Articles
Long-form writing on tech, culture, and the edges of the internet.
The login page was never the boundary
Cisco's CVSS 9.8 IMC authentication bypass shows why perimeter-based identity fails: when reachability equals admin, the network is the credential.
Google's 1,302 case studies prove almost nothing
Meta cut 8,000 jobs to fund GPUs
Ransomware ships a wiper
A ransomware strain destroys files above 128KB, breaking its own decryption model. What the failure exposes about reversibility assumptions.
Your hosting panel is your attack surface
Active cPanel exploitation is a control plane compromise. The boundary failed before the login form. Operator briefing on what that means.
A CVE number, a label, and nothing else
CVE-2026-31431 Copy Fail is a published identifier. Mechanism, scope, and patch status are not confirmed. Treat it as a pointer, not a flaw description.
Chrome's fourth zero-day of 2026 ships mid-cycle
Fourth Chrome zero-day of 2026 is a V8 type confusion. Inside the exploit chain, sandbox escape, and the patch gap attackers are weaponising right now.
Cognizant's bench is shrinking by design
Cognizant's automation push isn't a productivity story - it's the collapse of the services pyramid. What's actually changing, and why most firms will get the transition wrong.
Copy.fail has been root since 2017
Copy.fail turns an unprivileged Linux user into root via a copy_file_range credential cache flaw. Reachable since 2017. Telemetry gaps explained.
Encrypted files are writing back to disk
Active ransomware event analysis from an operator perspective: what failed, the underlying mechanism, and the conditions that must now hold.
OpenAI's security plan protects nothing yet
M. Hale on the OpenAI cybersecurity action plan: provider-stated intent is not a control, and the consumer still owns the boundary.
CVE-2026-3854 puts GitHub inside your trust boundary
CVE-2026-3854 enables RCE on GitHub.com and Enterprise Server. Why platform compromise becomes customer compromise across identity, secrets, and artefacts.