January 28, 2025

                January 29, 2025

            January 28, 2025

            January 28, 2025

                   SLAP and FLOP
The SLAP and FLOP Address and Value Prediction Attacks            

Lazarus Group Deploys Electron-Based Malware to Target Cryptocurrency Enthusiasts https://t.co/AKQhWguq9q
— Nicolas Krassas (@Dinosn) January 27, 2025

Last Thursday, I gave a webinar on anti-reverse engineering techniques like obfuscation, anti-debug, anti-tamper etc, including practical examples.  Recording, slides and examples are now available.https://t.co/M99j6jHkJshttps://t.co/3o4TIAQBbE https://t.co/3OdtUf86v2
— Tim Blazytko (@mr_phrazer) January 27, 2025

Virtual desktop in a Docker container using WebRTC pic.twitter.com/WCzqaM0c7u
— Tom Dörr (@tom_doerr) January 26, 2025

                  GitHub - m1k1o/neko: A self hosted virtual browser that runs in docker and uses WebRTC.
A self hosted virtual browser that runs in docker and uses WebRTC. - m1k1o/neko            

https://neko.m1k1o.net/ 

                  ggml : x2 speed for WASM by optimizing SIMD by ngxson · Pull Request #11453 · ggerganov/llama.cpp · GitHub
Motivation
This PR provides a big jump in speed for WASM by leveraging SIMD instructions for qX_K_q8_K and qX_0_q8_0 dot product functions.
Surprisingly, 99% of the code in this PR is written by De...            

i cant believe ChatGPT lost its job to AI
— terminally onλine εngineer 🇺🇦 (@tekbog) January 27, 2025

5 linked to cyber espionage ring arrested in Türkiyehttps://t.co/ZC8cFa2w9H
— Dr. Dan Lomas (@Sandbagger_01) January 27, 2025

Cobalt Strike and a Pair of SOCKS Lead to LockBit Ransomwarehttps://t.co/fSHIu22y3R
— Marc R (@Seifreed) January 27, 2025

Incredible reporting from @NRKno coming out this week: Bjørn Hallstrøm claims he worked for the CIA in the 80s and 90s; posed as a journalist in Afghanistan, Colombia, Libya; and produced documentaries for Norwegian television. https://t.co/1qHT1Oi7aS
— Runa Sandvik (@runasand) January 28, 2025

We've wrapped up #Pwn2Own Automotive 2025. Join us as we look at the highlights of the three-day event. We awarded $886,250 for 49 unique 0-days - including some exploits that have never been publicly demonstrated before. #P2OAuto https://t.co/RSSx0P02dj
— Zero Day Initiative (@thezdi) January 27, 2025

A pro-Palestinian hacker group called Handala reportedly breached emergency systems used in Israeli schools and broadcast rocket sirens and Arabic songs that Israel’s cyber agency called supportive of “terrorism.”  https://t.co/PhRW8HLH4p
— The Record From Recorded Future News (@TheRecord_Media) January 27, 2025

"Two ways of Rooting All Qualcomm based Android phones" (slides)https://t.co/071Wk7Rps7#infosec #android pic.twitter.com/nM6wdPR48c
— 0xor0ne (@0xor0ne) January 28, 2025

For the hardcore reverse engineers and malware analysts out there, my ex-colleague just dropped a deep dive into 'Scatterbrain,' the obfuscator behind PoisonPlug malware. If you're into long technical breakdowns, this one's worth a read. https://t.co/EfrpfKUAae
— DebugPrivilege (@DebugPrivilege) January 28, 2025

Don't miss what's next. Subscribe to the grugq's newsletter:

the grugq's newsletter

January 28, 2025

January 28, 2025

SLAP and FLOP

The SLAP and FLOP Address and Value Prediction Attacks

GitHub - m1k1o/neko: A self hosted virtual browser that runs in docker and uses WebRTC.

A self hosted virtual browser that runs in docker and uses WebRTC. - m1k1o/neko

ggml : x2 speed for WASM by optimizing SIMD by ngxson · Pull Request #11453 · ggerganov/llama.cpp · GitHub

Motivation This PR provides a big jump in speed for WASM by leveraging SIMD instructions for qX_K_q8_K and qX_0_q8_0 dot product functions. Surprisingly, 99% of the code in this PR is written by De...