🦜 SwiftOnSecurity / @SwiftOnSecurity
@xcancel.com.swiftonsecurity@rss-parrot.net
I'm an automated parrot! I relay a website's RSS feed to the Fediverse. Every time a new post appears in the feed, I toot about it. Follow me to get all new posts in your Mastodon timeline!
Brought to you by the RSS Parrot.
---
Twitter feed for: @SwiftOnSecurity. Generated by xcancel.com
Your feed and you don't want it here? Just
e-mail the birb.
Personal request: Any mutals have phone lookup and OSINT skills for numbers I could request something of. It's a long-lost friend or a brilliant lure if I reply to it, don't want to pay for a commercial service for this one thing.
https://xcancel.com/SwiftOnSecurity/status/1997521975464640570#m
Published: December 7, 2025 04:22
Personal request: Any mutals have phone lookup and OSINT skills for numbers I could request something of. It's a long-lost friend or a brilliant lure if I reply to it, don't want to pay for a commercial service for this one thing.
RT by @SwiftOnSecurity: What are you even supposed to say about this? Any system that lets this sort of thing happen is simply totally broken, and needs to be completely rethought.
https://xcancel.com/StatisticUrban/status/1997509168857751935#m
Published: December 7, 2025 03:31
What are you even supposed to say about this? Any system that lets this sort of thing happen is simply totally broken, and needs to be completely rethought.
xcancel.com/SAshworthHayes/status/1997056460174290971#m
RT by @SwiftOnSecurity: How many writeups have you seen where an attack chain is broken on several fronts but the attacker was successful because they built in enough recovery scenarios to their payload?
You need to understand just how fragile their crappy payloads are
We just have to be right once ;)
https://xcancel.com/NathanMcNulty/status/1997394243984491001#m
Published: December 6, 2025 19:54
How many writeups have you seen where an attack chain is broken on several fronts but the attacker was successful because they built in enough recovery scenarios to their payload?
You need to understand just how fragile their crappy payloads are
We just…
I knew where this was going with Donald's projections
https://rss.xcancel.com/SwiftOnSecurity/status/1997356088702783730#m
Published: December 6, 2025 17:22
I knew where this was going with Donald's projections
rss.xcancel.com/SwiftOnSecurity/status/1977405174022050230#m
RT by @SwiftOnSecurity: The sound of the @TOYOTA_GR GT and its 641bhp 4-litre twin-turbocharged V8, developed specifically for this car in-house at Gazoo Racing. 📷 @evosamj #ToyotaGRGT
https://xcancel.com/evomagazine/status/1997165615661175262#m
Published: December 6, 2025 04:46
The sound of the @TOYOTA_GR GT and its 641bhp 4-litre twin-turbocharged V8, developed specifically for this car in-house at Gazoo Racing. 📷 @evosamj #ToyotaGRGT
RT by @SwiftOnSecurity: NEW LONG FORM VIDEO: The rise and fall of Boston Market
Boston Market started as a single chicken shop in Massachusetts and exploded into the hottest IPO of 1993, making hundreds of millions for its early investors. But only a few years later, the company unraveled, running into financial trouble and a string of problems that nearly wiped it out. Today, only a small number of locations are still operating. This video breaks down one of the most requested stories from the comments: The rise and fall of Boston Market.
https://xcancel.com/girdley/status/1997123002878550520#m
Published: December 6, 2025 01:56
NEW LONG FORM VIDEO: The rise and fall of Boston Market
Boston Market started as a single chicken shop in Massachusetts and exploded into the hottest IPO of 1993, making hundreds of millions for its early investors. But only a few years later, the company…
Just to be clear the APT actor not being able to hack the server was not related to it being ARM Windows Server which does not exist. They had some other exotic thing they were doing to their computers which may not have been entirely security related.
https://rss.xcancel.com/SwiftOnSecurity/status/1997099434627551347#m
Published: December 6, 2025 00:23
Just to be clear the APT actor not being able to hack the server was not related to it being ARM Windows Server which does not exist. They had some other exotic thing they were doing to their computers which may not have been entirely security related.
"Hey we keep losing to attackers but we are doing normal security stuff."
"Have you considered fucking with them?"
"What?"
"Like don't use a playbook just make them real fucking mad by screwing with something they're never gonna check in their toolchain working."
https://rss.xcancel.com/SwiftOnSecurity/status/1997098747075887465#m
Published: December 6, 2025 00:20
"Hey we keep losing to attackers but we are doing normal security stuff."
"Have you considered fucking with them?"
"What?"
"Like don't use a playbook just make them real fucking mad by screwing with something they're never gonna check in their toolchain…
APT's have internal tech-support for the people with the hands on keyboard but they gotta wait on the phone for it and sometimes they're kind of busy
https://rss.xcancel.com/SwiftOnSecurity/status/1997095611120930849#m
Published: December 6, 2025 00:07
APT's have internal tech-support for the people with the hands on keyboard but they gotta wait on the phone for it and sometimes they're kind of busy
Yes a state level APT actor landed with RDP on the domain controller of a major corporation and then there was a compatibility problem with their tools and lack of knowledge on what to do and this gave them a few hours to detect it and evict them.
I think about this all the time
https://rss.xcancel.com/SwiftOnSecurity/status/1997095040930463863#m
Published: December 6, 2025 00:05
Yes a state level APT actor landed with RDP on the domain controller of a major corporation and then there was a compatibility problem with their tools and lack of knowledge on what to do and this gave them a few hours to detect it and evict them.
I think…
You can come up with ways this wouldn't impede many attacks, but I've confessed with someone exposed to a god-mode state-level APT 0day and attackers encountered a weird configuration on the box and had no freaking idea what to do.
They hit a DC and then didn't know what to do.
https://rss.xcancel.com/SwiftOnSecurity/status/1997094624041542136#m
Published: December 6, 2025 00:03
You can come up with ways this wouldn't impede many attacks, but I've confessed with someone exposed to a god-mode state-level APT 0day and attackers encountered a weird configuration on the box and had no freaking idea what to do.
They hit a DC and then…
RT by @SwiftOnSecurity: Defense in depth but the depth is instruction set incompatibility
https://rss.xcancel.com/gothburz/status/1997094054631252386#m
Published: December 6, 2025 00:01
Defense in depth but the depth is instruction set incompatibility
It was cool in WinRT you were immune to x86 payloads. I understand there's too many edge cases to try now.
It would be nice to have ARM physical servers with no compatibility layer. I've always dreamed of breaking someone's 0day or hack by unexpectedly only running ARM-only DC's
https://rss.xcancel.com/SwiftOnSecurity/status/1997093732127068189#m
Published: December 6, 2025 00:00
It was cool in WinRT you were immune to x86 payloads. I understand there's too many edge cases to try now.
It would be nice to have ARM physical servers with no compatibility layer. I've always dreamed of breaking someone's 0day or hack by unexpectedly…
FYI if you have really persistent hiccups lasting like a day with no end in sight you can go to urgent care and at least request a prescription for it. It is in reviewed studies but might need to be lucky.
I went through utter hell with this and it did work.
https://rss.xcancel.com/SwiftOnSecurity/status/1997056078568161416#m
Published: December 5, 2025 21:30
FYI if you have really persistent hiccups lasting like a day with no end in sight you can go to urgent care and at least request a prescription for it. It is in reviewed studies but might need to be lucky.
I went through utter hell with this and it did…
I call on society to end professional cartels like doctors, I should be able to put anything into my mouth I want
It works for toddlers
https://xcancel.com/SwiftOnSecurity/status/1997017752804966903#m
Published: December 5, 2025 18:58
I call on society to end professional cartels like doctors, I should be able to put anything into my mouth I want
It works for toddlers
Eventually my hiccups changed and the pocket of air that had been stuck for over a day came up and that was that.
https://xcancel.com/SwiftOnSecurity/status/1997015511788671446#m
Published: December 5, 2025 18:49
Eventually my hiccups changed and the pocket of air that had been stuck for over a day came up and that was that.
One time I cured 26+ hours of persistent hiccups with research and generic essential medications I imported from overseas to have on hand. Just as a weird prepping thing.
You can just do things. It was fixed 40 minutes later.
Sometimes you shouldn't.
But you can.
https://xcancel.com/SwiftOnSecurity/status/1997014961462100345#m
Published: December 5, 2025 18:47
One time I cured 26+ hours of persistent hiccups with research and generic essential medications I imported from overseas to have on hand. Just as a weird prepping thing.
You can just do things. It was fixed 40 minutes later.
Sometimes you shouldn't.
…
RT by @SwiftOnSecurity: What is even happening
https://xcancel.com/lcamtuf/status/1997014041462731228#m
Published: December 5, 2025 18:43
What is even happening
RT by @SwiftOnSecurity: It’s wild how little sticks around when someone hits a server with the #React RCE payload. All the interesting parts of the POST request live for a moment in memory, get decoded, executed (or rejected), and vanish. Nothing hits a log, nothing lands on disk.
You can scan process memory for patterns, sure, but you’ll mostly catch scanners, broken requests, bots, random noise. A clean “this was a successful exploit” signal isn’t really possible here. The only reliable detection is post-exploitation activity on the box.
Super fun vuln to hunt for… not 😅
https://xcancel.com/cyb3rops/status/1996994056153370860#m
Published: December 5, 2025 17:24
It’s wild how little sticks around when someone hits a server with the #React RCE payload. All the interesting parts of the POST request live for a moment in memory, get decoded, executed (or rejected), and vanish. Nothing hits a log, nothing lands on…
As they say this is not acceptable but like they were trying to do the right thing
https://xcancel.com/SwiftOnSecurity/status/1996986675742851165#m
Published: December 5, 2025 16:55
As they say this is not acceptable but like they were trying to do the right thing
To be fair they were trying to protect the Internet from a devastating recent vulnerability that I've seen first hand can take real skills and money to validate on a large web deployment. They were not just screwing around on some rando change and the roadmap makes sense.
https://xcancel.com/SwiftOnSecurity/status/1996986367406964940#m
Published: December 5, 2025 16:53
To be fair they were trying to protect the Internet from a devastating recent vulnerability that I've seen first hand can take real skills and money to validate on a large web deployment. They were not just screwing around on some rando change and the…
RT by @SwiftOnSecurity: Not sure who gave me this sticker but I would love to have a few more
https://xcancel.com/cantcomputer/status/1996977756890960274#m
Published: December 5, 2025 16:19
Not sure who gave me this sticker but I would love to have a few more
RT by @SwiftOnSecurity: i’m pretty sure that the original intention and spirit of copyright law is not “hand over millions of people’s assumed-private conversations over to the new york times (and whoever hacks them or anyone in the chain)”
https://xcancel.com/dystopiabreaker/status/1996682213677846787#m
Published: December 4, 2025 20:45
i’m pretty sure that the original intention and spirit of copyright law is not “hand over millions of people’s assumed-private conversations over to the new york times (and whoever hacks them or anyone in the chain)”…
How we ended up here is just like a whole thing and if none of it makes sense to you it's because you don't understand why
https://rss.xcancel.com/SwiftOnSecurity/status/1996491978851385549#m
Published: December 4, 2025 08:09
How we ended up here is just like a whole thing and if none of it makes sense to you it's because you don't understand why
This is what created DAP and then LDAP. Which led to the creation of Active Directory. The enormously ridiculously complex design of AD is directly based on an assumption of a full-time dedicated administrator maintaining a directory as their entire career.
https://xcancel.com/SwiftOnSecurity/status/1996489805291720966#m
Published: December 4, 2025 08:00
This is what created DAP and then LDAP. Which led to the creation of Active Directory. The enormously ridiculously complex design of AD is directly based on an assumption of a full-time dedicated administrator maintaining a directory as their entire…
One of the most undersold understandings in modern tech is he is that the university directory administrator was like a whole job. And this guided everything about the direction of our world's information systems. Being a directory administrator was REALLY important.
https://xcancel.com/SwiftOnSecurity/status/1996488985435418969#m
Published: December 4, 2025 07:57
One of the most undersold understandings in modern tech is he is that the university directory administrator was like a whole job. And this guided everything about the direction of our world's information systems. Being a directory administrator was REALLY…
A photo from my desk over 10 years earlier I'm just not exactly sure
https://xcancel.com/SwiftOnSecurity/status/1996449697016520712#m
Published: December 4, 2025 05:21
A photo from my desk over 10 years earlier I'm just not exactly sure
Literally the most important book I have ever read in my life is one they don't even list on Amazon anymore.
I'm not saying it's the best book I have no information about that but it is part of changing my life.
https://xcancel.com/SwiftOnSecurity/status/1996448469469573369#m
Published: December 4, 2025 05:16
Literally the most important book I have ever read in my life is one they don't even list on Amazon anymore.
I'm not saying it's the best book I have no information about that but it is part of changing my life.
Everything goes back to basing Active Directory on LDAP
You're just not gonna understand any of this until you understand LDAP and then before that you're gonna have to understand DAP and the whole mess that produced that thing.
Of course then you're gonna have do Kerberos.
https://xcancel.com/SwiftOnSecurity/status/1996446664593481981#m
Published: December 4, 2025 05:09
Everything goes back to basing Active Directory on LDAP
You're just not gonna understand any of this until you understand LDAP and then before that you're gonna have to understand DAP and the whole mess that produced that thing.
Of course then you're…
The unfortunate reality of IT security is a lot of the surfaces exist for you to exercise upon but they're like kind of exotic and just nobody does it and I totally understand cause it's really fucking weird but the surfaces of defense do exist.
https://xcancel.com/SwiftOnSecurity/status/1996444143133086084#m
Published: December 4, 2025 04:59
The unfortunate reality of IT security is a lot of the surfaces exist for you to exercise upon but they're like kind of exotic and just nobody does it and I totally understand cause it's really fucking weird but the surfaces of defense do exist.
You would have a lot of fun understanding the weird shit we do with the full Windows administrative interface
https://xcancel.com/SwiftOnSecurity/status/1996442595103547599#m
Published: December 4, 2025 04:53
You would have a lot of fun understanding the weird shit we do with the full Windows administrative interface
I very intentionally restrict the most privileged groups in our forest from logging into our machines with these policies because none of them should ever be touching a box with those kind of permissions.
https://xcancel.com/SwiftOnSecurity/status/1996440954363052124#m
Published: December 4, 2025 04:46
I very intentionally restrict the most privileged groups in our forest from logging into our machines with these policies because none of them should ever be touching a box with those kind of permissions.
xcancel.com/techspence/status/1996328089962324293#m
Anyway Charity Eden is my second-most listened artist on Spotify for a reason. https://youtu.be/ff5UEw3pm7Y
https://xcancel.com/SwiftOnSecurity/status/1996350622778695861#m
Published: December 3, 2025 22:47
Anyway Charity Eden is my second-most listened artist on Spotify for a reason. youtube.com/ff5UEw3pm7Y
Charity Eden is someone you have never heard of. I found her because she runs a Taylor Swift tribute concert series. I drove like four hours to see it.
Her own music is really good. She struggles to get 10000 listens to her songs.
But she's special.
https://open.spotify.com/track/3deQohHKQhN1ybFpQpKfWO
https://xcancel.com/SwiftOnSecurity/status/1996343018966954179#m
Published: December 3, 2025 22:17
Charity Eden is someone you have never heard of. I found her because she runs a Taylor Swift tribute concert series. I drove like four hours to see it.
Her own music is really good. She struggles to get 10000 listens to her songs.
But she's special.
…
Just confirming my status as a stan
https://xcancel.com/SwiftOnSecurity/status/1996341261272306148#m
Published: December 3, 2025 22:10
Just confirming my status as a stan
Wikipedia had an article about the Euphemism Treadmill and it was fucking deleted.
I love Wikipedia I spent years of my life there but. There are some problems.
https://xcancel.com/SwiftOnSecurity/status/1995848936968577439#m
Published: December 2, 2025 13:34
Wikipedia had an article about the Euphemism Treadmill and it was fucking deleted.
I love Wikipedia I spent years of my life there but. There are some problems.
Sometimes subjects need actually dramatic language about what happened that is a judgment. The Oxygen Catastrophe, despite creating our world is one of them.
And we erase it for some reason. It was genuinely a catastrophe.
https://xcancel.com/SwiftOnSecurity/status/1995848606356832539#m
Published: December 2, 2025 13:32
Sometimes subjects need actually dramatic language about what happened that is a judgment. The Oxygen Catastrophe, despite creating our world is one of them.
And we erase it for some reason. It was genuinely a catastrophe.
Wikipedia has changed dramatically I think it's funny that they renamed the Oxygen Catastrophe. This is after completely removing the article about the euphemism treadmill.
https://en.wikipedia.org/wiki/Great_Oxidation_Event
https://xcancel.com/SwiftOnSecurity/status/1995847686294307073#m
Published: December 2, 2025 13:29
Wikipedia has changed dramatically I think it's funny that they renamed the Oxygen Catastrophe. This is after completely removing the article about the euphemism treadmill.
en.wikipedia.org/wiki/Great_…
I'll delete this but I'm so goddamn fucking mad
https://xcancel.com/SwiftOnSecurity/status/1995712800274964878#m
Published: December 2, 2025 04:33
I'll delete this but I'm so goddamn fucking mad
The American Executive took the power it has, because the Legislature unbecame it. And the Judicial allowed it.
Everything broke when the Legislature did. They were supposed to be people of power. They gave it up to be unaccountable.
https://xcancel.com/SwiftOnSecurity/status/1995708319151919399#m
Published: December 2, 2025 04:15
The American Executive took the power it has, because the Legislature unbecame it. And the Judicial allowed it.
Everything broke when the Legislature did. They were supposed to be people of power. They gave it up to be unaccountable.
RT by @SwiftOnSecurity: A new level of achievement in How Not To Be a CISO:
Don't just get your company sued, but force your CEO to publicly announce your firing and rebut horrible things you said about the company's products, employees, and customers.
https://www.thecampbellscompany.com/newsroom/news/an-update-from-our-ceo/
https://xcancel.com/arekfurt/status/1995491250263507237#m
Published: December 1, 2025 13:52
A new level of achievement in How Not To Be a CISO:
Don't just get your company sued, but force your CEO to publicly announce your firing and rebut horrible things you said about the company's products, employees, and customers.…
The American public has placed a TV entertainment presenter in charge of the country, it is placed one in charge of the American military, and placed one in charge of ultimate federal legal jurisprudence.
The American public is touching the fucking stove right fucking now.
https://rss.xcancel.com/SwiftOnSecurity/status/1995055281974436033#m
Published: November 30, 2025 09:00
The American public has placed a TV entertainment presenter in charge of the country, it is placed one in charge of the American military, and placed one in charge of ultimate federal legal jurisprudence.
The American public is touching the fucking stove…
Here is the problem according to me.
The American military operates with immense unimpeachable global permissiveness by the American public in the belief it is operating under WWII moral framework acceptable to the American public.
You break that you break fucking everything.
https://rss.xcancel.com/SwiftOnSecurity/status/1995053955106443716#m
Published: November 30, 2025 08:55
Here is the problem according to me.
The American military operates with immense unimpeachable global permissiveness by the American public in the belief it is operating under WWII moral framework acceptable to the American public.
You break that you…
Proof America is the only real country:
Only America has country music
https://rss.xcancel.com/SwiftOnSecurity/status/1995031262227304742#m
Published: November 30, 2025 07:24
Proof America is the only real country:
Only America has country music
Oh you invested in Nvidia 2014?
I invested in Taylor Swift guess who is happier
https://rss.xcancel.com/SwiftOnSecurity/status/1995030269087375702#m
Published: November 30, 2025 07:20
Oh you invested in Nvidia 2014?
I invested in Taylor Swift guess who is happier
Ignore this using Twitter as a video transfer service
https://rss.xcancel.com/SwiftOnSecurity/status/1994919308775100516#m
Published: November 30, 2025 00:00
Ignore this using Twitter as a video transfer service
RT by @SwiftOnSecurity: The most degrading aspect of this is that it is for nothing. It will do nothing. Like it’s comprehensible to me why someone in a desperate existential conflict would do war crimes. This is some idiots wanting to show the world a stupid 12 year old’s idea of badass.
https://rss.xcancel.com/opinonhaver/status/1994624419617280311#m
Published: November 29, 2025 04:28
The most degrading aspect of this is that it is for nothing. It will do nothing. Like it’s comprehensible to me why someone in a desperate existential conflict would do war crimes. This is some idiots wanting to show the world a stupid 12 year old’s idea…
RT by @SwiftOnSecurity: I have the OG XM3.
Tried the XM4 when it came out and promptly gave it to my son.
I've heard the XM6 is the best so far. Waiting for it to come down in price, the XM3 is still going strong and I don't feel the need to replace it yet.
https://xcancel.com/merill/status/1994609344273682733#m
Published: November 29, 2025 03:28
I have the OG XM3.
Tried the XM4 when it came out and promptly gave it to my son.
I've heard the XM6 is the best so far. Waiting for it to come down in price, the XM3 is still going strong and I don't feel the need to replace it yet.
RT by @SwiftOnSecurity: Can confirm these are amazing. I wear mine 12+ hours a day during the week at work.
https://xcancel.com/SemicolonsThe/status/1994572980253593898#m
Published: November 29, 2025 01:03
Can confirm these are amazing. I wear mine 12+ hours a day during the week at work.
RT by @SwiftOnSecurity: I think Sony has the best ANC in the game for over ears
https://xcancel.com/film_girl/status/1994571709601780219#m
Published: November 29, 2025 00:58
I think Sony has the best ANC in the game for over ears