Archive • the grugq's newsletter

May 14, 2025 Happy to announce my new paper "The cryptoint library": https://t.co/Spc0eUGVdW Constant-time code is the main way that we avoid leaking secrets...

May 13, 2025 Florida bill requiring encryption backdoors for social media accounts has failed https://t.co/zpnWt5A3nj— switched (@switch_d) May 12, 2025 The...

May 12, 2025 https://fathom.lib.uchicago.edu/2/21701757/ While true that this was the greatest SIGINT prize of the war, it did not initiate reading of the...

May 11, 2025 ‘High levels of trust [in our secret agencies] based on low levels of knowledge’. That’s a fascinating conclusion which will, rightly, command...

May 10, 2025 How to turn security research into profit: a CL.0 case study | PortSwigger ResearchHave you ever seen a promising hacking technique, only to try...

May 9, 2025 Russian hackers are interested in chaos and money, says NATO CCDCOE directorMay 8, 2025, ERR | Estoniahttps://t.co/HibxWpGMWg | Russian...

May 8, 2025 Leaked System Prompts Interesting to read some of them. GitHub - asgeirtj/system_prompts_leaksContribute to asgeirtj/system_prompts_leaks...

May 7, 2025 CimFS: Crashing in memory, Finding SYSTEM! @cplearns2h4ck dug into Microsoft CimFS, found a sneaky 0-day, and guess what? The fix by Microsoft...

May 6, 2025 Exceptional episode of one of the absolute best Between Two Nerds: How tools evolve - Risky Business Media Vibe debugging via MCP for WinDBG...

May 5, 2025 And there we go. https://t.co/3SqeNhmk9U— Matthew Green is on BlueSky (@matthew_d_green) May 5, 2025 This may be the longest photographic...

May 4, 2025 May the fourth be with you! Never deleting this app https://t.co/9CbRC1KdHq pic.twitter.com/JJclOKgfs7— Michael Bond (@HelloMrBond) May 3, 2025...

May 3, 2025 No shortage of kernel bugs... :)Kernel 6.6.87 got pwned by 6 unique 0days within 25 seconds of going live on kCTF, lol: https://t.co/xFwsKuPZsd—...

May 2, 2025 It's https://t.co/t7k0vTEBaV time 🎉👇Wormable zero-click AirPlay bugs from @OligoSecurity @DarkNavyOrg discusses hardware wallet hacking2024 ITW...

May 1, 2025 Happy May Day Technical Analysis of EquationDrug(Maybe) Bootkit It was found that this Bootkit can be directly loaded and called remotely by the...

April 30, 2025 watched a talk on Necrobotics, which started by posing an insane question: would you let a dead spider, controlled by AI robotics, perform...

April 29, 2025 Did 5G kill the IMSI catcher? - ZetierUnderstand the mechanics, risks, and the future of IMSI catching (a.k.a. stealing your cellular ID) in...

April 28, 2025 Microsoft Outlook is pants at usability and running a fat GUI isn’t great for security. About a year ago I went on a mission to make mutt (the...

April 27, 2025 The security company that had its CEO arrested for allegedly installing malware on hospital systems is actually called Veritaco. It appears to...

April 26, 2025 These days when DHS and ICE come knocking, they remotely take out your WiFi beforehand so that you can’t livestream the interaction, and to...

April 25, 2025 just accidentally closed a tab i've had been meaning to read for the past 2 years— alfie (@alfienxo) April 23, 2025 We're releasing a few...

April 24, 2025 Wrote about a novel technique that leverages the well-known Device Code #phishing approach. It dynamically initiates the flow as soon as the...

April 23, 2025 pic.twitter.com/i7KlHvgCRZ— UwU-Underground (@uwu_underground) April 22, 2025 This is good stuff from the crew at Ghost on a topic that's...

April 22, 2025 Russian take on how protective CUAS nets along the roads can also be dangerous, since "... this defensive architecture is clearly visible from...

April 21, 2025 https://t.co/dzW6fq8dhN is an education platform for students (and other interested parties) to learn about, and practice, core cybersecurity...

April 20, 2025 It's spring break and my son started a lemonade stand. I asked him how much lemonade he sold in the last hour. "$3" he said. I told him,...

April 19, 2025 I love this website 😂Thanks dodge 🫡🖖 pic.twitter.com/j1zTGPgbjU— mRr3b00t (@UK_Daniel_Card) April 18, 2025 The British Army successfully...

April 18, 2025 🐧 After 6 months of research, my 5-part Linux Persistence series is now complete!🐧🧵 Full series...

April 17, 2025 This is unhinged, and hilarious. Story live: CISA extends MITRE-backed CVE contract hours before its lapsehttps://t.co/djgU2FMkCM— David...

April 16, 2025 Russian cyber and information warfare and its impact on the EU and UK Russian cyber and information warfare and its impact on the EU and UK |...

April 15, 2025 "Stuxnet still flunks the test of cyberwar, as I argued in 2013: It was not a disruptive incident, technology did not cause offense to...

April 14, 2025 Happy Songkran! It’s Thai new year over here (it’s a week long party, apparently right beneath my window) so expected reduced output. North...

April 13, 2025 Great summary of the new Google paper on defeating prompt injection by design by increasing control and data flow separation with privileged...

April 12, 2025 pic.twitter.com/JIWVNP4uRx— Josh Kamdjou (@jkamdjou) April 10, 2025 Witness History - The Reichstag fire - BBC SoundsIn February 1933, the...

April 11, 2025 In iOS 18.4, Apple introduced a bug in dynamic symbol resolutions for some specific exports. @0xf4b took a long journey down a rabbit hole to...

April 10, 2025 I was there. It was meant literally.“JD Work — now on the US NSC — shocked some by warning that the US would take lethal action against...

April 9, 2025 Episode 4 of Where Warlocks Stay Up Late featuring Skyper is now live on our YouTube and Spotify channels 🧙Skyper, aka Eduart Steiner (an...

April 8, 2025 I've added a local CORS proxy, added some more FREE enrichments and some other bits and bobs:https://t.co/bdJdwb9YP6— mRr3b00t...

April 7, 2025 April 4th Noah Urban a/k/a "King Bob", an alleged member of the infamous "Scattered Spider" group, plead guilty to all charges in all cases.Mr....

April 6, 2025 EU: These are scary times – let's backdoor encryption! https://www.theregister.com/2025/04/03/eu_backdoor_encryption/?td=rt-3a One Bug to Rule...

April 5, 2025 No words pic.twitter.com/EyHtRLbIpq— Andy Yen (@andyyen) April 3, 2025 April is #SupplyChainIntegrityMonth! NCSCgov and its partners are asking...

April 4, 2025 Home | MIT Secure Hardware DesignMIT 6.5950/6.5951 Cracking the CrackersReversing the TNT team macOS crack library to understand if there is...

April 3, 2025 🎥 DistrictCon Year 0 recordings are now live on YouTube! Check out the AMAZING content from our Track 1 Speakers, Junkyard competitors, and...

April 2, 2025 I got 14 new Apple CVEs in this release😎 https://t.co/kut6EI5xdE pic.twitter.com/e0U2Khf3hv— Mickey Jin (@patch1t) April 1, 2025 A while back...

April 1, 2025 Synthetics Implemented Right @leveragesir has been hacked for $355kThis is a clever attack. In the vulnerable contract Vault...

March 31, 2025 What would you do if you could spy on SMS messages? @theredguild and @opsek_io have identified SLOVENLY COMET, a threat actor which has been...

March 30, 2025 A good read: The Security Conversation – Adversary Fan Fiction Writers GuildIs Offensive Security just security testing? No. Offensive...

March 29, 2025 BlackLock Ransomware Exposed After Researchers Exploit Leak Site VulnerabilityBlackLock's misconfigured leak site exposed internal commands,...

March 28, 2025 Status update For those of you who reached out about the earthquake, I’m fine thank you. I spent a few hours sitting outside with my dog....

March 27, 2025 grugq on cyber in Europe I spoke to Sven at Interface yesterday about some cyber issues with Europe. The video is online already: EXCLUSIVE:...

March 26, 2025 THC's memexec now supports x86_64, aarch64, arm6/7 and mips64. The perl version is a 1-liner (cat /usr/bin/id | memexec) :> Helps to overcome...