David Bombal
Covers networking and cybersecurity topics, with hands-on tutorials and interviews featuring industry professionals ([www.linkedin.com](https://www.linkedin.com/posts/cyroot-academy_becybersmart-activity-7381392034345103360-kw8V#:~:text=for%20anyone%20interested%20in%20malware,For%20the%20advanced%20learner)).
Does Encrypted DNS Keep Your Traffic Private?
The video tests the popular claim that using DNS‑over‑HTTPS (DoH) together with HTTPS makes all of your internet traffic private, eliminating the need for a VPN. The presenter sets up two PCs, taps the network traffic, and captures packets with Wireshark to see exactly what leaves the browser. By configuring Firefox for strict privacy and routing DNS queries through Cloudflare’s DoH, the DNS lookups are indeed encrypted and invisible to the observer. However, the TLS handshake still leaks the Server Name Indication (SNI) and client‑hello data, which reveal the destination host (e.g., Nvidia, Microsoft) even though the payload remains encrypted. The demonstrator calls out the “always private” mantra, showing that while DNS queries disappear, the SNI field in the clear‑text handshake betrays the sites visited. This concrete example counters the notion that DoH alone provides end‑to‑end privacy. The takeaway is that DoH improves privacy but does not replace a VPN for full anonymity. Users should verify privacy claims with their own packet captures and consider layered defenses when sensitive browsing is required.
HOW CISA Leaked Public Passwords
The video highlights a recent security lapse at the U.S. Cybersecurity and Infrastructure Security Agency (CISA), where the agency inadvertently published a GitHub repository containing unencrypted credentials. The repository held plain‑text passwords, AWS workspace tokens, Firefox login CSVs, and a YAML...
1000x More Powerful Than an RTX 5090
The video showcases Cisco’s UCS H200 server, a rack‑mount system that packs eight Nvidia H200 GPUs – the second‑generation Hopper accelerators – and claims each chip delivers roughly a thousand times the performance of a consumer‑grade RTX 5090. The H200 builds on...
3 Risks of Using Clear DNS
The video outlines the three primary encrypted DNS protocols—DNS over TLS (DoT), DNS over HTTPS (DoH) and the newer DNS over QUIC (DoQ). It explains how each adds a cryptographic layer to traditional DNS queries, with DoQ using UDP for...
They Got Hacked and Now You Will Get Attacked ☹️
The video warns that a wave of recent data breaches—most notably Udemy’s exposure of 1.4 million user records and ADT’s 5.5 million—has put personal and financial information of millions of consumers at risk. The presenter highlights that breached data now includes names, addresses,...
Warning: Vibe Hacking Is Here
The video warns that a new service called Xantier X AI is turning artificial‑intelligence models into a turnkey hacking kit, a phenomenon the presenter dubs “Vibe (Vipe) hacking.” The platform bundles specialized LLMs—one trained on CVE databases, another for...
Disable Face ID Quickly (iPhone)
The video explains a simple shortcut to turn off Face ID on an iPhone, highlighting its relevance amid growing concerns about law‑enforced biometric unlocking and cross‑border digital surveillance. By holding the volume‑up and power buttons simultaneously until the screen flashes, users...
Does DNSSEC Give You Encrypted DNS?
The video clarifies a common misconception: DNSSEC does not provide encrypted DNS traffic. Instead, it adds cryptographic signatures to DNS resource records, allowing resolvers to verify that the data originated from the authoritative source and has not been altered. Implementing DNSSEC...
Why Hide My Email FAILS
The video examines Apple’s claim of being a privacy‑first company against a recent court filing that shows the tech giant handed the FBI the real iCloud address behind its “Hide My Email” feature. The disclosure occurred during an investigation of...
HOW the NSA Monitors Your VPN
The video highlights growing concerns that commercial VPN use may expose Americans to NSA surveillance, prompting six Democratic lawmakers to request clarification from the Director of National Intelligence about whether VPN users lose constitutional protections against warrantless spying. It explains that...
Upgrade Now!
Apple has issued an urgent iOS 26.4 update for iPhone 11 and newer models, citing 37 critical security flaws that could allow remote compromise. The patch addresses six WebKit vulnerabilities that enable cross‑site scripting, a full‑chain “Dark Sword” exploit leveraging multiple...
Inside the 6.4Tbps Cisco Smart Switch
Cisco unveiled its new Smart Switch, a single‑chassis platform that combines high‑speed networking with built‑in security functions. The device is built around Cisco’s Silicon One ASIC delivering 6.4 Tbps of throughput and an AMD Pensando data‑processing unit (DPU) that handles stateful...
This Device Captures TRUE Randomness
The video introduces a hardware‑based true random number generator designed for enterprise environments, claiming quantum‑secure entropy by capturing physical randomness rather than relying on algorithmic pseudo‑randomness. Current software RNGs produce deterministic sequences that could be broken by future quantum computers. The...
Why Is a WAF No Longer Enough?
Enterprises are discovering that traditional Web Application Firewalls (WAFs) no longer provide sufficient protection against today’s complex threat landscape. The video explains that a WAF, originally designed to filter malicious HTTP traffic, is an outdated term as application security now...
BBC Reporter Hacked via AI Vibe Coding Platform - Do You Trust These Platforms?
The video spotlights a recent incident in which a BBC reporter’s laptop was compromised after he downloaded the desktop version of Orchards, an AI‑driven “vibe” coding platform that lets users generate applications by describing them in natural language. According to the...