April 4, 2023

                        April 4, 2023

            April 4, 2023

clem @clementbriensMeet the FSB contractor: 0Day Technologies

An investigation into the FSB’s digital surveillance and disinformation contractor (🧵)

clement-briens.com/2023/04/01/mee…
clement-briens.comMeet the FSB contractor: 0Day TechnologiesAn investigation into the FSB’s digital surveillance and disinformation contractor Key Takeaways 0Day Technologies (0DT) is a private company contracted by the FSB to develop surveillance and disin…1:49 PM ∙ Apr 1, 2023
319Likes127Retweets
-
The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

-
Kim Zetter @KimZetter
A front company in New Jersey signed the contract for the unknown gov agency. The company - “Cleopatra Holdings” - is actually Riva Networks, the same company the FBI used two years earlier to purchase Pegasus. 
Mark Mazzetti @MarkMazzettiNYT
NEW: Days after the White House in 2021 blacklisted NSO, the notorious Israeli hacking firm, a secret contract was signed for a hacking tool. The contract states that the USG is the user. A thread https://t.co/i2PSUXq3NJ10:21 PM ∙ Apr 2, 2023
40Likes23Retweets
-
Dan Veditz @dveditz
Attention Firefox bug bounty hunters: WebGPU is now enabled by default in Firefox Nightly and eligible for bounty rewards. It's a large chunk of new code with plenty of attack surface for everyone to share.

bugzilla.mozilla.org1746245 - (webgpu-in-nightly) Enable WebGPU in Nightly by defaultRESOLVED (jimb) in Core - Graphics: WebGPU. Last updated 2023-04-03.5:31 AM ∙ Apr 2, 2023
215Likes77Retweets
-
Noah Barkin @noahbarkin
Germany’s cybersecurity agency BSI, which is charged with ensuring the security of the country’s 5G network, has now admitted that it uses Huawei internally itself. In Germany, fact trumps fiction when it comes to the total disregard for national security handelsblatt.comIT-Infrastruktur: Deutschlands oberste Cybersicherheitsbehörde setzt Huawei-Technik einDas Innenministerium verschärft die Gangart gegenüber chinesischen IT-Konzernen. Doch ausgerechnet die Behörde, die dabei eine wichtige Rolle spielt, nutzt selbst Technologie aus der Volksrepublik.6:00 AM ∙ Apr 3, 2023
1,435Likes566Retweets
-
Matthijs R. Koot @mrkootThe Military Strategic Effects of the Russian National Segment of the Internet (2023) urn.fi/URN:ISBN:978-9… 

Direct link to thesis (2.2MB .pdf, 148pp) doria.fi/bitstream/hand…

Author: Dr Juha Kukkola / Finnish National Defence University (@mpkkfi). 

/c @paulducheine 
6:14 PM ∙ Apr 3, 2023
13Likes4Retweets-
Crac⚡ked @a_simpl_man
The wife says our marriage is boring so I replaced the air freshner in the bathroom with an air horn1:09 PM ∙ Sep 23, 2020
952Likes575Retweets
-
UK’s offensive hacking unit takes on military opponents and terrorist groups

https://www.theguardian.com/technology/2023/apr/03/uks-offensive-hacking-unit-takes-on-military-opponents-and-terrorist-groups

Shashank Joshi @shashj
Today the National Cyber Force publishes a doctrine, "Responsible Cyber Power in Practice" & publicly avows its commander, GCHQ's James Babbage. Below, my interview with him. We discussed  NCF's "doctrine of cognitive effect" & offensive cyber more broadly
economist.comCyberwarfare is all in the mind, says BritainAn exclusive interview with the commander of the National Cyber Force5:44 AM ∙ Apr 4, 2023
126Likes63Retweets
Paper here. Well worth a read.

https://www.gov.uk/government/publications/responsible-cyber-power-in-practice/responsible-cyber-power-in-practice-html

A panel discussion on the paper is happening here, on Wednesday:

https://events.teams.microsoft.com/event/be2b1188-6f8e-4a91-b7a3-384accf07490@2efd699a-1922-4e69-b601-108008d28a2e

-
SystemFreez ❄️ @SystemFreez
Can't wait for Elon to change the Twitter logo into a doge or some other equally cringe shit.1:12 PM ∙ Apr 25, 2022
7,223Likes2,977Retweets
SystemFreez ❄️ @SystemFreez
@ole_ympia @SAMOYEDWAVE I'm so sorry1:44 AM ∙ Apr 4, 2023
745Likes19Retweets
-
Tony Comer @TCHisTreeThe latest instalment of Gwen Tovey's memoir  on siginthistorian.blogspot.com sees her applying for and getting a job at GCHQ, and tells a couple of stories about GCHQ analysts.
siginthistorian.blogspot.comSigint Historian11:05 AM ∙ Apr 4, 2023
5Likes4Retweets
-
BlockSec @BlockSecTeam
1/ @samczsun explained that the attacker exploited the vulnerability in mev-boost-relay to drain MEV bots. After digging into the attack, we have two more findings. First, the attacker used a honeypot tx to lure MEV bots. Second, the honeypot tx has a self-protected mechanism.  
3155.eth @punk3155Dusk for sandwich bots? A few top mev bots were targetted in block
https://t.co/tnlx5tAX1G
@peckshield @BlockSecTeam @bertcmiller @samczsun @bbbb https://t.co/Kfyv8fP8Dd7:25 PM ∙ Apr 3, 2023
294Likes88Retweets
-
Sebastiaan Brommersma @SebastiaanBrom1
We have no secrets for the multi-billion dollar digital advertising industry. Moreover, through online-auctions these are sold across the globe to the highest bidder. From private persons to criminals & intelligence agencies.
@gerardusjanssen for @FTM_eu
ftm.euYour most intimate data is being sold to the highest bidder – who might be a spyPersonal data trading on the digital ad market has grown into a billion-dollar industry. Intimate data – such as someone’s sexual preference or medical condition – is spread across the world in the blink of an eye and ends up with the highest bidder: from intelligence agencies to private individuals…9:55 AM ∙ Apr 4, 2023
9Likes9Retweets
-
Even if you can't write assembly like a poet, you can read disassembly like a hunter

https://wordsandbuttons.online/you_dont_have_to_learn_assembly_to_read_disassembly.html

-
Electrospaces @electrospacesIn the UK, there's the National Cyber Force (NCF), which conducts offensive cyber operations for both military and civilian purposes:
archive.is/dsSxM#selectio…
11:34 AM ∙ Apr 4, 2023
1Like1Retweet
-

                        Don't miss what's next. Subscribe to the grugq's newsletter:

          Start the conversation:

            Be the first to share your thoughts