February 21, 2023

                February 21, 2023

            February 21, 2023

🏴 Jurre van Bergen @DrWhax
Together with @FbdnStories we obtained a brochure from the Guacamaya leak of the Columbian army where s2t's OSINT tool was pitched. The tool can be used for more than just OSINT research, phishing, social engineering and geolocation is just one of them.

forbiddenstories.orgWhen your “friends” spy on you: The firm pitching Orwellian social media surveillance to militaries12:42 PM ∙ Feb 20, 2023
41Likes26Retweets
-
Kim Zetter @KimZetter
This would seem to imply that there is some lasting impact from these whack-a-mole takedowns 
The Record From Recorded Future News @TheRecord_Media
Revenues earned by darknet markets fell from $2.6 billion in 2021 to $1.3 billion in 2022, Chainalysis says. The decrease is attributable mostly to takedown efforts from law enforcement (@jgreigj) https://t.co/GltRHQJTOe4:36 AM ∙ Feb 20, 2023
37Likes7Retweets
-
Tal Be'ery @TalBeerySec
Isn't it ironic: 100 crypto researchers are locked out of the conference @BIUCrypto room because of a lost key 
12:18 PM ∙ Feb 20, 2023
155Likes42Retweets
-
The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

-
Lloyd Davies @LloydLabsNew Research 👉 Process Injection via NtQueueApcThreadEx with NTDLL ROP Gadget

1. Pick random pop r32; ret gadget within NTDLL
2. The NtQueueApcThreadEx call will force the IP to ntdll.dll!<gadget>
3. Return into SystemArgument1 (our shellcode)

🔗  - github.com/LloydLabs/ntqu…
github.comGitHub - LloydLabs/ntqueueapcthreadex-ntdll-gadget-injection: This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and Syst…This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret gadget can be used for stealthy code injection. - GitHub - ...1:00 PM ∙ Feb 20, 2023
283Likes100Retweets
-
Binni Shah @binitamshahHardware 1101 : Intel SPI Analysis :  p.ost2.fyi/courses/course…

Architecture 4001: x86-64 Intel Firmware Attack & Defense :  p.ost2.fyi/courses/course…

Architecture 2001: x86-64 OS Internals : p.ost2.fyi/courses/course…

Architecture 1001: x86-64 Assembly : 
p.ost2.fyiCourse | Arch1001 | OpenSecurityTraining21:56 PM ∙ Feb 20, 2023
126Likes36Retweets
-
NE Ohio Regional Sewer District @neorsd
in honor of Presidents Day, here is the complete list of US presidents who died from waterborne diseases. 1/4:34 PM ∙ Feb 20, 2023
7,622Likes1,411Retweets
-
pourmecoffee @pourmecoffeeGenuinely excited to find out how this will go horribly wrong.

"AI-powered talking Copernicus robot unveiled in Warsaw on astronomer’s 550th birthday" notesfrompoland.com/2023/02/19/ai-… 
2:14 AM ∙ Feb 21, 2023
52Likes15Retweets
-
Uncle Duke @UncleDuke1969
car not found 
1:54 AM ∙ Sep 7, 2021
2,930Likes460Retweets
-
Craig Shackleton (he/him) @ShackletonCIIf you aren't in the SF/F industry this tweet might not look like a big deal.

This is a crisis.

Clarkesworld is the fastest/most efficient publisher for responding to story submissions (also one of the best-paying).

They have been overwhelmed by AI-generated spam. clarkesworld @clarkesworld
Submissions are currently closed. It shouldn't be hard to guess why.6:02 PM ∙ Feb 20, 2023
30,361Likes6,976Retweets-
Infiltration
Zine on accessing off limits areas.

http://infiltration.org/

-
Low-Level Software Security for Compiler Developers

https://llsoftsec.github.io/llsoftsecbook/#introduction

-
charlotte @cza_li
linux tip: "/bin" is the recycling bin and you should regularly delete everything in there to free up space5:18 PM ∙ Feb 18, 2023
1,941Likes287Retweets
-
Hurt CoPain @SaeedDiCaprio
someone hacked into my netflix account last month and watched every episode of cocomelon and then left me a note 
6:53 PM ∙ Feb 20, 2023
305,571Likes21,311Retweets
Hurt CoPain @SaeedDiCaprio
I didn’t change my password because I’m not a fed6:57 PM ∙ Feb 20, 2023
28,939Likes158Retweets
-
dave 🎤🦆 @hurlarious
excessive force ones 
11:12 PM ∙ Feb 19, 2023
30,963Likes3,120Retweets
-
Jan Lemnitzer @JanLemnitzer
So similar things to what happened in Norway now observed in the Netherlands. Germany should also keep a close watch on its one new LNG terminal... 
Henrik Moltke @moltke
"Russia is secretly charting this infrastructure and is undertaking activities which indicate preparations for disruption and sabotage" says Dutch Intelligence https://t.co/CquivUuSBj9:05 AM ∙ Feb 21, 2023
13Likes8Retweets
-

Don't miss what's next. Subscribe to the grugq's newsletter: