Gary Blosser

@zombie042@infosec.exchange
17 Followers
132 Following
343 Posts
Just another security guy/experimental chef quietly watching the news and occasionally releasing tools, recipes, and thoughts.
Gary Blosser1d ago
TechNadu1d ago

🚨 PoisonSeed phishing kit bypasses FIDO2 by removing secure options from login flows & redirecting users to cloned Microsoft, Google, or Okta pages.

It doesn’t exploit FIDO2β€”it avoids it.
πŸ“Œ Experts warn this is part of a broader phishing evolution using social engineering + session hijacking.
πŸ”— Full article:
https://www.technadu.com/seed-of-deceit-poisonseed-tricks-users-out-of-fido2-redirects-microsoft-google-and-okta-logins-to-phishing-pages/603376/

#CyberSecurity #FIDO2 #Phishing #Okta #Infosec

Gary Blosser2d ago
Work Chronicles comics3d ago
(comic) Innovation at its finest https://workchronicles.substack.com/p/comic-innovation-at-its-finest-a49
Gary Blosser3d ago
nixCraft 🐧3d ago

TIL, If you type `thisisunsafe` on a Chrome TLS/SSL error page (e.g. https://expired.badssl.com ), Chrome will bypass the error and load the page for you. This is Google Chrome's TLS/SSL bypass cheat code.

Source https://thomascountz.com/2025/07/17/chromes-ssl-bypass-cheatcode

Gary Blosser4d ago
Ryan Zagrodnik4d ago
Used Claude's context resets + its own advice to bypass safeguards via email, leading to RCE through chained trust in Gmail, Claude Desktop, and a shell agent. Wild LLM composability flaw.
https://www.pynt.io/blog/llm-security-blogs/code-execution-through-email-how-i-used-claude-mcp-to-hack-itself
Code Execution Through Email: How I Used Claude to Hack

This is the story of how I used a Gmail message to trigger code execution through Claude Desktop, and how Claude itself (!) helped me plan the attack.

Gary Blosser4d ago
w00p5d ago
Gary Blosser4d ago
Jeff Atwood4d ago
This is extraordinarily well done. https://www.reddit.com/r/coolguides/comments/1i02pcx/a_cool_guide_for_crossover_in_principles_chekhovs/
Gary Blosser5d ago
AAKL5d ago
The Register: AI creeps into the risk register for America's biggest firms https://www.theregister.com/2025/07/15/sec_risk_factors_ai/ @theregister #AI
AI creeps into the risk register for America's biggest firms

: S&P 500 businesses warn investors they may never see ROI in SEC filings

The Register
Gary Blosser6d ago
Tim Hergert6d ago
Gary Blosser6d ago
Micro SF/F by O. Westin6d ago

"There's been a new breakthrough on flying cars! Soon, the-"

"It won't happen."

"This time, they fixed the-"

"Doesn't matter."

"Why not?"

"Dragons."

"What?"

"Flying cars get popular, dragons appear and eat them all, and make us forget it."

"What?"

"Happens every time."

"What?"

"Yup."

#TootFic #MicroFiction #SmallStories

Gary BlosserJul 8

Oh, I see it is TACO time again. 😫

Can I go back to vacation again? Glacier National Park was very pretty.

Γ—
cR0w Jun 20
@neurovagrant