Archive • the grugq's newsletter

February 20, 2025

February 20, 2025 Signals of Trouble: Multiple Russia-Aligned Threat Actors Actively Targeting Signal Messenger | Google Cloud Blog Signals of Trouble:...

February 19, 2025

February 19, 2025 Reviewing the Cryptography Used by Signal - Dhole MomentsLast year, I urged furries to stop using Telegram because it doesn’t actually...

February 18, 2025

February 18, 2025 If you are an APT using CloudFlare as CDN and you see your beacons disappearing every weekend in Spain, it's because football. ISPs are...

February 17, 2025

February 17, 2025 Another pointless weekend project - a playable version of the old 3DMaze screensaver from Windows 9x.I reverse-engineered the original...

February 16, 2025

February 16, 2025 Hackers rejoice!We are releasing the Phrack 71 PDF for you today!Don't forget this year is Phrack's 40th anniversary release! Send in your...

February 15, 2024

February 15, 2025

February 15, 2024 https://vault.fbi.gov/kevin-mitnick/kevin-mitnick-part-01-final/view When I heard Musk say this on Tuesday, my assumption was that it was a...

February 14, 2025

February 14, 2025 Grab a ☕️ and enjoy this weeks EC #59 OUT NOW Steam Deck fun from @quarkslab @retr0reg exploits Llamma.cpp heap bugGorgeous PhysPuppet...

February 13, 2025

February 13, 2025 https://t.co/uDClBBH1DA is awesome! that is all! carry on cybering! :) pic.twitter.com/I87jnm5Dx2— mRr3b00t (@UK_Daniel_Card) February 12,...

February 12, 2025

February 12, 2025 Cyberpunk future is weird Russian criminal organizations have begun using FPV drones to kill their business rivals, the first recorded...

February 11, 2025

February 11, 2025 Russians shot down their own Eleron-3 reconnaissance drone and painted a Ukrainian flag on it in an attempt to receive awards instead of...

February 10, 2025

February 10, 2025 A lot of people don’t know this, but any platform Chrome runs on except iOS has a fully featured Bluetooth scanner that allows viewing,...

February 9, 2025

February 9, 2025 Interesting report from ReversingLabs researchers, who named a new attack nullifAI, a novel malware distribution technique targeting ML...

February 8, 2025

February 8, 2025 02 releases "AI Granny" to hijack your scam calls and frustrate the scammers into agony. This should be a service that ALL major service...

February 7, 2025

February 7, 2025 Snooper's Charter realized. "The British government’s undisclosed order, issued last month, requires blanket capability to view fully...

February 6, 2025

February 6, 2025 I think this sort of thing is good. Governments need these tools but there must be consequences for abuse. That will help keep the end users...

February 5, 2025

February 5, 2025 0x08 - Modern Windows Kernel Race Conditions : https://t.co/Wz1M7jlZ22 0x07 - Introduction to Windows Kernel Race Conditions :...

February 4, 2025

February 4, 2025 Interview with @Adam_pi3 and me about LKRG, in English https://t.co/TN7B3OKJHj and Polish https://t.co/TFdCuQ49XI— Solar Designer...

February 3, 2025

February 3, 2025 We're super stoked to publish this post. A huge shoutout to our former intern, @rainbowpigeon_ who poured his heart & soul into this 7-8...

February 1-2, 2025

February 2, 2025

February 1-2, 2025 Today, I'm releasing the first version of a small web 🚀: https://t.co/WZMsLWpGEKIt provides IOCs and YARA rules collected semi-...

January 31, 2025

February 2, 2025

# January 31, 2025 a 2005 study found an autistic reindeer herder in siberia that didnt like being around people but memorized the entire genealogical and...

January 30, 2025

February 2, 2025

January 30, 2025 Wiz Research Uncovers Exposed DeepSeek Database Leaking Sensitive Information, Including Chat History | Wiz BlogA publicly accessible...

January 29, 2025

January 29, 2025 ''GitHub - mandiant/flare-vm: A collection of software installations scripts for Windows systems that allows you to easily setup and...

January 28, 2025

January 29, 2025

January 28, 2025 SLAP and FLOPThe SLAP and FLOP Address and Value Prediction Attacks Lazarus Group Deploys Electron-Based Malware to Target Cryptocurrency...

January 26, 2024

January 27, 2025

January 26, 2024 Logon scripts are as old as Active Directory....yet I still see numerous misconfigurations during internal pentests. Back in 2023 I did some...

January 25, 2025

January 27, 2025

January 25, 2025 I never imagined this concept.#bugbountytips pic.twitter.com/AITLKca5Dr— H4x0r.DZ (@h4x0r_dz) January 24, 2025 A PoC for Early Cascade...

January 24, 2024

January 27, 2025

January 24, 2024 Concrete example of the difference between theory and practice in systems engineering:When we were designing the storage system at @Dropbox...

January 27, 2025

January 27, 2025 I need to confirm, but I think there’s another strategy to exploit a file UAF. You have to do what’s shown here https://t.co/8vEoH5gh9F but...

Quick Update on the Newsletter Issues

January 26, 2025

Hi, Thank you to everyone who flagged the recent issues with the newsletter. It’s good to know people are reading and care enough to let me know when things...

January 23, 2024

January 23, 2025

January 23, 2024 The third article (62 pages) of the Exploiting Reversing Series (ERS) is available on:https://t.co/UuOt1aLcNXI would like to thank Ilfak...

January 22, 2025

January 22, 2025 A bug in Cloudflare (and just the nature of how CDNs work) let an attacker learn the broad location of Discord, Signal, Twitter users by...

January 21, 2024

January 21, 2025

January 21, 2024 🚨Just in, I can't believe it! UK just released Kim Philby’s interrogation docs! Philby, a top British intelligence officer turned Soviet...

January 20, 2025

January 20, 2025 Weekend (2025) papers:QMSan: Efficiently Detecting Uninitialized Memory Errors During Fuzzinghttps://t.co/riwZuOMqFiInvivo Fuzzing by...

January 19, 2025

January 19, 2025 TikTok thoughts The second order effects of banning TikTok will be very interesting.Personally, I think people are missing the real threat...

January 18, 2025

January 18, 2025 Chinese hackers broke into 400 Treasury department computers Treasury hacked by exploiting trust relationship with BeyondTrust. lol...

January 17, 2025

January 17, 2025 Today brings us the Biden administrations last Executive Order on cyber. It contains some improvements to policy surrounding emerging...

January 16, 2025

January 16, 2025 #DOOM is now playable in a PDF file 🎮 pic.twitter.com/gzOxuheAId— Culture Crave 🍿 (@CultureCrave) January 15, 2025 Made by Github user...

January 15, 2024

January 15, 2025

January 15, 2024 Wild that the Senate Armed Services Committee, in its questions to Pete Hegseth, asked him whether Salt Typhoon was an act of war:...

January 14, 2025

January 14, 2025 Already 1.7 million views and 19k likes in 19 hours... And of course the mentioned .exe is not seems malware at all.🤷‍♂️...

January 13, 2025

January 13, 2025 Academic work on honeypots and deception are often kinda disappointing, but this paper by @debi_ashenden and Reeves is worth the skim...

January 12, 2025

January 12, 2025 Ships Must Practice Celestial Navigation An interesting point here, actually. The Navy conducts live-fire weapons drills, damage control...

January 11, 2025

January 11, 2025 [POC2024]An insider perspective on the offensive industryhttps://t.co/RYKwC1MAkp@qwertyoruiopz— xvonfers (@xvonfers) January 10, 2025 Just...

January 9-10, 2025

January 10, 2025

January 9-10, 2025 From https://t.co/XFEpKzhGim pic.twitter.com/b6HXJIy5FL— Alberto Acerbi (@acerbialberto) January 9, 2025...

January 8, 2025

January 8, 2025 Hundreds of police license plate cameras are misconfigured to stream to the open internetA privacy researcher took these streams and turned...

January 7, 2024

January 7, 2025

January 7, 2024 AWS introduced same RCE vulnerability three times in four years https://t.co/Ooljsa6Nji— /r/netsec (@_r_netsec) January 4, 2025 How to become...

January 6, 2025

January 6, 2025 https://archive.ph/2025.01.05-232824/https://www.wsj.com/tech/cybersecurity/typhoon-china-hackers-military-weapons-97d4ef95?st=4zK2ke Ollie...

January 5, 2025

January 5, 2025 False alarm.It's porn: https://t.co/rckofBv3N7 https://t.co/Q0UgAxpJsz— Proton (@ProtonPrivacy) January 3, 2025 John Regehr: "meta's AI...

January 4th, 2025

January 4, 2025

January 4th, 2025 CF Hero CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web...

January 3, 2025

January 3, 2025 Interested in all the new macOS malware of 2024!? 🍎🐛I've started my annual "The Mac Malware of " report.Each day, I'll be adding details of a...

January 2, 2025

January 2, 2025 From fault injection to RCE Analyzing a Bluetooth tracker by Nicolas Oberlihttps://t.co/AkGMEAyJOuhttps://t.co/lgwhI1Zb2a...

January 1. 2025.

January 1, 2025

January 1. 2025. Anyone that ever opened a PE file in ida knows this is bullshit, without reading a single line of 7z code https://t.co/2nJZoSX30o...