SPECIAL REPORT: An 18-month investigation by Military Times and @TexasTribune reveals how a group of intelligence officers from the Texas National Guard mishandled classified information and used WhatsApp to spy on migrants in Mexico. https://t.co/NN7WWHu5S1

— ArmyTimes (@ArmyTimes) August 29, 2023

Bikeshedding API names has real effects: https://t.co/iYMAerY9iD is missing from upstream 5.4 LTS because kfree_sensitive() there is called kzfree(). Build failed, so patch thrown out.

— Brad Spengler (@spendergrsec) August 30, 2023

With the end of summer, many ships return to their native Scottish beaches to breed pic.twitter.com/sZ4QD0eWkg

— Dreadnought Holiday (@TheDreadShips) August 30, 2023

How smart of him pic.twitter.com/wHuUMMbK7n

— Mira of Kyiv 🇺🇦 (@reshetz) August 30, 2023

"We’re working towards a future of personalized vulnerability detection with little manual effort from developers. With the addition of LLM generated fuzz targets, OSS-Fuzz can help improve open source security for everyone."https://t.co/ljoIeWcxvW

— Royal Hansen (@royalhansen) August 18, 2023

My 8-year-old asked Alexa if he will die one day and man Alexa does not hold back.

— Jessie (@mommajessiec) August 30, 2023

NEW - A fake Signal app popped up on Google Play using a previously-undocumented method to spy on the encrypted comms tool.

The hackers are linked to China and previous hits on the Uyghur community.

There was a fake Telegram too...

h/t @LukasStefanko https://t.co/1RdF27MjO7

— Thomas Brewster (@iblametom) August 30, 2023

Trojanized #Signal Android app available on Google Play and Galaxy Store could secretly autolink Signal account of victim to attacker Desktop without noticing.
This would allow attacker to have a full Signal account control of the victim without noticehttps://t.co/Zw3yq3sJsT pic.twitter.com/JrnasDdToK

— Mobile Hacker (@androidmalware2) August 30, 2023

A Sydney property developer secretly filmed councillors with sex workers on a “boys’ weekend” trip to China so he could blackmail them into voting for his projects. Full details: https://t.co/SNaFZmktHl pic.twitter.com/39waZtEHGz

— The Australian (@australian) August 30, 2023

What is a "good" Linux Kernel bug? "In the world of vulnerability research, we like to call bugs 'good' if they're bad, and 'bad' if they're either boring or completely catastrophic." https://t.co/67HIMIglML

— Ben Hawkes (@benhawkes) August 30, 2023

Here's a great collection of historical #bugs in open-source code. It includes the infamous vintage #Sendmail #crackaddr #bug found by @mdowd a loong time ago.https://t.co/RRBCopMbLs

— raptor@infosec.exchange (@0xdea) August 30, 2023

I've finally published the advisories regarding the Trend Micro bugs that I shared at #HITCON! Do check them out at @starlabs_sg's advisory page: https://t.co/kKLXy8oQKa

🏌️‍♂️CVE-2023-32530 is an interesting case of SQLi to RCE: https://t.co/rNxiD5uRru

— Jia Hao (@Chocologicall) August 31, 2023

Ever wondered "why...?" Then started pulling on that thread until your jumper is just a large pill of wool? Well, that's pretty much what happened here and its amazing.https://t.co/tkbIUsxRNw

— The Javvad Malik A.I. (@J4vv4D) August 31, 2023

Filing this for my C-SCRM research.

cc: @thegrugq https://t.co/Q0jccQEN26

— Ravi Nayyar (@ravirockks) August 31, 2023

The size of the bull, the size of its horns, the customised car, the shit sprayed across the back of the car . . . this is like a parody buddy movie. https://t.co/PqV2dmbLoH

— Oisín McGann (@OisinMcGann) August 31, 2023

BioDiff: Compare binary files using alignment algorithms.

Interesting: note the skipped gaps in the compared displays! https://t.co/c1FPCUAion pic.twitter.com/3zaXOwk4oi

— Ange (@angealbertini) August 31, 2023

I implemented NoFilter technique presented at DEF CON 31.
It enables to achieve token handle duplication without touching target processes.
Not all functionality is implemented yet, but no problem for learning the technique.https://t.co/ZoAKRVE2Ks pic.twitter.com/OHDBvvYTSC

— daem0nc0re (@daem0nc0re) August 31, 2023

News: CVE-2020-21469 is not a security vulnerability https://t.co/ilPK4U4xXR

— PostgreSQL (@PostgreSQL) August 29, 2023

TikTok has removed 284 accounts associated with a Chinese disinformation campaign after Guardian Australia raised questions about several accounts uncovered by the company’s rival Meta. https://t.co/ryZG8Ft7pM @guardian

— 780th Military Intelligence Brigade (Cyber) (@780thC) August 31, 2023

I public my researching on CNG Key isolation with CVE-2023-28229 and CVE-2023-36906 on my blog, MSRC marked it as Exploitation less likely, but I complete the exploitation in a short time.😅😅https://t.co/ste6nCOsrY

— k0shl (@KeyZ3r0) August 31, 2023