July 14, 2022

                July 14, 2022

            July 14, 2022

            Some basic numbers on ransomware which seem to be maybe reasonable? Measuring one of the most lucrative parts of the infosec industry and the driver for so much security budget seems like a good idea.
Megan Stifel - Pls 😷& get dbl boosted 🌻 @MeganStifel
Is #ransomware up or down? Up in ‘21 as our latest blog by @hrbrmstr explains. More to come on how ‘22 is shaping up. 
But, as we noted in our recent Progress Report, as an ecosystem we’re in a sub-optimal position when it comes to incident information. https://t.co/9HBAB7174gInstitute for Security and Technology @IST_orgWe are excited to present the 2021 #RTF #Ransomware Incident Map, which depicts ransomware incidents with publicly disclosed ransoms or data leaks for the year 2021.  

To read more, be sure to check out our website: https://t.co/hUhIO5y9nV https://t.co/TqLHaov7K21:26 PM ∙ Jul 13, 2022
5Likes4Retweets
The actual post:

https://securityandtechnology.org/blog/rtf-year-two-new-map-new-data-same-mission/

-
The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.
-
Books to read to understand financial crime. 

https://www.economist.com/the-economist-reads/2022/07/11/the-best-books-to-read-to-understand-financial-crime

-
A thread of excellence.
Caitlin, LCSW @caitjord
I want to see your favorite therapy memes! I’ll go first. 
6:39 PM ∙ Jul 12, 2022
33,383Likes4,030Retweets
-
Dirk van der Kley @dvanderkley
Yesterday @GPriyandita @B_Herscovitch and I published a @CarnegieEndow paper on how Huawei became Indonesia’s trusted cybersecurity partner. Rather than being seen as the problem. They have successfully positioned themselves as the solution. 1/6 carnegieendowment.orgLocalization and China’s Tech Success in IndonesiaDespite ambivalence about Chinese intentions in Indonesia’s political and defense establishment, Chinese telecoms firms have successfully used strategies of localization to position themselves as trusted cybersecurity providers to the country.7:22 AM ∙ Jul 13, 2022
867Likes270Retweets
-
Compare decompiler output. Thanks to Binja 

https://binary.ninja/2022/07/13/introducing-decompiler-explorer.html

The site:

https://dogbolt.org/

-
Jan Lemnitzer @JanLemnitzer
'shall we just tell them about the 9 million we need for the new spyware or also mention the cost of the hardware?'. Top things not to discuss when standing next to a member of the parliamentary committee for supervision of the intelligence services...@thegrugq @ciaranmartinoxf 
Stefan Soesanto @iiyonite
*Chefkiss* two BND representatives deliberated in front of the confidentiality committee's meeting room about what crucial information to withhold from members of Parliament. Standing next to them and listening in: a member of the Committee 🤣🤣 https://t.co/oH9RTbLE8X2:53 PM ∙ Jul 13, 2022
10Likes7Retweets
-
Chris Riley @MChrisRileySo, I've spent some time trying to unpack my reactions to this @CFR_org report: cfr.org/report/confron… I'm curious what others think. To me, the individual recommendations are great, but I'm deeply concerned by the decision to declare "the era of the global internet is over."
cfr.orgThe United States Needs a New Foreign Policy for CyberspaceThe internet is more fragmented, less free, and more dangerous than ever before.5:02 PM ∙ Jul 13, 2022
6Likes3Retweets
-
Matthijs R. Koot @mrkootIn defense of offense: information security research under the right to science (2022) doi.org/10.1016/j.clsr… ❤️

Full article by Ot van Daalen. Published in Computer Law & Security Review, Vol. 46, Sep 2022, 105706. Open Access.

/c @thegrugq @daveaitel @hyperelliptic 
5:42 PM ∙ Jul 13, 2022
28Likes11Retweets
-
ChrisO @ChrisO_wikiMarcin @Wyrwal of onet.pl has published a fascinating piece on how Ukrainian software developers are using artificial intelligence (AI) to improve the aim of their bomber drones. It deserves attention in English, so here's a 🧵 to summarise it. /1 
9:25 PM ∙ Jul 13, 2022
1,208Likes340Retweets
-
shana 😋 (andreia gaita) @sh4na
Wait what, Unity is merging with the company best known for its malware delivery system, so popular that it has its own entries in VirusTotal, was blacklisted on Windows by MS, and was used to spread fake flash installers through the Equifax site?! What?? 
Unity for Games @unitygames
We're thrilled to announce that we have entered into an agreement to merge with ironSource to accelerate a unique end-to-end platform that powers creators’ success! Learn more on our blog. https://t.co/bYpc1WmgFa2:04 PM ∙ Jul 13, 2022
12,624Likes4,170Retweets
-
Ryan Butner, Gazing into the Void @RSButner
This deal, and things like adding ad placements to your phone's lock screen, are more to the heart of building the Metaverse than VR goggles.

Metaverse is essentially "ad tech maximalism", and its vision is to grow the industry by building more media surfaces into your life. 
shoshana wodinsky (she/her) @swodinsky
soooooo unity is an adtech company now i guess 🥴 https://t.co/tUkf5YpDKz3:06 PM ∙ Jul 13, 2022
281Likes72Retweets
-
Alex Shams @alexshams_When militants attacked Timbuktu's ancient libraries in 2012, thousands of books were smuggled out by Malian librarians

After a decade of digitization, the manuscripts-with topics ranging from spirituality to science and the occult-are available online:

nytimes.com/2022/07/12/wor… 
7:52 PM ∙ Jul 12, 2022
320Likes123Retweets-
What is your favorite color and why it is blue.

https://www.bbc.com/future/article/20220601-what-your-favourite-colour-says-about-you

-
Matthijs R. Koot @mrkootEU to create new anti-eavesdropping unit (Jul 14) euobserver.com/tickers/155524 

"The 'CSC-TSCM Expert Group' will bring together specialists from EU states "to prevent, detect and potentially neutralise eavesdropping of information in any physical or electronic form [...]"

#SIGINT
euobserver.com[Ticker] EU to create new anti-eavesdropping unitEU institutions are creating a new cell to prevent signals interception by foreign spies. The ‘CSC-TSCM Expert Group’ will bring together specialists from EU states “to prevent, detect and potentially neutralise eavesdropping of information in any physica...6:42 AM ∙ Jul 14, 2022
6Likes6Retweets
-
Michael Vogel @MichaelVogel1Coworker: (seeing me drink coffee) You should try low caffeine green tea instead.  It will change your life.

Me:  you should try having 3 kids

Coworker:

Me: it will change your life!

Coworker:

Me: I'm going to get more coffee.2:12 AM ∙ Jul 13, 2022
1,106Likes147Retweets-
AI Red Teams and Adversarial Data Labeling, with Redwood Research
Some very simple adversarial red teaming of ML.

https://www.surgehq.ai/blog/ai-red-teams-and-adversarial-data-labeling-with-redwood-research

-
🤷‍♂️🌜Dad Moon Rising🌛🤷‍♂️ @raoulvilla
[on my deathbed] everyone's in here, why are the lights on in the living room?2:09 PM ∙ Jul 13, 2022
1,171Likes201Retweets
The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

                Don't miss what's next. Subscribe to the grugq's newsletter: