AI Supercharges Productivity, Turning Ideas Into Action
Really? Because my wheels spin like crazy on AI and now I can actually implement a lot of ideas I didn’t have time for before.
US Government Skips RSAC, Leaving Critical Cybersecurity Gap
‘Missed opportunity’: US government’s absence from RSAC Conference leaves stark void | Cybersecurity Dive Wish we could set aside politics and work together to defend the home front. 🇺🇸 https://t.co/3b0emOT5nX
AI Will Accelerate Security Skills, Not Require Assembly Mastery
To me this is like worrying about who is going to write assembly. Yes, you still need people to learn and do it. I have certifications in such things related to reverse engineering malware and advanced pentesting. But does the...
Pay‑as‑you‑go Wins as Software Stocks Tumble
The pay for what you use model on AWS proves to be the winning model again.
Private VPC Without NAT Blocks Internet Access Securely
AWS Security Agent-Penetration Testing Overview | by Sena Yakut | AWS in Plain English Was just reading this and pretty good review. If you put in a private VPC no NAT or peering can’t reach Internet which is what you want...
Know When to Stop AI and Debug Manually
Trying to figure out when to stop the ai 🤖 wheel spinning and when to just investigate manually. Right now I have my whole environment and job management site on the verge of working and tonight Opus 4.6 in Kiro...
AI-Driven Lambda Troubleshooting Auto‑detects Missing VPC Security Group
This past week I wrote a lambda troubleshooter using the concept on this blog post where it deterministically queries a bunch of logs and sends them to an ai 🤖 agent for analysis and troubleshooting. I had to redact...
AI Ignored Simple Guardrails, Skipped Essential Library Installation
Today’s AI 🤖frustrations. Seriously bad at Yubikey implementation. So many things wrong and repeated incorrect analysis, but this one just…. I create a lambda layer because the whole implementation never installs the python FIDO2 library. The only reference to it is...
Prompt Injection Lets Agents Bypass Read‑Only Permissions
If you are using OpenClaw on AWS or anywhere else please understand the following: > How prompt injection attacks work such as the Copilot attack I just reposted. > Understand indirect prompt injection where the attack is in a calendar invite, email...
Restrict Agent Permissions to Mitigate Data Exfiltration
Why I am using agents on locked down sandboxes on EC2 instances and still have more to do. I don’t give agents credentials for the most part. The data needs to somehow be exfiltrated and sent back to the attacker....
AI Speeds Tasks, but Still Needs Human Verification
Please share this with anyone who says they can replace some job category with AI. It’s a tool, not a human replacement. Yes, you can dramatically speed up the process but you cannot trust it. You need to verify the...
Unsolicited Loan Data Leak Exposes Flawed Third‑Party Sharing
Great. My phone number was found on the dark web in conjunction with a breach of a site I don’t even use. Third party data sharing is not cool. Apparently it is a fintech blockchain HELOC company. Definitely did not...
BeyondTrust Reveals New Token Injection and Exfiltration Vectors
Where else can the tokens be injected and exfiltrated. This is the original report from BeyondTrust.
Autonomous Agents Risk Malicious Prompts Despite Sandbox Efforts
This is the type of thing I’m worried about with completely “autonomous” agents only the inclusion of something more malicious than ads. It could be unintentional or via prompt injection. I have some tools that can run while I’m sleeping...
DNS Covert Channel Bypasses AI Guardrails, Enables Remote Shell
“Specifically, it abuses a hidden DNS-based communication path as a "covert transport mechanism" by encoding information into DNS requests to get around visible AI guardrails. What's more, the same hidden communication path could be used to establish remote shell access...
Chrome's Hidden DNS Checks Spam Traffic, Users Demand Switch
Is @Google @Chrome using the web sites you are already visiting to make DNS requests as a connectivity check? Not a fan if that is the case. I thought of that related to all the weird DNS traffic I was...
TurboQuant Delivers Lossless AI Model Compression
TurboQuant: Redefining AI efficiency with extreme compression ~ TurboQuant is a compression method that achieves a high reduction in model size with zero accuracy loss, making it ideal for supporting both key-value (KV) cache compression and vector search. https://t.co/hPZuIZ33Wb
Memory Chip Stocks Lose $100bn as AI Shortage Fades
Memory chip stocks shed $100bn as AI-driven shortage trade unwinds [TR: Well, whole market is tanking for other reasons, but aligns with my blog post on the over aggressive land grab for data centers ~ with an AI generated pic...
Iterative AI Refinement Beats One‑shot Predictions
Was looking into this again and different news outlets tried this out. 🤖 The same model isn’t even picking the same winner every time. For WSJ Claude picked Illinois to win it all. For Yahoo Claude picked Arizona. I found...
US Puts $10M Bounty on Iranian IOControl Hackers
US offering $10 million for info on Iranian hackers behind IOControl malware | The Record from Recorded Future News https://t.co/2wnlp84kjx
IOS 26.4 and iPadOS 26.4 Patch Numerous
A lot of security vulns addressed in this update About the security content of iOS 26.4 and iPadOS 26.4 - Apple Support https://t.co/R0oUJMKheX
Clear File Organization May Boost AI Token Efficiency
I was reading about optimizing AI 🤖 token usage with memory pointers and I’m wondering if I am already doing that by design and the explanation is more complicated than it needs to be. Need to test it out more....
AWS Adopts Quantum‑safe Crypto; Start Preparing Now
For those who are not yet worried about quantum cryptography…should start thinking about it. AWS already uses quantum safe cryptography in many of its services.
Top Apps and Enterprises Leverage LangChain for AI
I asked Google aimode who is using LangChain. Popular Apps & Tools Built with LangChain •Cursor: An AI-powered code editor that uses LangChain’s orchestration to help developers write, debug, and understand code through smart autocompletion. •Perplexity: An AI "answer engine" that leverages web...
Chrome Silently Generates DNS Requests for Every Site
I just wrote this post about DNS leaks and tunnels. So today I go to visit a web are and my host-based firewall is popping up repeatedly connection attempts to the website like it’s beaconing to maintain a connection. So...
Kiro Model Deviates From Instructions Even with Claude Opus
What is going on with Kiro model today. Not following instructions precisely. Using Claude opus supposedly,
Check Kiro CLI: Ensure Correct Model Is Served
Whomever is responsible for checking to see if the right model is being served up in Kiro CLI needs to take a look right now.
AWS Now Adds IDs to Security Group Rules
I thought there was a problem with the security group rules created by my bootstrap script initially but there was not. AWS added ids to security group rules which threw me for a loop in my tired state when I...
Built AWS Batch Environment in 2.5 Weeks, Not Years
What I've Vibe Coded 🤖 In 2.5 Weeks ~ Compared to similar code I tried to implement for years to deploy an AWS environment for running batch jobs (as AI agents or not). How I did it. https://t.co/BlXxVvHagH https://t.co/btfZ0Yw1hK
Understanding Where FIDO2 Passkey Private Bits Reside
Where are the Private Bits of FIDO2 Compliant Passkey Stored? Just because you’re vibe coding doesn’t mean you no longer need to understand how things work. Research for my tool to start a batch job with a Yubikey. https://t.co/GK9IGy1Vi9 https://t.co/5NFLp5P7Oc
Kickstart Secure AI‑Powered Coding with Kiro CLI
All the complicated stuff I do with AI starts here. I still use this method with a few tweaks. Instead of writing a book I publish here. Learn to write good code with AI ~ and secure it. Implement A Simple...
Kiro Token Pricing: Cheap per Token, Costly Overages
This makes no sense: ⁉️ ➡️ Every Kiro plan costs 💲.02 / token. ➡️ So I’m going to barely run out of tokens at the end of the month and overages cost 💲.04 / token. What? ➡️ So to get $.02 per token...
Silencing AI Noise to Build Practical AWS Automation
I’ve started muting all the accounts pushing hot takes on ai 🤖 so I can focus on getting things done. If it’s not contributing towards accomplish something not really helping. Here’s what I’ve gotten done or trying to get done with...
Rust Could Block 80% of Chrome’s Recent Exploits
I asked Google AI mode if rust would have prevented these vulnerabilities out of curiosity. Here’s what it said. 1. The "Hard No" (Prevented by Rust) These categories make up about 80% of your list. In "Safe Rust," the compiler simply won't...
Chrome Update Fixes 26 Remote Code Execution Flaws
Chrome Security Update Patches 26 Vulnerabilities that Enable Attackers to Execute Malicious Code Remotely https://t.co/LgCt5yd3Zb
Avoid Third‑Party DNS Tools Without Customer Approval
I’m sure this works great. I haven’t tried it yet. As a pentester, don’t use this without customer approval because your customers may not want their vulnerability data stored in third party systems. Also they would have to add a...
Attacker Tested Npm Worm Chain with Dummy Payload
Interestingly, the threat actor is said to have swapped out the ICP backdoor payload for a dummy test string ("hello123"), likely to ensure that the entire attack chain is working as intended before adding the malware.
Cryptographer Challenges RustSec Ban on Bug Reports
Cryptographer fights RustSec ban over bug reports • The Register ~ What’s your take? Critical or not? https://t.co/a7d2iTtF6J
Check Your ProtonMail Account Before It Gets Deleted
If you have a @ProtonMail account and haven’t logged in recently better check it. I luckily randomly saw a message. Not really cool to randomly cancel people’s email accounts.
AI Agents Can Leak DNS: Bug or Intentional Abuse?
AI Agent DNS Leaks 🤖 Is this really a bug? Or is it functionality abuse? Because this is how the internet works. You decide. In any case be aware... https://t.co/Fmvxsh8210 https://t.co/uZo5hLB09k
Model's Training Cut‑off Date Misreported versus Paid Version
Asking model repeatedly when it’s training cut off date was and it is telling me April 2025. I asked a number of different types of questions. Claud Opus which I am paying for has a cut off of August 2025....
Anthropic Model Feels Like Reverting to an Older Version
Good idea. Related to someone’s comments about Anthropic models sometimes seeming “dumber” like they switched to an older model. Was feeling this last night.
Identity Isn’t a Perimeter; Real Security Needs Depth
Identity is not the new perimeter. Catchy phrases are not going to make security any easier. Dig deep and learn how to do it right.
AI Tools Amplify Devops Misconfigurations and Workflow Friction
Kiro + Opus 4.6 🤖 Struggling with - cross account lambda layer permissions and recognizing they are needed - CORS issues - maintaining correct variables and ARNs for multi-region deployments - Repeated unbound variables in complex bash scripts - making up variables that don’t exist -...
Choose AI or Deterministic Solutions Based on Accuracy Needs
Questions when starting an AI project: * Do I need a perfectly accurate result every time? ➡️ Use deterministic solution * Is a perfectly accurate result too costly, expensive, or even impossible? ➡️ Use AI to get closer to the result faster...
Use Deterministic Scripts, Not AI, for Meeting Attendee Data
I just saw a post about using AI to query meeting attendees. I personally would never use an AI prompt for that if I needed an accurate result. I don’t think it is the right tool for that problem. It will...
Specialized DNS Proxy Needed for Detecting Beacon
I work up thinking about this and think I’m going to update my agent framework to use traffic inspection proxy that only allows specific domain names for DNS. There are other reasons you might want to do that which I’ve...
Check for “Lzcdrtfxyqiplpd” To Spot GlassWorm Malware
Step Security advises developers who install Python packages directly from GitHub or run cloned repositories to check for signs of compromise by searching their codebase for the marker variable “lzcdrtfxyqiplpd,” an indicator of the GlassWorm malware. Also init.json, i.js
Automated Multi‑Region AWS Environment Deployment Script
So this turned into build an environment to run in. I wrote a script to deploy all the resources with guidance: Tested and deployed so far: Org root user and role Root policies Root permission boundary ou accounts - iam - KMS - dns - jobs - work - backup...
AWS IP Dump Misclassifies Services, Hindering Precise Monitoring
Took a while but modified this script to display all the IP ranges that match in the AWS json IP file for each IP. That way I can monitor which regions and services my system is connecting to. The problem...