April 9

“The sky was the color of a TV tuned to a QR code of a rick roll video…”

Dallas got RickRolled by QR code in the sky formed by drones.

Dallas Got Rick Rolled With a Giant QR Code on April Fools Day | Dallas Observer

Internet fads come and go faster than a hiccup, but one that's somehow lasted almost as long as the Internet itself is the "Rick roll."

Yandex and the new Russian certificate authority.

Koen Rouwhorst @koenrh

I wrote about Russia's new national certificate authority for sanctioned organizations and how it is supported in Yandex Browser.

koen.engineerRussia’s certificate authority for sanctioned organizationsAfter Russia’s invasion of Ukraine, it has created a new certificate authority to support sanctioned organizations.

2:01 PM ∙ Apr 8, 2022

---

90Likes56Retweets

Microsoft’s “anatomy of a breach” website hacked to redirect to an mp3 downloaded. Much lol

Kevin Beaumont @GossiTheDog

Microsoft's "Anatomy Of A Breach" site has also been breached to go to Free Mp3 Downloader …oud-platform-assets.azurewebsites.net/anatomy-of-a-b…

9:43 PM ∙ Apr 8, 2022

---

148Likes39Retweets

Linux vulnerability analysis write up.

raptor @0xdea

How The Tables Have Turned: An analysis of two new Linux vulnerabilities in nf_tables << impressive writeup by @pqlqpql

Some nuance on how the last not so big bug was reported vs. how it actually works. Spring4Shell has a bug in one library, but the exploitation path was more flexible.

Amitai Cohen @AmitaiCo

I think many early publications about #Spring4Shell / CVE-2022-22965 slightly glossed over the relationship between the underlying bug in Spring Beans and the exploitation path of this vulnerability through WebMVC / WebFlux (1/5) 🧵

4:38 AM ∙ Apr 8, 2022

---

54Likes21Retweets

An article on Russian radios and problems they have.

K-pop jamming compounds Russian HF woes in Ukraine | Shephard

%