March 3, 2023

                        March 3, 2023

            March 3, 2023

                    “The Russians had a common crook, a thug, on their hands with an Estonian passport,” Alexander Toots, the deputy director of the Kapo, told Yahoo News. “This was too good an opportunity to pass up. So when they caught Danilov, they beat statements out of him, got him to say he was working for us. Then they tucked this ‘confession’ away for a rainy day, for when they wanted to pretend they caught a foreign agent. The FSB likes to scam their leadership and wider audience with these fake ‘spy cases’ to show they have domestic security under control. In this instance, however, they were too lazy to know or care that the guy they framed was currently sitting in our prison.”  
Michael Weiss @michaeldweissHow Russia's security service framed an Estonian prisoner as a secret agent.

'They were too lazy to know or care that the guy they framed was currently sitting in our prison.' 

news.yahoo.com/how-russias-se… 
1:13 PM ∙ Mar 2, 2023
89Likes9Retweets-
Biden cybersecurity strategy document is out.

https://www.whitehouse.gov/briefing-room/statements-releases/2023/03/02/fact-sheet-biden-harris-administration-announces-national-cybersecurity-strategy/

-
Redirection Roulette: Thousands of hijacked websites in East Asia redirecting visitors to other sites
Extensive network of malicious redirects that… seems to be adware/malvertising or something else financial

https://www.wiz.io/blog/redirection-roulette

-
Operation HORIZON: A KGB Counterintelligence Operation against the West

https://www.wilsoncenter.org/blog-post/operation-horizon-kgb-counterintelligence-operation-against-west

-
Bellingcat @bellingcat
In recent days, both Russia’s presidential spokesperson and police in Kyiv have warned of the dangers of "PMC Ryodan".

But what exactly is it, and why has panic grown about this group?

bellingcat.comPMC Ryodan: The Strange Story of Anime Teens, their Sworn Enemies and the Kremlin - bellingcatAcross Russia, Ukraine and Belarus, men in tracksuits are attacking teenage anime fans — so the police are rounding them up.12:05 AM ∙ Mar 3, 2023
510Likes175Retweets
-
David Wong @cryptodavidwWOOT >.< youtube.com/watch?v=cMAI7g… 
10:20 PM ∙ Mar 1, 2023
11Likes1Retweet
-
Dominic White 👾 @singeI really think WolframAlpha is underrated and can do much of what I want ChatGPT to do better. But it’s a much harder syntax to get right.

Longer thread here chaos.socialDominic White 🦀 (@singe@chaos.social)I’ve been playing with WolframAlpha recently after realising much of what I wanted ChatGPT to do WA can already do better. When I get it right, it’s amazingly powerful. For example, if you’ve ever tried to model mortgages with variable interest rates in excel you’ll know what a pain that is, meanwh…5:08 AM ∙ Mar 3, 2023-
bert hubert @bert_hubert
Een random generator uit het best leuke Berlijnse spy museum. De COMSEC kenner ziet gelijk dat dit apparaat een stevige doctrine vergt en dat er enorme mogelijkheden zijn tot verkeerd gebruik: 
4:00 PM ∙ Mar 1, 2023
30Likes5Retweets
Le cueilleur @LCueilleur
@electrospaces @bert_hubert It is a „harp“ or also called a „violin“. It served as a key for the agent radio codes (Organisation Gehlen). The individual numbers were generated by shaking it. In German "Zahlenwurm-Methode". Elaborate and slow.4:28 PM ∙ Mar 2, 2023
-
Lady G @gabsmashh
i have questions. 
10:04 PM ∙ Mar 2, 2023
2,262Likes318Retweets
-
Ange @angealbertini
As the PE contains a lot of unused or non-critical elements, it just makes sense to slice it down
That's that the TE format does, used in UEFI:
Piggypack on the PE toolchains, then reduce it to a small form factor.. 
6:07 AM ∙ Mar 3, 2023
57Likes11Retweets
-
Accessing the RAM of a QEMU Emulated System from another Process
$ qemu -M pc -nographic -m 512m \  
 -object memory-backend-file,id=pc.ram,size=512M,mem-path=/dev/shm/qemu-ram,share=on \  
-machine memory-backend=pc.ram \  
-smp cpus=2 -kernel ./bzImage_5.9 -drive file=./rootfs-target.img,if=ide -append "console=ttyS0 root=/dev/sda rw panic=1 earlyprintk=serial,ttyS0,115200"  
This command will make the RAM available via the /dev/sim/qemu-ram file. Open it and mmap() it and you can RW the qemu RAM directly. Nice!

https://blog.reds.ch/?p=1379

-

Don't miss what's next. Subscribe to the grugq's newsletter:

Start the conversation: