Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆ

@[email protected]
753 Followers
430 Following
2K Posts

Software Engineer. Security Researcher. Puerto Rican πŸ‡΅πŸ‡·. New Yorker. Bilingual. LG(B)TQ πŸ³οΈβ€πŸŒˆ. He/him.

Focused on browser research. Glad to collaborate.

Website: https://AlesandroOrtiz.com
(Header πŸ“·: roriv3ra on IG)

Websitehttps://AlesandroOrtiz.com
LocationQueens, NY / Puerto Rico
Infrequent Newsletterhttps://AlesandroOrtiz.com/subscribe
Twitter (unused)https://twitter.com/AlesandroOrtizR
Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆ5d ago
evacide5d ago
If you have an iPhone, today is a good day to make sure you are running the latest software. https://techcrunch.com/2026/03/23/someone-has-publicly-leaked-an-exploit-kit-that-can-hack-millions-of-iphones/
Someone has publicly leaked an exploit kit that can hack millions of iPhones | TechCrunch

Leaked "DarkSword" exploits published to GitHub allow hackers and cybercriminals to target iPhone users running old versions of iOS with spyware, according to cybersecurity researchers.

TechCrunch
Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆMar 20
benjojoMar 19
Making an account on something today when I came across a novel to me password restriction
Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆMar 18
evacideMar 18

It sure is a cool and normal time to be working at a civil liberties non-profit in the United States.

https://www.cbsnews.com/news/fbi-irs-investigate-nonprofits-domestic-terrorism-links/

FBI and IRS to investigate nonprofit groups for domestic terrorism links, sources say

In December, Attorney General Pam Bondi ordered law enforcement officials to prioritize efforts to probe and prosecute groups and individuals belonging to the antifa movement or are deemed "extremist."

Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆMar 10
Xenotime, Librarian of Γ†ther Mar 10

This library is fucked

install library
seems okay
"Error: file is not a database"
nervously opens database file

the SQLite database file is actually the HTML code of the Dropbox 404 page

Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆMar 10
Xenotime, Librarian of Γ†ther Mar 10
yes their setup.py downloads all the data from dropbox

and the dropbox got like rate-limited for an indefinite amount of time

nobody ever should have to open setup.py and see urrlib2.urlopen('https://www.dropbox.com/s/...

RE: https://hexokina.se/notes/ajora3u66wus00c4
Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆMar 5
Lorenzo Franceschi-BicchieraiMar 5

NEW: The FBI said it is investigating a hack on its networks.

The breach affected the FBI's systems to manage wiretaps and surveillace requests, according to CNN.

https://techcrunch.com/2026/03/05/fbi-investigating-hack-on-its-wiretap-and-surveillance-systems-report/

FBI investigating hack on its wiretap and surveillance systems: Report | TechCrunch

Hackers allegedly broke into the FBI’s networks, according to a report by CNN.

TechCrunch
Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆMar 4

"4 half-medium CVEs that look reddish" πŸ˜‚ The whole video is gold comedy, as is the whole channel.

https://youtu.be/xE9W9Ghe4Jk?t=391

Shipping a button in 2026…

YouTube
Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆMar 2
πŸ…°πŸ…»πŸ…ΈπŸ…²πŸ…΄ (πŸŒˆπŸ¦„)Mar 1

Here's to all the kids who were born with non-default settings; to all you who put the effort in to figure yourselves out.

You're amazing and deserve to be celebrated.

I'm glad you're here πŸ’

Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆFeb 19

New York City news stations every day:
"A [thing] happened on Sutphin Blvd in Jamaica, Queens"
or "on 8th Ave in Manhattan"
or "on Greenpoint Ave in Brooklyn"

Great, I know exactly nothing about where it happened because most major streets/aves stretch dozens or hundreds of blocks. It literally could be anywhere in eastern Queens, or Manhattan, or large swaths of Brooklyn.

Even worse when B-roll footage shows no cross streets or identifying businesses/landmarks either, so unless you live/work on that block you won't know where the newsworthy-thing happened.

They do this both for the on-air reporting and online articles, and it's frustrating when it's potentially in an area you care about. Yes, I have written about this to all the stations multiple times over the years. No, they have not improved much.

Alesandro Ortiz πŸ‡΅πŸ‡·πŸ³οΈβ€πŸŒˆFeb 16
Kevin BeaumontFeb 16

Today in InfoSec Job Security News:

I was looking into an obvious ../.. vulnerability introduced into a major web framework today, and it was committed by username Claude on GitHub. Vibe coded, basically.

So I started looking through Claude commits on GitHub, there’s over 2m of them and it’s about 5% of all open source code this month.

https://github.com/search?q=author%3Aclaude&type=commits&s=author-date&o=desc

As I looked through the code I saw the same class of vulns being introduced over, and over, again - several a minute.

Build software better, together

GitHub is where people build software. More than 150 million people use GitHub to discover, fork, and contribute to over 420 million projects.

GitHub