Notices by Jerry 🦙💝🦙 (jerry@infosec.exchange)

Whoville isn’t gonna know what hit them

This was such a wild time in my life.

https://techcrunch.com/2026/06/05/former-cyber-executive-turned-whistleblower-accuses-ibm-of-covering-up-several-data-breaches/

The amount of propaganda bots trying to sign up lately is bonkers. The fediverse feels like it’s becoming a battleground for information warfare. Be safe out there

If you run a peertube instance and have not patched in the past 4 hours, you are way behind and likely have been compromised. The latest patch will help clean up the mess.

See here: https://github.com/Chocobozzz/PeerTube/releases/tag/v8.1.8

There's an RCE vulnerability in nginx, so go patch. There's also another RCE in nginx that hasn't been patched, so commence hand wringing and keep an eye out for the new new patch when it is released.

If you run a mastodon instance, it's time to patch. Some high severity security 🐜 🐞 🐝 got fixed today.

I just had an opportunity to use the phrase "I admire your ability to reach that level of confidence without the inconvenience of competence" at work

Bad news: changing profile pictures was b0rked on infosec.exchange, infosec.space, ioc.exchange, and convo.casa.

Good news: it's fixed now.

I guess the music wasn’t going to last forever https://www.personneltoday.com/hr/cyber-experts-salaries/

I’m just saying my wife doesn’t need to be so happy when the UPS and Amazon deliveries get here

Youngest son’s wedding about to start.

@blogdiva I am not very good at composing pics like that 😅

AI? In vim? Maybe it will help me exit now?

Today was not a good day. I hope it was for some of y'all. Please send cat pics.

Due to ongoing pressure from governments globally, we are instituting an age verification program. Recognizing that it is not possible to confirm your age based on a picture of your face, we will instead be counting the number of rings you have. We understand this is the most accurate measure of age.

@feld but it has that train... that you can walk faster than.

@InsiderTreat is it even a real instance if it has no @catsalad account?

If you or someone you know has an account on mastodon.cloud, I would highly recommend migrating to a new server. Lots of instances are in the process of completely blocking mastodon.cloud which will sever all connections for people on mastodon.cloud. Mastodon.cloud is effectively abandoned, running very old and out of date software with minimal moderation resulting in a good deal of moderation work for those of us running other instances.

I am posting this in hopes that some people on mastodon.cloud see it and decide to take action.

FYI for those in the US (at least) with expensive prescriptions for pets - Costco prices for pet meds is really good. I am saving about half from what my vet charges. We were getting into the $300/month range

I’m going to update mastodon across the infosec, ioc, and convo instances today. There shouldn’t be any downtime but there are user interface changes and for that I will apologize in advance to everyone who doesn’t like their cheese moved. There isn’t an option to keep it like it was. And yes, this will probably continue the trend of breakage on old devices with browsers that can’t handle newer functionality. I’m sorry for that too.