June 1, 2024

                            June 1, 2024

                June 1, 2024

                        June 1, 2024
I’m not freaking out that the year is half over, you’re freaking out!
Microsoft told media outlets a hacker cannot exfiltrate Copilot+ Recall activity remotely.

Reality: how do you think hackers will exfiltrate this plain text database of everything the user has ever viewed on their PC?  Very easily, I have it automated.

HT detective pic.twitter.com/Njv2C9myxQ
— Kevin Beaumont (@GossiTheDog) May 30, 2024

Previously on Dragon Ball Z: Law enforcement agents seized the BreachForum backend and placed a 'this site has been seized' sticker on the BreachForum landing page. However, shortly after the takedown, BreachForum quickly returned online.

Fast forward to today: BreachForum… pic.twitter.com/fpo7cVCFho
— vx-underground (@vxunderground) May 30, 2024

Acts of physical and cyber sabotage on the rise in Poland. A series of GRU-commissioned arson attacks targeted a restaurant in Gdynia (Molotov cocktail used), a pallet warehouse near Warsaw, a paint factory in Wroclaw, and a construction center in Gdansk. Security Services… pic.twitter.com/vWkvjsl9Eh
— Lukasz Olejnik (@lukOlejnik) June 1, 2024

This is a wild ride. Snowflake breached and scraped of over 400 companies data.

Ticketmaster and Santander leaks this week seem to be tied to this.@vxunderground and @GossiTheDog putting out great content on it. pic.twitter.com/ehXI5Xmzbg
— Matt Johansen (@mattjay) May 31, 2024

A spokesperson for Ticketmaster told TechCrunch that its stolen database was hosted on Snowflake, a Boston-based cloud storage and analytics company. https://t.co/TqOe4EoQBc
— Kevin Beaumont (@GossiTheDog) June 1, 2024

pic.twitter.com/CblByo9Ev9
— Kevin Beaumont (@GossiTheDog) June 1, 2024

pic.twitter.com/JTBeJTqMZy
— Kevin Beaumont (@GossiTheDog) June 1, 2024

🦀 Crate release for disassembling Dalvik bytecode!

🔭 APK decompilers fell short, so we wrote this library to create a graphview with accurate exception handling and control flow semantics.https://t.co/fx4tr33vI2
— Margin Research (@Margin_Research) May 30, 2024

One peculiar thing about VR is that there is almost no books/materials/etc. you can read while, say, waiting for somebody in a cafe; all information is either irrelevant, useless or requires concentration to process, and git activity is one you can consume without much effort. https://t.co/QdNj4lDiXr
— dunadan (@udunadan) June 1, 2024

It's also important to add to this recap of the drastic climate costs of developing/deploying AI the fact that a big profit center for large AI corps is licensing their AI to the oil and gas industry, to expedite the process of discovery and extraction of fossil fuels. https://t.co/FI9OCOvDvu
— Meredith Whittaker (@mer__edith) June 1, 2024

Reverse engineering and exploiting embedded devices (Lexmark CX33 and Synology BC500)

(Pwn2Own 2023, @compasssecurity)

P. 1: https://t.co/Bu9iEa4yVF

P. 2: https://t.co/870A8lOOzB

P. 3: https://t.co/tgoGTjZ25v

P. 4: https://t.co/wzS4OayghM

P. 5: https://t.co/FdxkHVohRI#pwn2own pic.twitter.com/HD6z0FgWVb
— 0xor0ne (@0xor0ne) June 1, 2024

So CVE-2024-24919 joined the party of the remote access VPN  vulnerabilities exploited by threat actors. Updated list (so far): https://t.co/mXyufpkQfA pic.twitter.com/jXBR8udi8f
— Paolo Passeri (@ppasseri@infosec.exchange) (@paulsparrows) May 30, 2024

stay sharp on checkpoint CVE-2024-24919 (and likely subsequent checkpoint CVEs). seeing in-the-wild exploitation in @GreyNoiseIO now. https://t.co/Er4ezRfBzM pic.twitter.com/c5xecuKbLG
— Andrew Morris (@Andrew___Morris) May 31, 2024

This is just entry level HUMINT style manipulation. Huge amounts of research that supports an internally consistent convincing narrative. 
🚨 Just received a phone call from the Hillsborough County Sheriff's Office this afternoon. Officer reads off his badge number & proceeds to ask if this is [my name] located at [my address] w/ SSN# [reads last 4 of my social]. Fuck. Was walking through Costco as I took the call.
— Joey Rosati | SMB + Hard $ + VC (@rosaticorp) May 31, 2024

Thread by @rosaticorp on Thread Reader App – Thread Reader App
@rosaticorp: 🚨 Just received a phone call from the Hillsborough County Sheriff's Office this afternoon. Officer reads off his badge number & proceeds to ask if this is [my name] located at [my address] w/ SSN#...…

have you ever seen anything like this before? https://t.co/dOBYYywfPv pic.twitter.com/6q79UJ3Waj
— orenji ✨bg artist (@orenjikunArt) May 31, 2024

A group of ducks in Portugal witnessed the meteor while on Twitch pic.twitter.com/DL5YEr9lf9
— Dexerto (@Dexerto) May 21, 2024

One of the best Cybersecurity memes I've ever watched. 🤣 pic.twitter.com/C18BBKOPd8
— Dark Web Informer (@DarkWebInformer) May 31, 2024

The CIB officers believed that the call center gangs mainly operate in neighboring countries, but they rely on internet connections from Thailand.https://t.co/gyOQH3qnQu 

#callcenter #CyberCrime #thailand
— Khaosod English (@KhaosodEnglish) June 1, 2024

📣 The junta in Burma is attempting to carry out a digital coup by establishing a firewall with the assistance of the CCP regime.

For the past two days, civilians have been experiencing difficulties accessing the internet. 

(1/2)#WhatsHappeningInMyanmar #DigitalCoup
— Robert Minn Khant (@minn_robert) May 31, 2024

Incredible Thai restaurant in western Ireland pic.twitter.com/osFUPkhRql
— Drake Motel (@drakemotel) May 30, 2024

                            Don't miss what's next. Subscribe to the grugq's newsletter: