March 12, 2023

                            March 12, 2023

                March 12, 2023

-
Fidelius Schmid @FideliusSchmid
From the Ritz Hotel in Moscow to a brothel in Berlin. The mole, a diamonds trader and the husband of one of Russia‘s richest women - our new story on the Russian spy inside the BND ⁦@derspiegel⁩ by ⁦@romanlehberger⁩ ⁦@christogrozev⁩ … spiegel.deMoscow Mole: The Story Behind Germany’s Embarrassing Intelligence LeakFrom the shores of a lake near Munich to a brothel in the German capital city and a brasserie in Moscow: It is one of the biggest intelligence scandals in Germany’s postwar history. How was Russia able to pilfer information about Ukraine from Berlin’s most accomplished spy organization?9:33 PM ∙ Mar 10, 2023
1,188Likes418Retweets
-
Ken Shirriff @kenshirriff
Intel introduced the 8086 microprocessor in 1978 and it still has a huge influence through the modern x86 architecture used today. This 16-bit processor contains a bunch of registers, some of them hidden. I reverse-engineered the 5-bit code that it uses to select registers. 🧵 
5:37 PM ∙ Mar 11, 2023
360Likes57Retweets
-
Ken Shirriff @kenshirriff
The Intel 8086 processor (1978) has a complex instruction set with instructions from 1 to 6 bytes long. How does the processor determine the instruction length? It turns out that there is no explicit length. A ROM says if 1 or 2 bytes, then microcode fetches bytes until done. 🧵 
5:56 PM ∙ Feb 28, 2023
532Likes89Retweets
-
Dr. Dan Lomas @Sandbagger_01
wsj.comHow Beijing Boxed America Out of the South China SeaBeijing incrementally built up military outposts, with little pushback from the U.S., and has emerged as a power in the strategic waters through which trillions of dollars in trade passes6:24 PM ∙ Mar 11, 2023
5Likes7Retweets
-
Shannon Vavra @shanvav
NEW: Russia is running a "very intense" influence operation meant to destabilize the current Moldova government, with the apparent aim of installing a Russia-friendly government, U.S. and Moldovan officials told me. Dive in behind the scene @thedailybeast thedailybeast.comRussia’s Covert Operation for ‘the Next Ukraine’ Has Already BegunA major Russian influence operation to destabilize the Moldovan government is underway, U.S. and Moldovan officials told The Daily Beast.5:12 PM ∙ Mar 11, 2023
204Likes146Retweets
-
Runa Sandvik @runasand
The UK government recently told the BBC that its Online Safety Bill does not represent a ban on end-to-end encryption. So I fact-checked it. untidy.substack.comFact Check: the UK and its Online Safety BillIf you have followed technology news for a while, you will have heard of the Online Safety Bill in the UK. This bill, framed as “a new set of laws to protect children and adults online,” will make “social media companies more responsible” for what we see via their platforms.10:53 AM ∙ Mar 12, 2023
32Likes26Retweets
-
raptor@infosec.exchange @0xdeaThese #Phrack articles by @5aelo are the best primers on attacking #JavaScript engines

A case study of JavaScriptCore and CVE-2016-4622
phrack.org/issues/70/3.ht…

#Exploiting Logic #Bugs in JavaScript JIT Engines
phrack.org/issues/70/9.ht… 
9:12 AM ∙ Mar 12, 2023
32Likes2Retweets
-
Dr. Bilyana Lilly @BilyanaLillyDisinformation combined with a hack back to the source: Russians told to rush to nuclear bomb shelters, take radiation pills and put on gas masks after hackers take over state media. Clever, very clever. telegraph.co.uk/world-news/202… #disinformation #Russia #hack
telegraph.co.ukRussians told to rush to nuclear bomb shelters after hackers take over state mediaViewers told to take radiation pills and put on gas masks after cyber attackers interrupt broadcast with fake warning of atomic strike5:49 AM ∙ Mar 12, 2023
35Likes14Retweets
-
Ollie Whitehouse @ollieatnowhere
The subtle (or not so) modification of permissions in IaaS, SaaS, Active Directory, high level objects or filesystems for persistence is an orders or magnitude problem manual signatures likely won't scale to meet.

This tradecraft by @Alh4zr3d is pain ..

reddit.comr/blueteamsec - Windows a file-less, persistent, local privilege escalation backdoor and detection approach7 votes and 0 comments so far on Reddit8:53 AM ∙ Mar 12, 2023
8Likes2Retweets
-

                            Don't miss what's next. Subscribe to the grugq's newsletter: