Alexandre Dufresne

@dufresnetech@infosec.exchange
19 Followers
92 Following
299 Posts
Security Analyst by day. Awesome all the time.
Alexandre Dufresne3d ago
runZero, Inc3d ago

🎙 LLMs, MCP, & the Future of Vulnerability Intelligence: Jerry Gamblin, Principal Engineer at Cisco Threat Detection & Response, joins runZero Hour for a deep dive into today’s vulnerability landscape — from CVE trends and statistics to the launch of his new MCP (Model Context Protocol) server, which uses LLMs to summarize CVEs with more context and clarity.

Tune in as Jerry, @todb and @rk unpack:

👉 What’s changing in the CVE ecosystem and what that means for defenders
👉 How Jerry’s MCP server can help you understand vulnerabilities faster
👉 Key takeaways from our Rapid Response roundup, including our take on what should be at the top of your hot list

This Wednesday, June 18 at 1pm ET / 10am PT. Don't miss it!

📺 Register now: https://www.runzero.com/research/runzero-hour/

Alexandre Dufresne3d ago
[realhackhistory@home]#3d ago
If your website insists on me reading in an app I’m either going to a paywall removing site or just not reading what you have to say. Stop trying to put every damn thing in an app.
Alexandre DufresneJun 12

Yo Dawg @geerlingguy, I put a PC in my graphics card 🫣

This custom build GeeFarce 5027POS brought me back to your BliKVM video somehow. Here ya go - I think GamersNexus featured it in a video recently.

https://mycherrytree.com/products/geefarce-5027pos-micro-computer

Alexandre DufresneMay 30
Show threadSQLAllFatherMay 13

@kimlockhartga

We got a new home heating system installed this spring - a massive investment. During the initial pre-sales conversations I made it 100% clear that any system that required an internet connection was not acceptable in any way.

When the work was done the installation tech informed us that for the system to function it needed to be connected to the internet. I let him know this wasn't what we were told up front, and that we were unwilling to compromise.

"I'm sorry sir, I know this system inside and out, and it doesn't work without a connection. I don't know what you were told, but this is what we need to do next."

"In that case I would like you to leave my house while I call your company and my lawyer."

A few hours and three escalations later, the system is working just fine without any internet connection.

FFS, it shouldn't be this hard. The stove, the fridge, the fucking thermostats. No. Absolutely fucking not.

Alexandre DufresneMay 30
I will now forever refer to #csharp as c++++... Knowing that it kind of started as j++ makes this even funnier 🤭
https://youtube.com/shorts/I2wOC787u8A?si=JpDBiSs3pPTV9sVp
Before you continue to YouTube

Alexandre DufresneMay 29
Show threadKevin BeaumontMay 29

SentinelOne outage is now almost 6 hours in and impacting customer protection.

Statement from support: "We are aware of ongoing console outages affecting commercial customers globally and are currently restoring services. Customer endpoints are still protected at this time, but managed response services will not have visibility. Threat data reporting is delayed, not lost. Our initial RCA shows an internal automation issue, and not a security incident.”

Alexandre DufresneMay 29
Show threadKevin BeaumontMay 29
The mainstream have now found out about the O2 thing https://www.ft.com/content/2fc4234a-0065-490d-8483-33feff284ff3
Virgin Media O2 network flaw allowed customer phones to be tracked

Company has reported issue to watchdogs and fixed the problem

Financial Times
Alexandre DufresneMay 13
Jeff GeerlingMay 13

New #homelab Python meme incoming

source: https://www.reddit.com/r/homelab/comments/1klrw9l/got_an_alert_that_just_my_2nd_cpu_temps_were/

Alexandre DufresneMay 8
Electronic Frontier FoundationMay 8
Your location data isn’t just a pin on a map. It can reveal where you work, worship, protest, or seek healthcare—and it’s being harvested, sold, and weaponized. Lawmakers must act now to protect our privacy. https://www.eff.org/deeplinks/2025/04/privacy-map-how-states-are-fighting-location-surveillance
Privacy on the Map: How States Are Fighting Location Surveillance

Location data is highly sensitive, and without proper protections, it can be used to harm those who are already vulnerable. The digital trail we leave behind can reveal far more than we think, and without laws in place to protect us, we are all at risk.

Electronic Frontier Foundation
Alexandre DufresneMay 4
Kevin BeaumontMay 4

The third party version of Signal the White House has been using has been hacked, and Signal messages from devices stolen (as they were being sent to the supplier).

This includes group chat messages. The suppliers website has disappeared as of writing this toot.

https://www.404media.co/the-signal-clone-the-trump-admin-uses-was-hacked/

The Signal Clone the Trump Admin Uses Was Hacked

TeleMessage, a company that makes a modified version of Signal that archives messages for government agencies, was hacked.

404 Media