Jan 19, 2023

                            January 19, 2023

                Jan 19, 2023

Jimmy Rushton @JimmySecUK
Two Marines defeated the AI detection system of a military robot by... hiding in a cardboard box and walking right up to it. 
Shashank Joshi @shashj
These aren’t the marines you’re looking for. https://t.co/qMwzJblQwp2:24 PM ∙ Jan 18, 2023
33,139Likes5,363Retweets
Shashank Joshi @shashj
These aren’t the marines you’re looking for. 
2:21 PM ∙ Jan 18, 2023
11,589Likes1,904Retweets
-
flglmn @flglmn
i mean look on the one hand everyone deserves a second chance, good for them in a sense, on the other, what tech company employed this person "in the role of growth marketing and business development specialist" nypost.comHeather Morgan, crypto rapper ‘Razzlekhan,’ lands NYC tech job while under house arrest for bitcoin heistMorgan will work for the unnamed company “in the role of growth marketing and business development specialist,” according to her attorney, Eugene Gorokhov.2:11 PM ∙ Jan 18, 2023
60Likes11Retweets
-
Tonya Riley @TonyaJoRiley
BREAKING: The U.S. Justice Department worked/ w French authorities to disrupt a China-based cryptocurrency exchange notorious for darknet money laundering and last night FBI arrested its founder in Miami5:12 PM ∙ Jan 18, 2023
2,515Likes775Retweets
switched @switch_dFounder and Majority Owner of Bitzlato, a Cryptocurrency Exchange, Charged with Unlicensed Money Transmitting | USAO-EDNY | Department of Justice justice.gov/usao-edny/pr/f…
6:19 PM ∙ Jan 18, 2023
1Like2Retweets
vx-underground @vxunderground
The United States Treasury Department’s FinCEN representative has stated on live broadcast that Conti ransomware group used Bitzlato.5:31 PM ∙ Jan 18, 2023
37Likes3Retweets
This is a bit mind boggling to me:
Tonya Riley @TonyaJoRiley
The exchange's founder, Anatoly Legkodymov, is a Russian national who resides in People’s Republic of China. He also worked out of Miami in 2022 - 20235:20 PM ∙ Jan 18, 2023
321Likes96Retweets
-
Runa Sandvik @runasand
A @propublica investigation found that pharmacies selling abortion pills share sensitive data with Google and other third-parties, similar to what @themarkup uncovered last summer. propublica.orgWebsites Selling Abortion Pills Are Sharing Sensitive Data With GoogleSome sites selling abortion pills use technology that shares information with third parties like Google. Law enforcement can potentially use this data to prosecute people who end their pregnancies with medication.5:58 PM ∙ Jan 18, 2023
26Likes28Retweets
-
Matthew Green @matthew_d_green
I just want to say that trusted hardware (“Secure Enclaves”) is succeeding to a degree I did not think possible ten years ago.10:34 PM ∙ Jan 17, 2023
406Likes53Retweets
Matthew Green @matthew_d_green
@TorBair @SecretNetwork Ok ok but hold on. The one place where I *don’t* trust TEEs is in these fragile “break one computer, you break the whole global system” scenarios like the one used by Secret Network.5:45 PM ∙ Jan 18, 2023
17Likes2Retweets
-
0xor0ne @0xor0neDynamoRIO: nice intro for beginners for tracing and manipulating programs

vx.zone/2022/10/22/tra… 

#dynamorio #tracing #reverseengineering #hacking #infosec #learning 
8:30 PM ∙ Jan 17, 2023
292Likes103Retweets
-
Matthew Green @matthew_d_green
This tool seems really useful! Not something we’d have gotten as easily from the academic research community. h/t @gkaptchuk crypto.ethereum.orgzkalc: a cryptographic calculator | EF Cryptography Researchzkalc: a cryptographic calculator!5:44 PM ∙ Jan 18, 2023
23Likes2Retweets
-
Luca Deri @lucaderi
Scaling Up: How To Collect, Analyse, and Store Flows at Scale (100 Gbit+) ntop.orgScaling Up: How To Collect, Analyse, and Store Flows at Scale (100 Gbit+)Most ntop tools such as nProbe cento and n2disk have been designed to run at high speed (today we consider 100 Gbit a high-speed link). ntopng instead has to perform many activities including behav…3:21 PM ∙ Jan 18, 2023
34Likes8Retweets
-
Gabby Roncone 🌻 @gabr@infosec.exhange @gabby_roncone
CADDYWIPER with a hack-and-leak twist - is the GRU even trying to hide their associations with “hacktivists” at this point? As always, incredible defending & transparency about incidents from @_CERT_UA 
SSSCIP Ukraine @dsszzi🧐 Due to prompt actions of the Computer Emergency Response Team of Ukraine (@_CERT_UA), the recent russian hackers’ attack on the National News Agency of Ukraine (Ukrinform) failed to disrupt its operation.
🌐https://t.co/afwAE6qV9M
#cyberattacks #cybersecurity #cyberdefence https://t.co/ERKPQDnZl55:12 PM ∙ Jan 18, 2023
24Likes10Retweets
-
Recherche_J @online_monitord
@NihadJariri got access to some of the communications, in which the attack on Sina'a prison was planned, between IS Syria leaders and IS prisoners in the prison. Very interesting.

Key takeaways would be:
-Plan to attack was suggested from inside the prison 
M. Nureddin @mnureddinLots of interesting points in this documentary investigation by @NihadJariri on Ghuwairan prison break. 

في اقتحام غويران 2021.. مراسلات داعش السرية تكشف ضعفاً في التخطيط والموارد https://t.co/xhNgr5q7s8 #الخليفة_الخفي #داعش #مواجهة_التطرف #داعش_ضد_داعش #فانية_وتتدهور9:21 AM ∙ Jan 18, 2023
6Likes4Retweets
-
raptor@infosec.exchange @0xdeaIs @ExploitDB dead? It sure looks that way, with the last exploits added to the database on 2022-11-11.

exploit-db.com
4:27 PM ∙ Jan 18, 2023
9Likes4Retweets
-
Synacktiv @SynacktivWatchout! CVE-2023-22809 on Sudo was patched today to prevent a privilege escalation on sudoedit. Read the security advisory by @aevy__ and @v1csec: synacktiv.com/sites/default/… 
3:28 PM ∙ Jan 18, 2023
196Likes94Retweets
-
delivr.to @delivr_toHTML Smuggling is so last year, PDF links are the new hotness 💁🏼‍♂️

We’ve recreated this sample here, complete with Adobe-branded PDF, hosted encrypted ZIP, and hidden CMD and DAT files to achieve execution! 

delivr.to/payloads?id=3d…  
proxylife @pr0xylife#IcedID - .pdf > .url > .zip > .iso > .lnk > .cmd > .dll

cmd /c REF_Scan_01-16.lnk

cmd.exe /c vatphiefts.cmd

rundll32 kickboxing.dat,init

c2'

http://dgormiugatox.]com/

Samples here 👇

https://t.co/81K7K3vnBp

https://t.co/LT9PLEco1J

IOC's
https://t.co/uvcCuMGbiD https://t.co/DfDR22Fv4i
8:15 AM ∙ Jan 17, 2023
357Likes86Retweets-
Some thoughts on the ETH’s Threema Analysis - blog.dbrgn.ch

https://blog.dbrgn.ch/2023/1/14/threema/

-
Bret Devereaux @BretDevereaux
So this tweet and the attached video has been making the rounds (again, in the case of the vid) and getting a range of responses, so it is worth talking about it, because for various reasons, no, I do not think this is a good example of the 'devastating power of cavalry.'  1/ 
Steven @nonregemesse
The devastating power of cavalry https://t.co/U8Twx8j3U310:52 PM ∙ Jan 18, 2023
947Likes171Retweets
-
Matthijs R. Koot @mrkootSeven (Science-Based) Commandments for Understanding and Countering Insider Threats (2022) citrap.scholasticahq.com/article/37321-… ❤️

By Dr Eric L. Lang, director of DOD Personnel and Security Research Center (PERSEREC), in Scholarship In Practice, Vol. 1, Issue 1, August 2022. 

#insiderthreat 
7:11 AM ∙ Jan 19, 2023
4Likes3Retweets
-

                            Don't miss what's next. Subscribe to the grugq's newsletter: