June 1, 2024
June 1, 2024
I’m not freaking out that the year is half over, you’re freaking out!
Microsoft told media outlets a hacker cannot exfiltrate Copilot+ Recall activity remotely.
— Kevin Beaumont (@GossiTheDog) May 30, 2024
Reality: how do you think hackers will exfiltrate this plain text database of everything the user has ever viewed on their PC? Very easily, I have it automated.
HT detective pic.twitter.com/Njv2C9myxQ
Previously on Dragon Ball Z: Law enforcement agents seized the BreachForum backend and placed a 'this site has been seized' sticker on the BreachForum landing page. However, shortly after the takedown, BreachForum quickly returned online.
— vx-underground (@vxunderground) May 30, 2024
Fast forward to today: BreachForum… pic.twitter.com/fpo7cVCFho
Acts of physical and cyber sabotage on the rise in Poland. A series of GRU-commissioned arson attacks targeted a restaurant in Gdynia (Molotov cocktail used), a pallet warehouse near Warsaw, a paint factory in Wroclaw, and a construction center in Gdansk. Security Services… pic.twitter.com/vWkvjsl9Eh
— Lukasz Olejnik (@lukOlejnik) June 1, 2024
This is a wild ride. Snowflake breached and scraped of over 400 companies data.
— Matt Johansen (@mattjay) May 31, 2024
Ticketmaster and Santander leaks this week seem to be tied to this.@vxunderground and @GossiTheDog putting out great content on it. pic.twitter.com/ehXI5Xmzbg
A spokesperson for Ticketmaster told TechCrunch that its stolen database was hosted on Snowflake, a Boston-based cloud storage and analytics company. https://t.co/TqOe4EoQBc
— Kevin Beaumont (@GossiTheDog) June 1, 2024
— Kevin Beaumont (@GossiTheDog) June 1, 2024
— Kevin Beaumont (@GossiTheDog) June 1, 2024
🦀 Crate release for disassembling Dalvik bytecode!
— Margin Research (@Margin_Research) May 30, 2024
🔭 APK decompilers fell short, so we wrote this library to create a graphview with accurate exception handling and control flow semantics.https://t.co/fx4tr33vI2
One peculiar thing about VR is that there is almost no books/materials/etc. you can read while, say, waiting for somebody in a cafe; all information is either irrelevant, useless or requires concentration to process, and git activity is one you can consume without much effort. https://t.co/QdNj4lDiXr
— dunadan (@udunadan) June 1, 2024
It's also important to add to this recap of the drastic climate costs of developing/deploying AI the fact that a big profit center for large AI corps is licensing their AI to the oil and gas industry, to expedite the process of discovery and extraction of fossil fuels. https://t.co/FI9OCOvDvu
— Meredith Whittaker (@mer__edith) June 1, 2024
Reverse engineering and exploiting embedded devices (Lexmark CX33 and Synology BC500)
— 0xor0ne (@0xor0ne) June 1, 2024
(Pwn2Own 2023, @compasssecurity)
P. 1: https://t.co/Bu9iEa4yVF
P. 2: https://t.co/870A8lOOzB
P. 3: https://t.co/tgoGTjZ25v
P. 4: https://t.co/wzS4OayghM
P. 5: https://t.co/FdxkHVohRI#pwn2own pic.twitter.com/HD6z0FgWVb
So CVE-2024-24919 joined the party of the remote access VPN vulnerabilities exploited by threat actors. Updated list (so far): https://t.co/mXyufpkQfA pic.twitter.com/jXBR8udi8f
— Paolo Passeri (@ppasseri@infosec.exchange) (@paulsparrows) May 30, 2024
stay sharp on checkpoint CVE-2024-24919 (and likely subsequent checkpoint CVEs). seeing in-the-wild exploitation in @GreyNoiseIO now. https://t.co/Er4ezRfBzM pic.twitter.com/c5xecuKbLG
— Andrew Morris (@Andrew___Morris) May 31, 2024
This is just entry level HUMINT style manipulation. Huge amounts of research that supports an internally consistent convincing narrative.
🚨 Just received a phone call from the Hillsborough County Sheriff's Office this afternoon. Officer reads off his badge number & proceeds to ask if this is [my name] located at [my address] w/ SSN# [reads last 4 of my social]. Fuck. Was walking through Costco as I took the call.
— Joey Rosati | SMB + Hard $ + VC (@rosaticorp) May 31, 2024
Thread by @rosaticorp on Thread Reader App – Thread Reader App
@rosaticorp: 🚨 Just received a phone call from the Hillsborough County Sheriff's Office this afternoon. Officer reads off his badge number & proceeds to ask if this is [my name] located at [my address] w/ SSN#...…
have you ever seen anything like this before? https://t.co/dOBYYywfPv pic.twitter.com/6q79UJ3Waj
— orenji ✨bg artist (@orenjikunArt) May 31, 2024
A group of ducks in Portugal witnessed the meteor while on Twitch pic.twitter.com/DL5YEr9lf9
— Dexerto (@Dexerto) May 21, 2024
One of the best Cybersecurity memes I've ever watched. 🤣 pic.twitter.com/C18BBKOPd8
— Dark Web Informer (@DarkWebInformer) May 31, 2024
The CIB officers believed that the call center gangs mainly operate in neighboring countries, but they rely on internet connections from Thailand.https://t.co/gyOQH3qnQu
— Khaosod English (@KhaosodEnglish) June 1, 2024
#callcenter #CyberCrime #thailand
📣 The junta in Burma is attempting to carry out a digital coup by establishing a firewall with the assistance of the CCP regime.
— Robert Minn Khant (@minn_robert) May 31, 2024
For the past two days, civilians have been experiencing difficulties accessing the internet.
(1/2)#WhatsHappeningInMyanmar #DigitalCoup
Incredible Thai restaurant in western Ireland pic.twitter.com/osFUPkhRql
— Drake Motel (@drakemotel) May 30, 2024