John Z Black
Brunswick, ME • (207) 245-1010 • contact@johnzblack.com
Mostly security stuff...
Make sure you check out my main blog at https://gnerdsec.com/blog
The FBI Read Deleted Signal Messages Without Breaking Signal's Encryption
Signal's encryption held. Disappearing messages ran. The FBI still walked into court with Signal message content from a seized iPhone. Here's exactly how, and the one setting that closes the gap.
Read More
9 Hours 41 Minutes: The Patch Window Is Gone
CVE-2026-39987 in Marimo was exploited less than 10 hours after the advisory dropped. No public PoC. The attacker built their own exploit from the description and went to work while most people were still reading their alerts.
Read More
Ivanti Just Got Its 33rd CISA Exploited Vulnerability Entry
CVE-2026-1340 is a pre-auth RCE in Ivanti EPMM, CVSS 9.8, exploited since January. It's the 33rd Ivanti entry on the CISA KEV catalog. At some point that number has to become a procurement conversation.
Read More
Your Ad Data Is a Federal Surveillance Tool. Meet Webloc.
Webloc ingests mobile ad data from 500 million devices and makes it searchable for ICE, the military, and local police. No warrant needed. You probably said yes to it when you tapped Allow on some app.
Read More
The Healthcare Multiplier: One Ransomware Attack, Dozens of Hospitals
Ransomware hit ChipSoft, the EHR vendor behind HiX. One intrusion took down clinical systems across hospitals in the Netherlands and Belgium at the same time. That's the geometry attackers are after.
Read More
Adobe Reader Had a Zero-Day in the Wild for Four Months Before Anyone Patched It
CVE-2026-34621 was sitting in the wild since November 2025. Adobe patched it in April 2026. That's a four-month window where opening the wrong PDF could get you owned.
Read More