Interesting links of the week:
Strategy:
* https://eugeneyan.com/writing/cybersecurity-evals/ - building cyber evals with @eugeneyan
* https://www.rusi.org/explore-our-research/publications/rusi-books/new-thinking-uk-cyber-effects-edited-collection - are RUSI having an effect?
* https://knoxsystems.com/blog/fedramp-just-retired-the-monthly-scan---vdr-and-ver-are-what-replace-it - stop panicking about 10.0 and start thinking about context
* https://mr-r3b00t.github.io/net_draw/ - drawing networks with @UK_Daniel_Card
Threats:
* https://www.sysdig.com/blog/jadepuffer-agentic-ransomware-for-automated-database-extortion - is that a large language model in your /proc?
* https://www.helpnetsecurity.com/2026/07/03/research-non-interactive-ssh-attacks/ - most bots aren't that smart
Bugs:
* https://syntetisk.tech/blog/posts/privilege-escalation-to-root-in-lima-qemu-guests-via-a-world-writable-agent-socket-cve-2026-53657/ - stop leaving AF_UNIX open...
* https://etbe.coker.com.au/2026/06/30/dirtyclone-selinux/ - @etbe looks at dirty* and how it affects SELinux
Exploitation:
* https://hacker.house/blog/inference-fuzzing-with-recursive-prompting-a-practical-methodology-for-llm-driven-code-audits - 10 abort(); 20 goto 10
* https://jakeotte.com/posts/klist-revisited.html - abusing klist.exe
* https://codon.org.uk/~mjg59/blog/p/preventing-token-theft/ - first of two blogs from @mjg59 on API security
* https://codon.org.uk/~mjg59/blog/p/securing-agentic-identity/ - @mjg59's second post on securing agents
Hard hacks:
* https://jeremyclark.ca/wp/nav/rtl-sdr-for-ais/ - raise the skull and cross bones
* https://www.nccgroup.com/research/lights-camera-hacked-an-insight-into-the-world-of-popular-ip-cameras/ - there's no light at the end of this tunnel
Hardening:
* https://copyninja.in/blog/debvulns-cli.html - Debian has new tools for checking patch statuses
Nerd:
* https://techarchives.irish/irelands-first-computers-1956-69/brian-dent/ - mainframe nerdery
* https://people.csail.mit.edu/meyer/mcs.pdf - maths for computer scientists
* https://cios.dhitechnical.com/ - read the src, free the src