December 13, 2023
December 13, 2023
China Launches Security Probe Into Geographic Data Going Abroad https://t.co/C5uBW0YAQw
— China Beige Book (@ChinaBeigeBook) December 11, 2023
Hardening cellular basebands in Android
Baseband bugs are operationally problematic. The target needs to be in radio range to get exploited, which is fine for some operations but for many it is just not feasible.
It sort of removes the point of using cyber, in some way. Rather than being remote, you have to be local.
Why the PI is the person suited for this grant pic.twitter.com/kXQPzNw46i
— Alberto Acerbi (@acerbialberto) December 12, 2023
I can confirm that this is the correct analysis of the Apache struts bug I reported (CVE-2023-50164) https://t.co/xjpePYUKDf well done! 👏🏻
— ϻг_ϻε (@steventseeley) December 12, 2023
Interesting reading about OpenSSH security measures (privilege separation and sandboxing)
— 0xor0ne (@0xor0ne) December 12, 2023
(Credits @jfrog)https://t.co/18NsDQhtxT#infosec #openssh pic.twitter.com/ZrnPOOx32i
Ukraine’s intelligence claims cyberattack on Russia’s state tax service https://t.co/7BBGtdXKam @TheRecord_Media
— Dr. Dan Lomas (@Sandbagger_01) December 13, 2023
Don’t ever share photos of yourself breaking the law. People who are trained for years and years and years still make OpSec slip ups from time to time. If you don’t believe me, you can simply ask @thegrugq or @MalwareJake. OSINT is way way way easier than OpSec. https://t.co/nZ8RtJ9993
— Ray [REDACTED] (@RayRedacted) December 13, 2023
In 2012, a Burger King employee anonymously posted an image on 4-chan of him putting his feet in lettuce, with the caption:
— Fascinating (@fasc1nate) December 12, 2023
"This is the lettuce you eat at Burger King."
It took 20 minutes for people to track down the branch the employee worked at and contact the news.
The… pic.twitter.com/kZJ4qGPJpe
https://www.reuters.com/technology/apple-now-requires-judges-consent-hand-over-push-notification-data-2023-12-12/
Accessing sensitive data will require biometric authentication on an iOS device, not just the unlocked device. This renders stealing the passcode less useful for thieves.
This configuration is, interestingly enough, the security setup that is recommended for mobile devices used on the Ukrainian front lines. Unlock the device with a passcode, but each application (that supports it) has to be individually unlocked with biometrics. This prevents the enemy from abusing access to a device recovered from the battlefield.
Innovation from the intense security environment of the Russo-Ukraine war makes its way into consumer devices!
/cdn.vox-cdn.com/uploads/chorus_asset/file/24931349/236792_iPhone_15_Pro_and_15_Pro_Max_product_photos_AJohnson_0005.jpg)
Apple’s new iPhone security setting keeps thieves out of your digital accounts - The Verge
iPhone PINs won’t be enough to steal your iCloud account soon.
Russian Diplomat Expelled Amid EU Spy Purge Is Now An OSCE Election Observer In Serbiahttps://t.co/N8G4CbYnmo
— Dr. Dan Lomas (@Sandbagger_01) December 13, 2023
Me: Can you draw a very normal image?
— Eliezer Yudkowsky ⏹️ (@ESYudkowsky) December 13, 2023
ChatGPT: Here is a very normal image depicting a tranquil suburban street scene during the daytime.
Me: Not bad, but can you go more normal than that?
(cont.) pic.twitter.com/YjwQ9xYaVt
Thread by @ESYudkowsky on Thread Reader App â Thread Reader App
@ESYudkowsky: Me: Can you draw a very normal image? ChatGPT: Here is a very normal image depicting a tranquil suburban street scene during the daytime. Me: Not bad, but can you go more normal than that?...â¦
Congratulations to Harry Coker for his confirmation at the next National Cyber Director!https://t.co/oKwOGR7kOk
— Rob Joyce (@NSA_CSDirector) December 13, 2023
Ok so what’s up with the “stolen iPhone building in Shenzhen”? This is a new thing I didn’t know about. pic.twitter.com/cf97GyrrTo
— Matthew Green (@matthew_d_green) December 13, 2023
The sad reality is that most people don't have what it takes to work in tech:
— Chris Bakke (@ChrisJBakke) December 12, 2023
Up at 4am.
Post a pic of my new Eight Sleep in the group chat for sweet, sweet engagement.
Hit the gym.
Crush 8 jumping jacks.
35 minute cold plunge.
Rip a My First Million episode at 2x speed.…
Follow me to hear all about my Wednesday routine tomorrow.
— Chris Bakke (@ChrisJBakke) December 12, 2023
Hint: it involves a gnarly rock climbing sesh, Swatting a Reddit mod who banned me (I know where you live, David), testing out different standing desks at IKEA, and microdosing Panera Charged Lemonade before my meeting…
Windows rootkit development for red teaming and adversary emulation
— 0xor0ne (@0xor0ne) December 12, 2023
Excellent series by @Idov31
Part 1: https://t.co/gLIk9tGiEI
Part 2: https://t.co/ryrPfTLJrR
Part 3: https://t.co/l6C4j7TMte
Part 4: https://t.co/SONhXgCEp7
PArt 5: https://t.co/KOsDQxfBGp#windows #infosec pic.twitter.com/HLvFSjtg8m
my daughter’s new pink iphone 15 was stolen at edc last month and she marked it as lost/stolen on icloud and filed an insurance claim with her carrier, who had her blacklist the phone. the scammers have started texting her now. pic.twitter.com/QlsEShCPOz
— beth (@bethbourdon) December 12, 2023
Russian intelligence operations
https://ni-u.edu/wp/wp-content/uploads/2022/05/Riehle_Russian-Intelligence.pdf
Start the conversation: