Communist spy at the heart of the BBC: 'Agent Vora' was the 'attractive and voluptuous' churchgoer who was a dead ringer for Cilla Black that none of her Beeb colleagues suspected... but she was really spying for the Czechs during the Cold Warhttps://t.co/rlZp41qvcm

— Dr. Dan Lomas (@Sandbagger_01) January 1, 2024

Exploiting Linux kernel with CVE-2023-3390
Nice presentation by Dongok Kim (@c0m0r1) & SeungHyun Lee (@0x10n) & Insu Yun (@insu_yun)

"One shot, Triple kill"https://t.co/bw6iEpJH4T#Linux #kernel #infosec pic.twitter.com/J9OurW7c8g

— 0xor0ne (@0xor0ne) January 1, 2024

Mute the Sound: Chaining #Vulnerabilities to Achieve #RCE on #Outlook 👨🏻‍🍳😘 https://t.co/M75GruAS13https://t.co/WWXJlRDnyjhttps://t.co/hrvDdc8ujT

— raptor@infosec.exchange (@0xdea) January 1, 2024

🔥

— Shift (@Shiftreduce) January 1, 2024

The new year is almost here, don’t forget to add the following to your password cracking/spraying lists:

Spring2024
Spring2024!
Summer2024
Summer2024!
Winter2024
Winter2024!
Fall2024
Fall2024!
Password2024
Password2024!
Companyname2024
Companyname2024!

— spencer (@techspence) January 1, 2024

happy 2024th birthday, America 🇵🇷🦅🎇

— Rob DenBleyker (@RobDenBleyker) January 1, 2024

BREAKING: The president of Somaliland Muse Bihi Abdi has claimed that Ethiopia will be the first country to recognise Somaliland once the agreement is signed. In return Somaliland will lease a 20km piece of land along the Red Sea to Ethiopia to have a marine force base. Ethiopia… https://t.co/KW31fbq3fY

— Harun Maruf (@HarunMaruf) January 1, 2024

BREAKING: Ethiopia, Somaliland sign “historic” agreement that will pave the way for Ethiopia to have access to the Red Sea, @AbiyAhmedAli’s office announced. The Memorundum of Understanding signed by @AbiyAhmedAli and @bihi also strengthens the security, economic and political… pic.twitter.com/wmxcSjJHy3

— Harun Maruf (@HarunMaruf) January 1, 2024

PROJEKT: OVERFLOW is a game about creating a small shellcode in memory by copying existing instructions and then exploiting a buffer overflow to jump into it, so that you can overwrite your opponent's return address to force them to go to the game_over. https://t.co/G9UaqfPNWK pic.twitter.com/eSRnC591Eo

— Geeknik`s ☀️; Lab (@geeknik) January 2, 2024

haha i just released a board game to teach my daughter riscv assembly https://t.co/uvUyIhMmK6 i had forgotten how fun it is, tbh if people start treating programs as 'jump to some address and execute' rather than 'npm install react' things would be better

— jackdoe (@punkxorg) September 21, 2023

I wasted my afternoon writing an introduction to the Hiew hex editor😆 https://t.co/Owzi1tw7Z2 pic.twitter.com/6GKihcYYQA

— Tavis Ormandy (@taviso) January 2, 2024

shoutout to all the hooded, shadowy advisers out there whispering poisonous lies and fell portents into the ears of gullible royalty and machinating the downfall of kingdoms
you're gonna get that throne
this is your year

— Sam Sykes (@SamSykesSwears) January 2, 2024

Tragically, a brief snowstorm killed off my lawn dinosaur. pic.twitter.com/yTUlvTIQZH

— Scott Hartman (@skeletaldrawing) January 1, 2024

Belarus's State press/information agency BelTA hacked today, defaced. Contained 'anti-government' messages. Allegedly the actors hacked into the internal network and stole personnel data. Now the web server only says: "real server unavailable" (and 403) pic.twitter.com/L7BHbVfHK6

— Lukasz Olejnik, Ph.D, LL.M (@lukOlejnik) December 31, 2023

Incidentally Google caused an information disruption in Poland. Yesterday evening/overnight, for unknown reasons the currency rate for EUR/PLN went from ~4.3 to ~5.9, which is a huge change. Some people feared a major financial crisis happening. "Fixed"?? https://t.co/mM1X8mfV2U pic.twitter.com/omFXq6GgQ5

— Lukasz Olejnik, Ph.D, LL.M (@lukOlejnik) January 2, 2024

Lots of folks marvelling about targeting of Kaspersky but completely missing high likelihood that they aren’t the primary targets, with Kaspersky being the secondary counter-CI effort.. https://t.co/Sa0dRjcGlM

— InstaCyber @instacyber@infosec.exchange (@instacyber) January 2, 2024

.. a highly similar situation occurred in late 2020 with the Russian compromise of Solarwinds and later attempts to target western security companies. Certain cyber operations are a CI effort, and will engage hard targets. It’s literally why they exist, not to hoard 0day.

— InstaCyber @instacyber@infosec.exchange (@instacyber) January 2, 2024

1/ So obviously hacking @kaspersky was a well thought operation by an Intelligence Agency (IA).
But why?
What made Kaspersky such a valuable target worth risking and ultimately losing IA's decade+ old Apple exploit chain?
CC: @pwnallthethings @ImposeCost @thegrugq @0xcharlie https://t.co/739YmooGfI

— Tal Be'ery (@TalBeerySec) January 1, 2024

Why Is My Coworker Being Called a ‘Rockstar’ Even Though I’m the One Who Shows Up Drunk to Work?: https://t.co/J6FQTQt70c pic.twitter.com/adP1BejfS7

— Reductress (@Reductress) January 1, 2024

All of us are Ranjit's children pic.twitter.com/mr3V6J1A94

— GonzoHacker (@GonzoHacker) January 2, 2024

https://t.co/WRWkUAfz2I

GodPotato can be found at https://t.co/QQSMUxehRs

Tested on Windows 10 (fully patched) pic.twitter.com/ysjqHKKj3g

— Weasel Sec (@Weasel_Sec) January 2, 2024

starting the year off right by accidentally exposing a postgres server on 5432 of a hetzner host and IMMEDIATELY getting ransomed

(`docker run -p` exposes on 0.0.0.0, in case you were wondering)

thankfully there is no sensitive data in there and I have backups 😌 pic.twitter.com/rYNZ87ukbw

— fasterthanlime (@fasterthanlime) January 1, 2024

☑️ fucked around
☑️ learning accelerated

— fasterthanlime (@fasterthanlime) January 1, 2024

in a rare "two wrongs /do/ make a right" moment, I ALSO fucked up volume-mounting, so they stole an empty DB 😌 even better!

— fasterthanlime (@fasterthanlime) January 1, 2024