RE: https://infosec.exchange/@da_667/116042198266073277

A Dockerfile is not a substitute for installation and production runtime documentation

https://trustedsec.com/blog/mcp-in-burp-suite-from-enumeration-to-targeted-exploitation

I guess it's safe to say DocuSign uses AI to create job postings. Gotta copy/paste more carefully!

This week's newsletter also looks at what's new in Apple's security guide, why Google sued a botnet, and the U.S. Marshals are mum on a crypto hack. Plus, the happy corner of good news, and a new two-for-one cybercat special.

Please share! https://this.weekinsecurity.com/this-week-in-security-february-1-2026-edition/

@Ichinin ohhhh I just reread your post. Facebook is dumb.

@Ichinin what part of the video came across to you as hate speech? Jim Gaffigan is a pretty tame guy

https://allistair.sh/blog/breaking-heroku-postgres/

#bugbounty #postgres

@molly0xfff what type of switches are you rocking? I think my current tactiles are too heavy for long term use.

@DarkWebInformer didn’t they get majorly breached already years ago?

# Looking to interview

"Tor relay operators

Share your experience running and updating your Tor relay with researchers from the University of Namur (Belgium)

- Interview of ~30 minutes
- At FOSDEM or next week online (voice call or text chat)
- In English or French
- Audio recorded if the interview is done at FOSDEM or via voice call
- No audio recording for text chat interviews"

(see image for contact details)

#fosdem #fosdem2026 #fosdem26

@joeress hey fuck off, that's a very European measurement

Does anyone here help out with reviewing #cfp drafts before they’re submitted? I could have sworn I’ve seen someone thread some tips but I can’t find it now

@molly0xfff Are you still using an Ergodox as your everyday keyboard or have you switched to something else?

If you're at FOSDEM (@fosdem) this weekend, be sure to stop by our booth at Building K, level 1 and get some stickers. And don't miss the Tor relay operator meetup later today: https://fosdem.org/2026/schedule/event/DRMMAB-tor_relay_operator_meetup/

@cve @ma1 @noscript

https://arstechnica.com/security/2026/01/county-pays-600000-to-pentesters-it-arrested-for-assessing-courthouse-security/

@Viss pg_bulkload may help next time

https://github.com/ossc-db/pg_bulkload

Cloudflare just published a vibe coded blog post claiming they implemented Matrix on cloudflare workers. They didn't, their post and README is AI generated and the code doesn't do any of the core parts of matrix that make it secure and interoperable. Instead it's littered with 'TODO: Check authorisation' and similar

https://blog.cloudflare.com/serverless-matrix-homeserver-workers/

Want to be a member of my team. I have a role open for a 12 month fixed term contract Platform Engineer/Ops Engineer/DevOps Engineer/SysAdmin (Or whatever we are calling ourselves this month).

https://www.dxw.com/jobs/operations-engineer-12-month-ftc/

I am mostly looking for someone who can hit the ground running with terraform and AWS. Azure is a bonus and you are going to use it if you join.

Due to us a being a consultancy we can only commit to 12 months currently but it becoming permie afterwards is quite likely.

Dunno if it is news outside of the 614 but a teenager is being hunted in Columbus by the feds for posting "they should blast every ic.e age.nt they find" (dots by me)

So be careful what you say on here. Not worth the risk.

https://www.10tv.com/mobile/article/news/local/columbus-man-charged-allegedly-threatening-shoot-federal-agents/530-f61352e2-4a49-4602-ae85-44359720a5c4

@SecureOwl whoa, that's pretty convenient. Does "fan" refer to convection