July 19, 2022

                July 19, 2022

            July 19, 2022

            My keynote presentation on the Russian cyberwar in Ukraine. 

-
The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

How an Unqualified Sex Worker Allegedly Infiltrated a Top Air Force Lab
the woman “engaged in acts of prostitution”… with other scientists from the Air Force Research Laboratory, the warrant says. One,… paid the woman “approximately $20K a year to clean his residence in the nude and then perform oral sex on him,” according to the warrant.  
two weeks before Roy was set to fire her, the woman told Roy she was resigning to take a job at Spectral Energies’ main competitor, Innovative Scientific Solutions Incorporated (ISSI), the warrant says.  
They [the investigators] also reviewed the spreadsheet [of sex workers] Gord previously revealed to Roy, according to the warrant.  
“Many of the 27 women listed on the Excel document were foreign nationals from countries considered U.S. National Security concerns,” it states.  
This lady is an absolute legend.

            How an Unqualified Sex Worker Allegedly Infiltrated Air Force Research Lab at Wright-Patterson AFB
            When the scheme fell apart, senior research scientist Dr. James Gord threatened to kill the woman’s supervisor and himself, according to a search warrant.

-
Deborah Haynes @haynesdeborah
NEW: The @RoyalAirForce has halted flights in and out of its largest air base in the UK because the “runway has melted” in the hot weather, according to a military source.  
The decision to shut the runway at RAF Brize Norton was taken on Monday morning, @SkyNews understands. 1/2:21 PM ∙ Jul 18, 2022
2,672Likes1,174Retweets
-
Félix Aimé @felixaime
🛰️ For those (still) interested by the KA-SAT event which occured on the Feb. 27. It seems (*) that the attackers simply launched their payload from the modems' SSH accesses which were open to anyone on the SDWAN. (1/3)12:42 PM ∙ Jul 18, 2022
87Likes27Retweets
-
Justin Rohrlich @JustinRohrlich
The woman “did not understand how to use basic word processing software,” and “struggled to formulate coherent emails,” says the warrant, but Dr. Gord tapped her anyway to chair a panel for photonics researchers designing turbines, scramjets, and rockets.

thedailybeast.comHow an Unqualified Sex Worker Allegedly Infiltrated a Top Air Force LabWhen the scheme fell apart, senior research scientist Dr. James Gord threatened to kill the woman’s supervisor and himself, according to a search warrant.
10:30 PM ∙ Jul 18, 2022
154Likes50Retweets-
This 40yr old Polish animation short is… I guess you just have to watch it.

            Agrotechnology - 35mm.online
            An erotic episode about farming in the world of robots. Cuttings do not want to undergo mechanical stimulation. A space inspector is the only one who can change their opinion.

-
Sybil Attacks on Airdrops

            Sybil Attacks on Airdrops
            Sybil attacks occur when networked systems get gamed by a small number of accounts, creating multiple identities.

Proof-of-stake and Proof-of-work mechanisms on blockchains provide Sybil resistance against attacks. These mechanisms prevent a single user from spinning up a large number of nodes to influence the network (economic costs).

There's a different flavor of Sybil attacks that occur on blockchains now. Many chains or web3 applications have used airdrops as a growth mechanism (whether or

-
Lukasz Olejnik @lukOlejnikNew UK data protection is here. Deviates from #GDPR/#ePrivacy. Short summary of important points. First, what when "person is identifiable" means is explained. This is interesting (will be welcome by business due to stability as "identifiable" is general). publications.parliament.uk/pa/bills/cbill… 
7:19 AM ∙ Jul 19, 2022
45Likes26Retweets
-
Rory Cormac @RoryCormac
A long-term “seeding operation”, rather than trying to recruit leaders or cabinet ministers. 

bbc.co.ukWhy did MI5 name Christine Lee as an ‘agent of influence’?UK security services described Christine Lee as an “agent of influence” working for the Chinese Communist Party.
7:27 AM ∙ Jul 19, 2022
20Likes6Retweets-
Lee Richards @arcreuk
Interesting 1985 news report from @BBCArchive about the loan of RAF aerial photographs to Germany to aid detection of unexploded WW2 bombs:  discover.bbcrewind.co.ukRewindWhat will you find? Explore thousands of recent archive clips from around the UK.6:57 AM ∙ Jul 19, 2022
8Likes3Retweets
-
Juliano Rizzo @julianorChip Red Pill : youtube.com/watch?v=V1nJeV… 
12:29 PM ∙ Jul 19, 2022
10Likes5Retweets
Maxim Goryachy @h0t_maxToday we've published Intel Microcode decryptor! It gives you an amazing opportunity for researching x86 platforms. You can understand how Intel mitigated spectre vulnerability, explore the implementation of Intel TXT, SGX,VT-x technologies! Enjoy it! github.com/chip-red-pill/… 
10:13 PM ∙ Jul 18, 2022
1,498Likes506Retweets
-
Meanwhile in Canada @MeanwhileinCana
Every bunny was kung fu fighting 
5:17 PM ∙ Jul 17, 2022
50,242Likes7,686Retweets
-
Jueni Duyên Trần @juenitranAs a (typically) quant researcher, I never thought I'd ever get to publish a theory paper, let alone one where I'd be using the word "bullshit" 63 times. But here we are. My latest article on self-presentation in online news reposting published with IJoC: bit.ly/3cbC7Eq 
4:18 AM ∙ Jul 14, 2022
15Likes4Retweets
-
SATAn: Air-Gap Exfiltration Attack via Radio Signals From SATA Cables
Although air-gap computers have no wireless connectivity, we show that attackers can use the SATA cable as a wireless antenna to transfer radio signals at the 6 GHz frequency band.  

            [2207.07413] SATAn: Air-Gap Exfiltration Attack via Radio Signals From SATA Cables
            This paper introduces a new type of attack on isolated, air-gapped workstations. Although air-gap computers have no wireless connectivity, we show that attackers can use the SATA cable as a wireless antenna to transfer radio signals at the 6 GHz frequency band. The Serial ATA (SATA) is a bus interface widely used in modern computers and connects the host bus to mass storage devices such as hard disk drives, optical drives, and solid-state drives. The prevalence of the SATA interface makes this attack highly available to attackers in a wide range of computer systems and IT environments. We discuss related work on this topic and provide technical background. We show the design of the transmitter and receiver and present the implementation of these components. We also demonstrate the attack on different computers and provide the evaluation. The results show that attackers can use the SATA cable to transfer a brief amount of sensitive information from highly secured, air-gap computers wirelessly to a nearby receiver. Furthermore, we show that the attack can operate from user mode, is effective even from inside a Virtual Machine (VM), and can successfully work with other running workloads in the background. Finally, we discuss defense and mitigation techniques for this new air-gap attack.

-
Busting browser fails: What attackers see when they hack your employees’ browser - Detectify Blog

            What Attackers See When Hacking Browsers - Blog Detectify
            David Jacoby outlines why a browser is so vital in the cybercrime ecosystem and what CISOs can do to protect employees against browser hacks

-
Gal Diskin @gal_diskin
New security research: #PassBleed: How to get @okta *master passwords* in *clear text* for *all employees* and several other important findings
Why care? Because compromise in your IdP is *game over* for your security

A meta thread - Plz RT for reach
#identitysecurity
1:33 PM ∙ Jul 19, 2022