Brutkey

Emory
@emory@soc.kvet.ch

a Mixture-of-Experts (MoE) gonzo engineer, threat modeling for security and privacy.

my posts and opinions are mine and not those of my employers, clients, or sensible people.

defined in tags as #amateurRadio, #ransomware,
#infosec, #parenting #quids, #aikido, #photography, #obsidian, #PKM, #omnifocus, #radio, #mobile, #bestPractices, #reiki, #johnnyDecimal, #PAI, and whatever we're calling the next Internet.

i am candid about


Notes
3011
Following
0
Followers
0
pronouns::
[ he, him, his ]
homepage::
https://incumbent.org/
keybase::
emory
contact-verification-imessage
APKTIDaoaMV6jqbNHvoeFlz6ipOppQkh7vy6Uy79_LDwXca11Qyw
Emory
@emory@soc.kvet.ch

RE: https://hachyderm.io/@evacide/115900663566563599

Vulnerability introduced by AI-enhanced media processing.

β€’ Attackers can leverage tiny memory corruption windows
β€’ Media decoder memory layouts present consistent security vulnerabilities

thank you πŸ™‡πŸ»πŸ™‡πŸ» @evacide@hachyderm.io for this high-quality explainer with references:

1. CVE-2025-49415
2. CVE-2025-54957
3. CVE-2025-36934
4. Dolby Digital (DD) and Dolby Digital Plus (DD+) audio formats
5. ETSI audio format specification

this isn't over imo. #infosec

Emory
@emory@soc.kvet.ch

RE: https://vmst.io/@csara/115907772398951194

if you haven't seen or read anything about this research, because you've been busy losing your entire mind about civilians being executed in the streets of our cities, the video I suggest is this one:

https://www.youtube.com/watch?v=osxr7xSxsGo

here's the output of my -A[analyze] ingest:

https://gist.github.com/emory/56e7f5c3d1402ef0dfa0e6537c72dc0e

Sara :ruby:
@csara@vmst.io

My husband is a non-tech guy and has always been relatively blasΓ© and ignorant about internet privacy and security, despite my pleas.

I showed him the More Perfect Union deep dive into Instacart pricing nonsense and he finally turned to me and said β€œOk, help me secure my shit.”

successkid

Video Link: https://youtu.be/osxr7xSxsGo

Emory
@emory@soc.kvet.ch

@briankrebs@infosec.exchange > β€œno longer trust their AI-enabled peers, find them less creative, and find them less intelligent or capable.”

that's fscking interesting, man.

Emory
@emory@soc.kvet.ch

RE: https://vmst.io/@csara/115907772398951194

if you haven't seen or read anything about this research, because you've been busy losing your entire mind about civilians being executed in the streets of our cities, the video I suggest is this one:

https://www.youtube.com/watch?v=osxr7xSxsGo

here's the output of my -A[analyze] ingest:

https://gist.github.com/emory/56e7f5c3d1402ef0dfa0e6537c72dc0e

Sara :ruby:
@csara@vmst.io

My husband is a non-tech guy and has always been relatively blasΓ© and ignorant about internet privacy and security, despite my pleas.

I showed him the More Perfect Union deep dive into Instacart pricing nonsense and he finally turned to me and said β€œOk, help me secure my shit.”

successkid

Video Link: https://youtu.be/osxr7xSxsGo

Emory
@emory@soc.kvet.ch

RE: https://hachyderm.io/@evacide/115900663566563599

Vulnerability introduced by AI-enhanced media processing.

β€’ Attackers can leverage tiny memory corruption windows
β€’ Media decoder memory layouts present consistent security vulnerabilities

thank you πŸ™‡πŸ»πŸ™‡πŸ» @evacide@hachyderm.io for this high-quality explainer with references:

1. CVE-2025-49415
2. CVE-2025-54957
3. CVE-2025-36934
4. Dolby Digital (DD) and Dolby Digital Plus (DD+) audio formats
5. ETSI audio format specification

this isn't over imo. #infosec

Emory
@emory@soc.kvet.ch

@briankrebs@infosec.exchange > β€œno longer trust their AI-enabled peers, find them less creative, and find them less intelligent or capable.”

that's fscking interesting, man.

Emory
@emory@soc.kvet.ch

wanna know something fun? macOS gets mad as hell if you have more than 64 mounted filesystems.

how many do i have on my creative workstation, ICON?

101.

and like at least 30 are #timeMachine snapshots and mounted disk images for xcode even though i rarely launch #xcode so clearly i've done something wrong.,

#storage #macOS #lolsob

a terminal window on my iPad logged in to a macOS workstation with more than 64 mounted filesystems. whoops.
Emory
@emory@soc.kvet.ch

this post on linkedin about leaving a job because the mission changed and being true to your values was encouraging to read today. the "cybersecurity industry" and "cybersecurity community" conflict surfaces often. #infosec https://www.linkedin.com/posts/taylorbanks_surveillance-for-hire-threat-report-activity-7357139922811527168-vzrS?utm_source=share&utm_medium=member_ios&rcm=ACoAAAAP-tQBCFjoliV4TfzbwPonaukac6IY6Cc

Emory
@emory@soc.kvet.ch

i've extracted and trimmed a very long and detailed forum thread on the #HASS Home Assistant Community board from this dude named NathanCu.

you know how i'm obsessed with an AI Voice Assistant sounding board/feedback loop? he's built something extremely cool for #HomeAssistant and forum posts are a mess so i've extracted the most salient parts of his ongoing series on Household AI and i hope it's useful to others!

for now it's here :
https://gist.github.com/emory/6c55e8d6755cfae12ef329be5709ebbd

#smartHome #gist #voicePE #Speech