the grugq's newsletter

-

Twitter avatar for @bascule
Tony "Abolish ICE" Arcieri 🦀🌹 @bascule
This is epic: the creators of Rainbow signatures claimed they offered a crypto contest with a $400,000 prize for breaking them, even after a paper had been published demonstrating a breakage.

Someone took them up on their offer… groups.google.com/a/list.nist.go…

<img class="tweet-photo" src="https://pbs.substack.com/media/FXEg0zpVsAQw56F.jpg" alt="We have successfully recovered the secret key corresponding to the public key with address 84cJso7keg6SHW4vbNVbXccimCZrz7WoESXTtw12b5UsWqmm5. This address is one of the wealthiest on the chain with a balance of 9M ABC. There is only one address with a higher balance, but as it has no outgoing transactions, we don't know the public key.

The private key was recovered within a few hours of wall-clock time using a slightly tweaked version of Ward Beullens' attack software (which in turn makes use of Ruben Niederhagen's XL implementation).

The forged signature for the message "There is no pot of gold at the end of the Rainbow." (ASCII) is "TqERiKoFpkDEOEUGrq2WfH/XvTxP8dzbUxUpD1UyTUyLnVUaZcqW9IV+bTLIuamWS+XVKFcslYHLnxNcjcjnCA==" (Base64)" loading="lazy">

2:28 PM ∙ Jul 7, 2022
72Retweets

-

Twitter avatar for @cybergibbons
Cybergibbons @cybergibbons
One of my favourite physical access jobs to a datacenter involved toilets.

Let me explain.

I needed to gain access from the less-secure side of a sub basement floor to the more-secure side.

General office space to data centre.

Image
6:52 PM ∙ Jul 4, 2022
150Retweets

-

“without” (ignore the typo, this is the best take)

Twitter avatar for @tiraniddo
James Forshaw @tiraniddo
The Apple "Lockdown mode" does sound interesting. But what would really be a game changer would be system transparency so you could actually inspect your iOS device with jailbreaking it. After all how can you verify lockdown mode hasn't been tampered with?😐
3:47 PM ∙ Jul 7, 2022
9Retweets

-

Five Individuals Indicted for Crimes Related to Transnational Repression Scheme to Silence Critics of the People's Republic of China Residing in the United States

Defendants Include Federal Law Enforcement Officer and Private Investigator Who Lied to FBI Agents and Obstructed Justice

ACAB


Eastern District of New York | Five Individuals Indicted for Crimes Related to Transnational Repression Scheme to Silence Critics of the People's Republic of China Residing in the United States | United States Department of Justice

Yesterday, a grand jury returned an indictment in federal court in Brooklyn charging five defendants with various crimes pertaining to a transnational repression scheme orchestrated on behalf of the government of the People’s Republic of China (PRC). The case is assigned to the United States District Judge LaShann DeArcy Hall and the defendants’ will be arraigned at a later date.

-

Another user land rootkit. Again, people, this stuff is not impossible to detect. It fails if you use busybox to hunt for it.


OrBit: New Undetected Linux Threat Uses Unique Hijack of Execution Flow

OrBit is a new Linux malware that hijacks the execution flow, evading and gaining persistence to get remote access and steal information.

I wrote about this last month.

The Info Op
Userland Rootkits are Lame
Many people may not know this, but fifteen…twenty years ago I knew a thing or two about rootkit development. I wrote detection software for a few years as well. Back then modifying the shared libraries on the disk was also vector for userland rootkits…
Read more
10 months ago · 6 likes · the grugq

-

Twitter avatar for @razhael
Raphael Satter @razhael
I’m reading Martyn Gregory’s “Dirty Tricks,” which describes British Airways’ spy campaign against Virgin Airlines in the late 80s and early 90s. I was surprised to find that, more than three decades ago, there was also a strong cyberespionage angle.
Image
Image
2:07 AM ∙ Jul 8, 2022
29Retweets

-

Twitter avatar for @hausdorff_space
Alex Clemmer 🔥🔥🔥😅🔥🔥🔥 @hausdorff_space
A colleague tells the story about how he trained a bunch of bots on departed Etsy employees and put them in the #purgatory IRC channel. And that was fine until they learned the chatops commands and became an existential threat to etsy.com

gist.github.comMarkov Chat Bot Disaster StoryMarkov Chat Bot Disaster Story. GitHub Gist: instantly share code, notes, and snippets.
10:24 PM ∙ Jul 7, 2022
147Retweets

-

Twitter avatar for @HostileSpectrum
HostileSpectrum @HostileSpectrum
The latest Predatory Sparrow hack & leak op represents a fascinating milestone, in that it sets groundwork to justify further actions against entities that meet sanctions criteria. Providing its own evidence taken directly from the regime’s own security services networks.
2:51 AM ∙ Jul 8, 2022
1Retweet
Twitter avatar for @GonjeshkeDarand
Gonjeshke Darande @GonjeshkeDarand
Today, we are exposing for the first time, top secret documents and tens of thousands of emails from these companies on their customers and trading practices as evidence of these companies’ affiliation with the IRGC.
Link to first part of this #exposure:
mega.nz19.76 GB file on MEGA
12:48 PM ∙ Jul 7, 2022
11Retweets

-

Twitter avatar for @daphnekylee
daphne is on summer hiatus @daphnekylee
Learned a very relatable term today: “報復性熬夜” (revenge bedtime procrastination), a phenomenon in which people who don’t have much control over their daytime life refuse to sleep early in order to regain some sense of freedom during late night hours.
4:49 AM ∙ Jun 28, 2020
71,825Retweets

-

Roundup of Secure Messengers with Off-The-Grid Capabilities (Distributed/Mesh Messengers)


Roundup of Secure Messengers with Off-The-Grid Capabilities (Distributed/Mesh Messengers) | The Changelog

Amid all the conversation about Signal, and the debate over decentralization, one thing has often not been raised: all of these things require an Internet connection. “Of course,” you m…

Followup:

The Hidden Drawbacks of P2P (And a Defense of Signal)


The Hidden Drawbacks of P2P (And a Defense of Signal) | The Changelog

Not long ago, I posted a roundup of secure messengers with off-the-grid capabilities. Some conversation followed, which led me to consider some of the problems with P2P protocols. P2P and Privacy B…

-

Detecting Deepfake Video Calls Through Monitor Illumination -


Detecting Deepfake Video Calls Through Monitor Illumination - Unite.AI

A new collaboration between a researcher from the United States' National Security Agency (NSA) and the University of California at Berkeley offers a novel method for detecting deepfake content in a live video context – by observing the effect of monitor lighting on the appearance of the person at the other end of the video […]

-

Twitter avatar for @veorq
JP Aumasson @veorq
Attempt to explain ZK proofs at @EuskalHack (slides at aumasson.jp/data/talks/eus…)
Image
7:51 AM ∙ Jul 8, 2022
5Retweets

-

Twitter avatar for @ciaranmartinoxf
Ciaran Martin @ciaranmartinoxf
In this brilliant ⁦@guardian⁩ article ⁦@ProfWoodward⁩ does much more than review Channel 4’s #theundeclaredwar. He actually explains how operational cyber defence works
theguardian.com‘Some staff work behind armoured glass’: a cybersecurity expert on The Undeclared WarHow realistic is Peter Kosminsky’s Channel 4 drama about an IT attack on the UK? Very, according to one of the UK’s top digital intelligence experts
7:48 AM ∙ Jul 8, 2022
14Retweets

-

Twitter avatar for @vmanancourt
Vincent Manancourt @vmanancourt
The EU’s top court says mass surveillance is banned. Governments do it anyway. My story for POLITICO’s #LawlessEurope series.
politico.euEurope’s state of mass surveillanceThe EU’s top court says mass surveillance is banned. Governments do it anyway.
8:24 AM ∙ Jul 8, 2022
61Retweets

Don't miss what's next. Subscribe to the grugq's newsletter:
Find the grugq's newsletter elsewhere: Twitter