the movie Hackers. Just remembering the film Sneakers that starred Robert Redford (RIP).
Fascinating report. Comment Crew was definitely already on my radar when I worked at MITRE, to the point that they were targeting NMRC as they had made the connection that my day job was MITRE. Not that I am saying that this confirms things disclosed to me in classified MITRE meetings, but this report from @kimzetter confirms a LOT for me. A fun read!
https://www.zetter-zeroday.com/how-the-infamous-apt-1-report-exposing-chinas-pla-hackers-came-to-be/
This is the first in a series of pieces I’ll publish that take an in-depth look at significant events, people and cases in security and surveillance from the past. If there’s something you think would make a good topic for this series, reach out to me at countdowntozeroday@
An attacker installed Huntress onto their operating machine, giving us a detailed look at how they’re using AI to build workflows, searching for tools like Evilginx, and researching targets like software development companies.
Friday, September 12th 2025 - Security BSides is a community-driven framework for building events for and by cybersecurity community members. The goal is to expand the spectrum of conversation beyond the traditional confines of space and time. It creates opportunities for individuals to both present and participate in an intimate atmosphere that encourages collaboration. It is an intense event with discussions, demos, and interaction from participants.
It's Friday Chai Day, and for fun I wrote a blog post which auto-posted this morning and I forgot to pass that on. Here it is, something totally not needed but still a nice nerd distraction in these trying times - bash themes.
cackalackycon
Simple Nomad
N-gated Hacker News
BSides RDU