“The largest supply chain compromise in npm, Inc. history just happened, packages with a total of 2 billion weekly downloads just got turned malicious” LinkedIn Post https://t.co/dJ0tlPrSBJ More info on hacker news https://t.co/uncwjtFgxT

🚀 Just launched ShadowSeek at Black Hat Arsenal 2025! This new AI-powered binary security analysis platform is set to change how we find vulnerabilities in closed-source code. Try here: https://t.co/bqQ1e9zFA8 #BinaryAnalysis #ReverseEngineering #LLM #Ghidra #SecurityResearch

NVIDIA research just made LLMs 53x faster. 🤯 Imagine slashing your AI inference budget by 98%. This breakthrough doesn't require training a new model from scratch; it upgrades your existing ones for hyper-speed while matching or beating SOTA accuracy. Here's how it works:

I am sure I need a better cooling system in place for the ML workloads but supper excited to be extacting every ounce of my GPU!

Read “Leveraging .INI Files for Code Execution on Windows: Techniques Used by Malware and Adversaries“ on Medium:

Series on fuzzing open source software using fuzzuf by @RicercaSec https://t.co/hqhtJFcWef https://t.co/nd6EOhdaF1 https://t.co/Uib3p7mLJI https://t.co/7FwDlO6HW9 #fuzzing #cybersecurity

Just published my latest blog on MCP & Security! Check it out and let me know your thoughts. 🚀🔒 https://t.co/efcp1OHp2r #CyberSecurity #MCP #infosec #AI

I'm attending #BlueHat India. Hit me up if you are around!

SignToolEx - code sign things with expired (leaked) certificates without adjusting system clock using Microsoft Detours. https://t.co/2WP1wkEwdW

tmpout vol3 - article a day #14 "rain king - silent syscall hooking on arm64 linux via patching svc handler" wintermute shows us an interesting way of hooking syscalls that isn't commonly detected! read here: https://t.co/owHhPmbNjF

Hey Hackers, Here's the EDR and AV Bypass Content Thread! 🧵 👇 #infosec #Hacking #Pentesting #redteam

Check it out, it's tmp.0ut Volume 3! https://t.co/Gm9erN8hTJ

So far I've written 559 pages to help the security community: 1. https://t.co/CqJcmTzygA 2. https://t.co/49XWAoYgb9 3. https://t.co/eVgSSSzBhQ 4. https://t.co/5b3zrZMZXk 5. https://t.co/JMqvn2wK67 6. https://t.co/7WKSDijTIb 7. https://t.co/V3rw0gSZfu 8.

🚨🚨🚨 Whatever you were thinking about CVE-2023-20198 (#Cisco IOS EX) it's 100x worst. We used @TalosSecurity IOC check and found ~30k implants. That's 30k devices infected (routers, switches, VPNs), under the control of threat actors. That's excluding rebooted devices.

Poor man's guide to de-obfuscating VMProtect's : Discovery: https://t.co/xD3ZGtnSCB… (1/3) Resolution: https://t.co/6rrgxVavPU… (2/3) Import Recontruction: https://t.co/arHaZ21rYz… (3/3)

From word vectors to Reinforcement Learning from Human Feedback... Stanford's "Natural Language Processing with Deep Learning" course is one of the most relevant and best AI/ML courses today. It's just amazing how much knowledge and content this course pushes out every year.

This is scary. 😱 The MOTHER of all LLM Jailbreaks & Prompt injections. "Universal and Transferable Adversarial Attacks on Aligned Language Models" 🌐🔒 --- TL;DR --- This research & code introduces a fascinating method called "Universal and Transferable Adversarial Attacks

Mental Liquidity- very interesting read https://t.co/BY20P5ZEFK via @collabfund

This might be the single best repository to learn about smart contract hacks that happened in the DeFi ecosystem so far and even reproduce them using Foundry. Close to 200 hacks/incidents are listed here. 10x @1nf0s3cpt https://t.co/yg3GRQhirQ

Couldn't agree more with Gokul Rajaram: Next nine months will lead to company failures, shutdowns, down rounds: Gokul Rajaram - The Economic Times