Piero Bosio Social Web Site Personale

@k3ym0@infosec.exchangeThats a funny and interesting read, thank you 🙂.I've got ublock since ages but deploying custom filters like that is way over my head.

Retroactively changing the role of a token or key is a very bad idea.https://trufflesecurity.com/blog/google-api-keys-werent-secrets-but-then-gemini-changed-the-rules#google #googleapikeys #infosec #cybersecurity

🚀 NUOVA ACTION FIGURE: L'AMMIO CUGGINO PENTESTER! 🚀#RedHotCyber #CyberSecurity #Pentesting #AmmioCuggino #InfoSec #Lavoro #IroniaCyber #redhotcyber #cybersecurity #hacking #hacker

@rysiek this also means that no cirque de soleil trapeze act of mcp servers, llms checking other llms output, ralph wiggum model, openclaw bots or other 'stuff on top' fixes the core issue. im actively working on a con talk on this topic, so your good press today is getting a hat tip in my slides :D

@rysiek is this confirmed? I see no official technical report on this CW1226324, only news sources.

https://krebsonsecurity.com/2026/02/patch-tuesday-february-2026-edition/Hey, so this is probably late news to the masto crowd, which runs tech savvy, but with the absolute firehose we face every day, some stuff can get missed. Nontechnical explanation - 60 windows exploits were documented, some #zeroday, allowing code execution. It means that a malicious actor can plant malware or gain access to a victim’s computer with minimal user interaction.Brian (@briankrebs) #Krebs has laid out all the technical details, including which versions are impacted. I’ve internet-known Brian for decades, he is an absolutely trustworthy source for #infosec.Patch your systems. Don’t click random links. Don’t open random files. Consider packing your important belongings, a copper pot, your menagerie and disappearing into the forest to become a Baba Yagga or moss covered forest witch. Or mountain man, if flannel makes you happy. I’m not here to judge. 🥰

https://soatok.blog/2026/02/17/cryptographic-issues-in-matrixs-rust-library-vodozemac/#Matrix #infosec #vulnerabiltiy #cryptography #privacy

🔥 SONO UFFICIALMENTE APERTE LE ISCRIZIONI! 🔥Per info e iscrizioni: 📱 💬 379 163 8765 ✉️ formazione@redhotcyber.com#redhotcyber #formazione #cybersecurity #darkweb #cyberthreatintelligence #ethicalhacking #infosec #intelligence

@0x4d6165 Seems to have the same effect with a different error message, typically reserved for topics which would return sensitive information or the like.These are basically test blocks used for, from what I can tell, checking error returns, and halt-and-catch-fire functionality isn't unheard of at all in situations like these.The question now becomes how to use it to fuck over the Claude architecture and userbase.

Just received an email from my mail server administrator. They sent me a link to change my password because it's 'insecure'.My mail admin is so efficient......hey, wait a minute... I AM my mail administrator! 🤦‍♂️#Phishing #SelfHosting #SysAdminLife #SecurityFail #InfoSec

Holy shit. TIL that Janet Jackson is the only Grammy-winning artist with a CVE.CVE-2022-38392 indicates that playing Rhythm Nation near certain hard drives will cause a crash, because the song contains a resonate frequency with a 5400RPM spinning disk of a certain diameter and construction. Neat. #music #infosec

Oh wow. Notepad++ was hijacked by state sponsored actors. Bonkers. #infosechttps://notepad-plus-plus.org/news/hijacked-incident-info-update/

🔥 SONO UFFICIALMENTE APERTE LE ISCRIZIONI! 🔥Per info e iscrizioni: 📱 💬 379 163 8765 ✉️ formazione@redhotcyber.com#redhotcyber #formazione #cybersecurity #darkweb #cyberthreatintelligence #ethicalhacking #infosec

🔥 SONO UFFICIALMENTE APERTE LE ISCRIZIONI! 🔥Sta per partire la Settima Live Class del corso "𝗗𝗔𝗥𝗞 𝗪𝗘𝗕 𝗘 𝗖𝗬𝗕𝗘𝗥 𝗧𝗛𝗥𝗘𝗔𝗧 𝗜𝗡𝗧𝗘𝗟𝗟𝗜𝗚𝗘𝗡𝗖𝗘" – livello intermedio 🚀📌 Inizio: Domenica 8 Marzo 2026📌 Posti super limitati (max 14 partecipanti)✅ Pagina del corso: https://www.redhotcyber.com/linksSk2L/academy-dark-web-e-cyber-threat-intelligence✅ Presentazione del corso del prof. Pietro Melillo : https://www.youtube.com/watch?v=9VaQUnTz4JE✅ Webinar introduttivo di presentazione al corso : https://www.youtube.com/watch?v=ExZhKqjuwf8Per info e iscrizioni: 📱 💬 379 163 8765 ✉️ formazione@redhotcyber.com#redhotcyber #formazione #cybersecurity #darkweb #cyberthreatintelligence #ethicalhacking #infosec #intelligence #liveclass #corsi #cybercrime

@adityatelange Thank you! Great work

🔥 SONO UFFICIALMENTE APERTE LE ISCRIZIONI! 🔥Sta per partire la Settima Live Class del corso "𝗗𝗔𝗥𝗞 𝗪𝗘𝗕 𝗘 𝗖𝗬𝗕𝗘𝗥 𝗧𝗛𝗥𝗘𝗔𝗧 𝗜𝗡𝗧𝗘𝗟𝗟𝗜𝗚𝗘𝗡𝗖𝗘" – livello intermedio 🚀📌 Inizio: Domenica 8 Marzo 2026📌 Max 14 partecipanti✅ Pagina del corso: https://www.redhotcyber.com/linksSk2L/academy-dark-web-e-cyber-threat-intelligence✅ Presentazione del corso: https://www.youtube.com/watch?v=9VaQUnTz4JE✅ Webinar introduttivo: https://www.youtube.com/watch?v=ExZhKqjuwf8📌Lezioni LIVE: interazione diretta con il docente📌Accesso al DarkLab: Un laboratorio operativo esclusivo dove potrai sperimentare sul campo: investigazioni nel Dark Web, analisi delle minacce, report di intelligence e casi pratici da vero analista CTIInfo e iscrizioni: 📱 💬 379 163 8765 ✉️ formazione@redhotcyber.com#redhotcyber #formazione #cybersecurity #darkweb #cyberthreatintelligence #ethicalhacking #infosec #intelligence #live

🔥 SONO UFFICIALMENTE APERTE LE ISCRIZIONI! 🔥Sta partendo la Settima Live Class del corso "𝗗𝗔𝗥𝗞 𝗪𝗘𝗕 𝗘 𝗖𝗬𝗕𝗘𝗥 𝗧𝗛𝗥𝗘𝗔𝗧 𝗜𝗡𝗧𝗘𝗟𝗟𝗜𝗚𝗘𝗡𝗖𝗘" – livello intermedio 🚀📌 Inizio: Domenica 8 Marzo 2026📌 Posti super limitati (max 14 partecipanti)📌 Sarà un’esperienza live e interattiva, guidata dal prof. Pietro Melillo (PhD – Università del Sannio, docente IUSI University), che ti porterà dentro il cuore del Dark Web e delle minacce cyber reali✅ Pagina del corso: https://www.redhotcyber.com/linksSk2L/academy-dark-web-e-cyber-threat-intelligence✅ Presentazione del corso: https://www.youtube.com/watch?v=9VaQUnTz4JE✅ Webinar introduttivo: https://www.youtube.com/watch?v=ExZhKqjuwf8Per info e iscrizioni: 📱 💬 379 163 8765 ✉️ formazione@redhotcyber.com#redhotcyber #formazione #cybersecurity #darkweb #cyberthreatintelligence #ethicalhacking #infosec #intelligence #liveclass #corsi #cybercrime

New blog post: GeoIP-Aware Firewalling with PF on FreeBSDRunning a mail server means constant brute-force attempts. My solution: geographic filtering. SMTP stays open for global mail delivery, but client ports (IMAP, Submission, webmail) are restricted to Central European IP ranges only.Result: ~90% reduction in attack logs, cleaner signal-to-noise ratio, smaller attack surface.Using MaxMind GeoLite2 + PF tables with ~273k CIDR blocks.https://blog.hofstede.it/geoip-aware-firewalling-with-pf-on-freebsd/#FreeBSD #InfoSec #SysAdmin #pf #DevOps

I am the hiring manager for the position, and I'm happy to answer any questions you have about the position, about 4D, or about what I'm like to work for as a manager. Some of these conversations should probably take place in DMs rather than public posts. 😉

Oh, forgot to add – yes, I do have receipts for all of this. There is plenty of proof in the blogpost pudding in the form of links to specific sources.As opposed to the AI hypers and AI doomers I show and substantiate my work.