Casperinous

in 2000 a programmer discovered you can implement coroutines in C using the same switch trick as Duff's Device it's called Tatham's Coroutine. it still compiles and is technically valid C he used it in production inside PuTTY (the SSH client used by millions) Simon Tatham's own words: "As far as I know, this is the worst piece of C hackery ever seen in serious production code."

Early this week, we had a meeting at Apple Park in Cupertino. While there, we also shared with Apple our latest vulnerability research report: the first public macOS kernel memory corruption exploit on M5 silicon, surviving MIE. It was laser printed, in honor of our hacker friends. Full story: https://t.co/AmKMGUmWPt

Have you noticed that those deep-dive stories about complex Windows malware have pretty much vanished, especially in recent years? It feels like the era of "blockbuster" Windows malware has just gone silent, and this blog post tries to give some answers why. https://t.co/sFsf3uPm5o

Zscaler ThreatLabz has published a technical analysis on activity we believe to be orchestrated by Tropic Trooper, using military-themed lures and a trojanized SumatraPDF to deploy AdaptixC2 with a custom GitHub-based C2, then pivoting to Visual Studio Code tunnels for remote access. Read more: https://t.co/myj0VbDZYr

Zscaler ThreatLabz has observed a wave of ransomware attacks that share similar TTPs with prior BlackBasta initial access brokers. These attacks start with spam bombing followed by vishing via Microsoft Teams and Quick Assist to deploy malware. ThreatLabz has linked these attacks to a relatively unknown ransomware group called Payouts King. Check out our technical analysis of Payouts King ransomware including the file encryption methods (4,096-bit RSA + 256-bit AES CTR) and techniques to evade malware sandboxes, antivirus and EDR detection. Link: https://t.co/CsMH0onbSi

Adobe has confirmed our findings and has issued an emergency security update for all Adobe Reader (and other affected products) users. https://t.co/2cOeuZ9Gn0 The underlying exploited zero-day vulnerability has been rated Critical (CVSS 9.6) and is tracked as CVE-2026-34621. It appears that Adobe has determined the bug can lead to arbitrary code execution — not just an information leak. This aligns with our findings and those of other security researchers over the last few days. EXPMON would like to thank Adobe for releasing this emergency security update quickly to help protect users. UPDATE NOW! #expmon #zeroday #0day #pdf #adobereader #CVE-2026-34621