April 3, 2023

                            April 3, 2023

                April 3, 2023

SLF @slffishOur Q1 selection
OpenSSH Pre-Auth Double Free CVE-2023-25136 jfrog.com/blog/openssh-p…
Dota 2 Under Attack: How a V8 Bug Was Exploited in the Game decoded.avast.io/janvojtesek/do…
BlackLotus UEFI bootkit welivesecurity.com/2023/03/01/bla…
aCropalypse: Recovering Truncated PNGs 
da.vidbuchanan.co.ukExploiting aCropalypse: Recovering Truncated PNGs | Blog2:29 AM ∙ Apr 2, 2023
2Likes2Retweets
-
@netspooky@haunted.computer @netspooky
Wwow it's so cool and sustainable that the most annoying ppl now know how to make their posts even more algorithm friendly AND can generate text/pics with AI for free AND can pay to boost AND it's getting harder to determine whether or not info is coming from an official source5:13 AM ∙ Apr 2, 2023
119Likes31Retweets
-
Lazarus Heist: The intercontinental ATM theft that netted $14m in two hours

            Lazarus Heist: The intercontinental ATM theft that netted $14m in two hours
            How criminals seemingly working for North Korea were able to plunder cashpoints in 28 countries.

-
Joseph Cox @josephfcox“Landmark”, the product bought here, is not a hacking tool. It is a surveillance tool based on SS7 (see our coverage here vice.com/en/article/m7v…). Sounds pedantic, but it’s a key distinction when governments are clamping down on commercial spyware. Landmark is not that. https://t.co/VOCzvATL2W
Mark Mazzetti @MarkMazzettiNYT
NEW: Days after the White House in 2021 blacklisted NSO, the notorious Israeli hacking firm, a secret contract was signed for a hacking tool. The contract states that the USG is the user. A thread https://t.co/i2PSUXq3NJ
10:58 PM ∙ Apr 2, 2023
87Likes45Retweets
-
Chad Read @squirrel74wkgn
Hey guys, I almost did a backflip today!

EMT: Please try not to speak, sir.
4:27 PM ∙ Apr 2, 2023
241Likes74Retweets