John Z Black
Brunswick, ME • (207) 245-1010 • contact@johnzblack.com
Mostly security stuff...
Make sure you check out my main blog at https://gnerdsec.com/blog
The Sound of Your Secrets: When Your Microphone Becomes a Keylogger
New research achieves 85% keystroke recovery accuracy using a standard laptop mic. Add in KarstoRAT's webcam surveillance, and 'air-gapped' doesn't mean what it used to.
Read More
The Zero-Window Era: AI Found 38 Ways to Break Healthcare in One Hour
AI-led scanning just found 38 critical flaws in OpenEMR in a single pass. That is months of human research, automated. If you are still relying on a 30-day patch window, your math is officially broken.
Read More
Future-Proof Ransomware and AI Avatars: The Cyber R&D Pipeline Is Open
Kyber ransomware just started using post-quantum crypto to lock files forever. Meanwhile, BlueNoroff is using AI to impersonate your CEO on live Zoom calls.
Read More
The Invisible Spy in Your Pocket: Why Carrier Privacy Just Failed
Think your phone is secure because it's in your pocket? Citizen Lab caught 'Phantom Operators' tracking users globally through cell signaling gaps that no app can fix.
Read More
CISA's Midnight Deadline: The Firewall Audit You Can't Ignore
Tonight at 11:59 PM, federal deadlines for Cisco gear expire. The government is done asking nicely for audits on firmware implants. Plus, your ActiveMQ window already shut.
Read More
The Infrastructure House of Cards: Vercel, cPanel, and Outsourced Risk
Managed hosting is great until it isn't. This week cPanel got bypassed, Vercel leaked 100,000 .env secret files, and Virtualizor handed over the keys to your VPS.
Read More