It's a write-up a year in the. waiting. Enjoy everyone!.

if this is truly what happened, what a remarkable security lapse.

Better late than never, I suppose. Finally got macOS 26 beta 3.

If this is truly the reason, it is honestly very funny.

Frida seems to not really work on macOS now, which can be annoying. But it's ok, I can patch this binary's behavior through lldb!.

The more I look into Mach services, the more I think @Apple should add "bootstrap lookup" events to Endpoint Security. Maybe they already have that, but I don't see much of an indication of that from their documentation.

I'm not saying macOS 26 is resource-heavy. But I am saying I've found my MacBook getting hot much more often now after running the beta. It very well could be something I'm doing differently, but it is still a bit annoying.

RT @REverseConf: Announcing RE//verse 2026! Website is updated with info for sponsors, trainers, speakers, and more importantly, attendees!….

Having looked into macOS now with its Hardened Runtime and other security features. I forget that other platforms don't have that level of security built-in.

RT @haro7z: @linuxopsys

RT @LowLevelTweets: @_JohnHammond DID U KNOW A PASSWORD STEALER STEALER A PASSWORD? PASSKEY!.

RT @_JohnHammond: oHHH NoOOooOooOo.a gAZILLION PASSWORFS hAVE LEAKED aLL oVER tHE INTERWEVS.nOOOOOooOOoOOOoOOoOoooOoo000.tHE PASSWORSDS aRE….

RT @BleepinComputer: No, the 16 billion credentials leak is not a new data breach - @LawrenceAbrams. .

RT @usetraceix: 16 BillIoN pAssWoRds lEakEd fRoM APplLe And OtHeR stuFF lIkE gOOglE.

RT @vxunderground: BREAKING: APPLE HACKED FACEBOOK HACKED X HACKED GOOGLE HACKED YOUTUBE HACKED TWITCH HACKED WIKIPEDIA HACKED https://t.co….

The "16 billion credential" breach is almost certainly mostly bullshit that's further exacerbated by shoddy journalistic standards. The source article, which is bad in its own right, is literally just "uh, yeah, we just threw a bunch of infostealer dumps together".

One thing I'm currently doing security research on has grown now from the original research scope into two related classes of vulnerabilities. This is pretty fun.

Security research is fun. Waiting until I can actually talk about my work is not fun.

RT @0xTib3rius: Looks like the Google Cloud incident report is out: Summary:. - On May 29, 2025, a new Service Con….

RT @gergely_kalman: Awesome video @LowLevelTweets! I'd be willing to bet a $100 though they don't do regex on the….

Shout out to Mr. Bruh! This is an incredible find. Running a driver updater on a `localhost` port. What could possible go wrong?.