April 13 2023
In retrospect, this seems like a bad idea.
-
The #VulkanFiles were shared with a media org through its @SecureDrop server, the source never revealing their identity. Great discussion about what that meant for verifying and reporting on the information
The #VulkanFiles were shared with a media org through its @SecureDrop server, the source never revealing their identity. Great discussion about what that meant for verifying and reporting on the information. https://t.co/gT2yQNgcWn
— Runa Sandvik (@runasand) April 12, 2023
-
For two years media outlets...tried to get an update on the case. But the sheriff, the city, and the FBI would only say the investigation was ongoing. But was it?" Florida TV station gets FBI to finally admit they found no evidence of a hack at Oldsmar
Oldsmar cyberattack update: Water supply wasn't hacked, city manager says
“The FBI conclusion was…it didn’t happen,” said Mr. Braithwaite.
"For two years media outlets...tried to get an update on the case. But the sheriff, the city, and the FBI would only say the investigation was ongoing. But was it?"
— Kim Zetter (@KimZetter) April 12, 2023
Florida TV station gets FBI to finally admit they found no evidence of a hack at Oldsmarhttps://t.co/FYus6qo1W0
-
We're excited to announce the release of PwC's 6th annual 'Year in Retrospect' #threatintel report! We have again consolidated the most impactful threat activity and trends from 2022 across all our global incident response, managed security, and threat research services
We're excited to announce the release of PwC's 6th annual 'Year in Retrospect' #threatintel report! We have again consolidated the most impactful threat activity and trends from 2022 across all our global incident response, managed security, and threat research services. 🌐 pic.twitter.com/FuyfmGfsms
— Kris McConkey (@smoothimpact) April 12, 2023
-
The man behind the Discord leaks: A young gun lover who worked on a military base and shared classified info with a small group of men and boys searching for companionship amid the pandemic.
🚨 The man behind the Discord leaks: A young gun lover who worked on a military base and shared classified info with a small group of men and boys searching for companionship amid the pandemic. @shaneharris & @samueloakford raise the curtain on "OG": https://t.co/H0Ab34IyYa
— Evan Hill (@evanhill) April 13, 2023
-
This is a pitch for the world’s shittiest Hallmark movie. https://t.co/YZ93LM94ii
— Open Source Stupidity (OSSTU) Starfish (@IRHotTakes) April 13, 2023
-
I never want to hear about the 'going dark problem' again: this shit was just sitting on an non-e2ee'd server for months, in control of a company that is fully cooperating
I never want to hear about the 'going dark problem' again: this shit was just sitting on an non-e2ee'd server for months, in control of a company that is fully cooperating https://t.co/lXSYcWMRKE
— Deirdre Connolly¹ (@durumcrustulum) April 13, 2023
-
I knew it. Dan Goodin reports over on Mastodon that that FBI Denver warning about so-called juice jacking was not based on any new cases, but rather just a chain of previous news articles. All of which themselves had no solid basis. Do better, Bureau.
Dan Goodin: "Sigh. Let's see if y'all can play along at home: …" - Infosec Exchange
Attached: 1 image Sigh. Let's see if y'all can play along at home: The FCC and the FBI's Denver field office are both warning people to beware of Juice Jacking attacks at airports and other public places. Both cite "cybersecurity experts." https://www.fcc.gov/juice-jacking-dangers-public-usb-charging-stations An FBI spox told me the Denver field office warning was reporting information from the FCC. An FCC spox said its information came from a 2019 NYT article, but that the agency has received consumer complaints of juice jacking.The NYT article cited a warning from the LA DA's office. The DA's post was taken down in December 2021, a couple weeks after @zackwhittaker@mastodon.social reported DA officials had no cases and could point to no cases of it happening. Even though the the LA DA's warning was depublished ~18 months ago and the FCC spox can't name a single cybersecurity expert issuing such warnings, there are no plans to correct the post and no mechanism for the public to challenge the warning.
I knew it. Dan Goodin reports over on Mastodon that that FBI Denver warning about so-called juice jacking was not based on any new cases, but rather just a chain of previous news articles. All of which themselves had no solid basis.
— Brian in Pittsburgh (@arekfurt) April 13, 2023
Do better, Bureau.https://t.co/9dynDHbB4g
-
Joe Biden gaffe alert:
@POTUS just said his rugby player cousin @KearneyRob “beat the hell out of the Black and Tans”….instead of the @AllBlacks
🚨Joe Biden gaffe alert: @POTUS just said his rugby player cousin @KearneyRob “beat the hell out of the Black and Tans”….instead of the @AllBlacks
— Stephen Murphy (@SMurphyTV) April 12, 2023
They've already updated Wikipedia apparently pic.twitter.com/rsgRLMk5RF
— Thomas Ingleson-Grey (@inglesongrey) April 12, 2023
-
Today is the day I march into my boss's office and announce that he's an incompetent idiot and tomorrow is the day he gets back from vacation
Today is the day I march into my boss's office and announce that he's an incompetent idiot and tomorrow is the day he gets back from vacation
— Melvin of York (@MelvinofYork) June 5, 2019
-
Russians Hacked Cameras in Ukraine Coffee Shops for Intel: US Official
"There are creative things going on. We are watching the Russian hackers log into public-facing webcams to watch convoys and trains delivering aid," he said.
Russians Hacked Cameras in Ukraine Coffee Shops for Intel: US Official
Russians spying even in Ukraine's coffee shops through hacked cameras.
-
A threat group tracked by Microsoft as DEV-0196 is linked to an Israel-based private sector offensive actor (PSOA) known as QuaDream, which reportedly sells a suite of exploits, malware, and infra. Read our analysis in collaboration with @citizenlab:
https://www.microsoft.com/en-us/security/blog/2023/04/11/dev-0196-quadreams-kingspawn-malware-used-to-target-civil-society-in-europe-north-america-the-middle-east-and-southeast-asia/A threat group tracked by Microsoft as DEV-0196 is linked to an Israel-based private sector offensive actor (PSOA) known as QuaDream, which reportedly sells a suite of exploits, malware, and infra. Read our analysis in collaboration with @citizenlab: https://t.co/IiypdxWVvd
— Microsoft Threat Intelligence (@MsftSecIntel) April 11, 2023
-
Together with the Military Counterintelligence Service we've detected an ongoing espionage campaign linked to the APT29/NOBELIUM group. We're publishing detailed technical analysis of their latest tools, mostly never publicly described before. Read more
Espionage campaign linked to Russian intelligence services - Baza wiedzy - Portal Gov.pl
The Military Counterintelligence Service and the CERT Polska team (CERT.PL) observed a widespread espionage campaign linked to Russian intelligence services
❗Together with the Military Counterintelligence Service we've detected an ongoing espionage campaign linked to the APT29/NOBELIUM group. We're publishing detailed technical analysis of their latest tools, mostly never publicly described before. Read more: https://t.co/IAh0eFqC6r
— CERT Polska (@CERT_Polska_en) April 13, 2023
-
Daniel Plohmann presented MCRIT, a framework to spot code similarities https://github.com/danielplohmann/mcrit… Really nice research and quite useful! NOTE: You need to understand what’s matching and how unique it is, don’t make attribution randomly #Botconf2023 #reversing
GitHub - danielplohmann/mcrit: The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash algorithm in the context of code similarity.
The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash algorithm in the context of code similarity. - GitHub - dan...
Daniel Plohmann (@push_pnx) presented MCRIT, a framework to spot code similarities https://t.co/wntCJS5EQv Really nice research and quite useful! NOTE: You need to understand what’s matching and how unique it is, don’t make attribution randomly #Botconf2023 #reversing @Botconf
— Jose Miguel Esparza (@EternalToDo) April 13, 2023
-
if you tell me to “Meet the Marchioness of Cholmondeley” you best believe I don’t wanna see a human woman. I wanna see a well dressed cat that speaks french https://t.co/plG5mqq17A
— Smooth Dunk (@SmoothDunk) April 12, 2023
-
Norway declares 15 intelligence officers working at Russian embassy in Oslo personae non gratae ‘The intelligence officers have been engaging in activities that are not compatible with their diplomatic status,’ said FM Anniken Huitfe
Norway declares 15 intelligence officers working at the Russian embassy in Oslo personae non gratae - regjeringen.no
‘The 15 intelligence officers have been engaging in activities that are not compatible with their diplomatic status,’ said Minister of Foreign Affairs Anniken Huitfeldt.
Norway declares 15 intelligence officers working at Russian embassy in Oslo personae non gratae
— Christopher Miller (@ChristopherJM) April 13, 2023
‘The intelligence officers have been engaging in activities that are not compatible with their diplomatic status,’ said FM Anniken Huitfeldt. h/t @rmilneNordichttps://t.co/U4BU1cVX8U
-
Every day, it's important to remind people that it will be cops who enforce the planned nationwide ban on abortion, traveling for abortion, and subsequently contraception. There is no conceivable world in which increasing police surveillance tech and budgets is not used for this.
Every day, it's important to remind people that it will be cops who enforce the planned nationwide ban on abortion, traveling for abortion, and subsequently contraception. There is no conceivable world in which increasing police surveillance tech and budgets is not used for this.
— Alec Karakatsanis (@equalityAlec) April 12, 2023
-
European Parliament expert report delivers a rare, damning verdict on EU Commission's legislative plans to combat online child abuse imagery. Confirms what experts suspected all along: Ineffective approach and infringement of user rights.
European Parliament expert report delivers a rare, damning verdict on EU Commission's legislative plans to combat online child abuse imagery. Confirms what experts suspected all along: Ineffective approach and infringement of user rights. https://t.co/HTBE37urqC pic.twitter.com/GmxpcbilMr
— cSchmon (@cSchmon) April 13, 2023
-
"there is only so much ‘high-quality’ text on the internet (for example, books and academic journal articles), which may soon become a more pressing constraint on the development of language models than the availability of computing power"
Large language models: fast proliferation and budding international competition
The capabilities of large language models have improved significantly in recent years and have come to broader public attention with the release of OpenAI’s ChatGPT in November 2022 | Read the IISS Strategic Comment.
"there is only so much ‘high-quality’ text on the internet (for example, books and academic journal articles), which may soon become a more pressing constraint on the development of language models than the availability of computing power" https://t.co/pVGWqlgRlW
— Shashank Joshi (@shashj) April 13, 2023
-