March 9, 2023

                            March 9, 2023

                March 9, 2023

My Life As Dad @milifeasdad
Wife: *Gives me her password to log into one of her accounts*

Me: Nice work with picking a random password.

Wife: It’s our anniversary.3:06 PM ∙ Feb 22, 2023
651Likes119Retweets
-
Risky Business News
Risky Biz News: Canada's tax revenue agency tries to ToS itself out of hacking liability
This newsletter is brought to you by Airlock Digital, Proofpoint, runZero, and Thinkst Canary. You can subscribe to an audio version of this newsletter as a podcast by searching for "Risky Business News" in your podcatcher or subscribing via this RSS feed…
Read more
a month ago · Catalin Cimpanu
-
Berwyn Choobs @sabatonfan69
My dealer: got some straight gas 🔥😛 this strain is called “the fall of Rome” 😳 you’ll be zonked out of your gourd 💯 

Me: yeah whatever. I don’t feel shit.

5 minutes later: dude I swear I just saw some Gauls in the forest 

My buddy Phillip pacing: the senate is lying to us10:07 PM ∙ Mar 8, 2023
24,279Likes4,414Retweets
-
Pietro Borrello @borrello_pietro
I'm super happy to share that our work "CustomProcessingUnit: Reverse Engineering and Customization of Intel Microcode" has been accepted at #WOOT23!  🎉
We extend our #BHUSA work to show how microcode tracing and patching can be useful to improve CPU performance and security 👀 
7:27 PM ∙ Mar 8, 2023
156Likes48Retweets
Pietro Borrello @borrello_pietroA preprint version of the paper is available at: pietroborrello.com/publication/wo…
And it is all open source! 
github.com/pietroborrello…

Amazing collaboration with @cat_easdon @marv0x90 Roland Czerny and @misc0110 😁
github.comGitHub - pietroborrello/CustomProcessingUnit: The first dynamic analysis framework for CPU microcodeThe first dynamic analysis framework for CPU microcode - GitHub - pietroborrello/CustomProcessingUnit: The first dynamic analysis framework for CPU microcode7:27 PM ∙ Mar 8, 2023
16Likes8Retweets
-
bunnie @bunniestudiosFound a method to see inside some chips, without having to unmount or destroy the chips.

Best part - the method only relies on lightly modded off-the-shelf cameras and lenses.

Read more at bunniestudios.com/blog/?p=6712 
1:22 PM ∙ Mar 8, 2023
839Likes244Retweets
-
hackerfantastic.crypto @hackerfantastic
... sounds like a terrible idea? Disclose.tv @disclosetvNEW - Scientists have revived a "zombie" virus that spent 48,500 years frozen in permafrost "to better understand the risks" it poses for animals and humans.

https://t.co/ZirVCUGXhs10:51 PM ∙ Mar 8, 2023
31Likes8Retweets-
James Colley @JamColley
Feels like you’ve tripped up on the first hurdle here 
3:19 AM ∙ Mar 2, 2023
42,776Likes3,577Retweets
-
Lukasz Olejnik (@LukaszOlejnik@Mastodon.Social) @lukOlejnik
Goes beyond 'government systems'. Includes NIS-defined "critical information infrastructure, information systems of essential services and important information systems", so private companies (+employees). "necessary to consider the
non-technical aspects of the security" 
Lukasz Olejnik (@LukaszOlejnik@Mastodon.Social) @lukOlejnik
TikTok as a security threat. The Czech service  for cybersecurity and information security warns against TikTok. The risk is classified as HIGH, and "very likely". It is a legal classification with respect to  cybersecurity laws. Can't be ignored. https://t.co/opYZBQRQrt https://t.co/YKJfbtaTsk8:34 AM ∙ Mar 9, 2023
-
I’ve been reading some Russian papers on the theory of information conflict (the broader category into which they slot cyber.) I asked my friend to Gehlen me track down some titles and his response was, “why bother? Everything they write is crap it’s bullshit. Don’t waste your time.”
Well, I reasoned, that can’t be true for *everything*… right?
So far I’m 0 for 4, but maybe if I can force myself to read a fifth that one will turn out to be worth the time.
Anyway, I’m not linking to documents on Russian information conflict theory and doctrine because they are all universally terrible. at this point my write up might just be on the problems with Russian information warfare papers.
-
Content Moderation & Fraud Detection - Patterns in Industry

https://eugeneyan.com/writing/content-moderation/

-
The FBI Just Admitted It Bought US Location Data

https://www.wired.com/story/fbi-purchase-location-data-wray-senate/

-
The privacy loophole in your doorbell
Police were investigating his neighbor. A judge gave officers access to all his security-camera footage, including inside his home.

https://www.politico.com/news/2023/03/07/privacy-loophole-ring-doorbell-00084979

                            Don't miss what's next. Subscribe to the grugq's newsletter: