Jan 21, 2023

                January 21, 2023

            Jan 21, 2023

            Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475)

            Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475) | Mandiant

Dave Aitel and I discuss this Mandiant report in some detail here:

(It took a while for things to get going, technical difficulties, etc. The start of the discussion is 13:37, or 817s, which is exactly how we planned it.)
If you like in-depth analysis on threat intelligence reports (like the above video) you can show your support by signing up for a paid, or free, subscription.

-
pourmecoffee @pourmecoffee"Launch Plume of the SpaceX Falcon Heavy Rocket Seen from the International Space Station" flickr.com/photos/nasamar… 
4:43 PM ∙ Jan 20, 2023
29Likes7Retweets
-
xlr8harder @xlr8harder
Oh you want to schedule a daytime high res satellite photo of anywhere on earth?  That'll be just $175. 
8:44 AM ∙ Jan 20, 2023
5,949Likes551Retweets
-
Jillian D'Onfro @jillianilesOh my god: This MA school can't turn off its lights — and hasn't been able to for ~1.5 years — because the software that runs it failed in fall 2021 nbcnews.com/news/us-news/l…
10:24 PM ∙ Jan 19, 2023
2,980Likes611Retweets
@mikko @mikko
@jillianiles Smart.8:13 PM ∙ Jan 20, 2023
-
Mystery divers rescued near Polish energy sites in the middle of the night offer dubious explanation, and vanish
Officers apparently saw nothing suspicious at first in the fact that the men were diving [in cold rough seas] near critical infrastructure at night with no permit and atypical amber-hunting equipment [their cover story], and the local police did not pursue the matter, releasing the men without further questioning.   
Bonus: 
only one of the men had formal identification, and the phone numbers offered by the divers were either incorrect or non-functional.

    Mystery divers rescued near Polish energy sites in the middle of the night offer dubious explanation, and vanish - CBS News
            Polish authorities are investigating after the men, who were let go, offered an "unnatural" explanation for their late-night dive in rough seas.

-
switched @switch_dThe Future of Cyber Warfare in the Indo-Pacific | ORF orfonline.org/research/the-f…
1:53 AM ∙ Jan 21, 2023
-
mjos\dwez @mjos_cryptoThe PMFault paper was just accepted to CHES 2023. There's a lot of stuff here, but one attack literally burns the CPU.. (potentially remote!) 
"..we were satisfied after successfully destroying two CPUs and decided to not perform further experiments."
pure-oai.bham.ac.uk/ws/portalfiles… 
10:34 AM ∙ Jan 20, 2023
73Likes22Retweets
-
Nice little intro to shortwave and some SIGINT, but be warned it is packaged as fantasy porn for the “survival after society collapses and you can shoot ppl for shits and giggles” crowd. 

-
Layoffs:
- don't save money
- don't improve company performance
- don't increase stock pricess
- destroy trust
- have huge impacts on health, well-being, and income of employees
So why do layoffs? It's a network effect: execs lay people off because other companies are doing it
Stanford Biz School article: https://news.stanford.edu/2022/12/05/explains-recent-tech-layoffs-worried/
Harvard Biz Review:

https://hbr.org/2022/12/what-companies-still-get-wrong-about-layoffs

            J. Nathan Matias 🦣: "Layoffs are yet another area where companies refu…" - social.coop
            Content warning: Layoffs are yet another area where companies refuse to follow the science. Here's what the science says.

-
Cyber Defence News for Blue & Purple Teams
Bluepurple Pulse: week ending January 22nd
Welcome to the weekly highlights and analysis of the blueteamsec subreddit (and my wider reading). Not everything makes it in, but the best bits do. Operationally this week CircleCI provided an update with indicator of compromise. DataDog then provided an…
Read more
3 months ago · 2 likes · Ollie

Don't miss what's next. Subscribe to the grugq's newsletter: