May 17, 2022

                May 17, 2022

            May 17, 2022

            Someone just noticed that Kaspersky is Russian..
CNAS @CNASdc
The authorities are "really the only tool that we have to deal with the threat posed by Kaspersky on an economy-wide commercial basis, given our generally open market," @EmilyKilcrease1 tells @Reuters. Read more: cnas.orgUkraine war spurs U.S. to ramp up security probe of software maker KasperskyDeveloping strong, pragmatic and principled national security and defense policies.7:50 PM ∙ May 13, 2022
4Likes2Retweets

Max Fras @maxfras

Ann Linde @AnnLinde
The Swedish government has now  decided that 🇸🇪 should apply for membership in NATO.2:12 PM ∙ May 16, 2022
35Likes4Retweets

An interesting indictment.
Alexander Martin @AlexMartinAn interesting indictment. Venezuelan cardiologist, 55, charged with designing ransomware, sharing profits with cyber criminals, and bragging about his malware being used by Iranian state-sponsored groups.

justice.gov/usao-edny/pr/h…
7:36 PM ∙ May 16, 2022
6Likes1Retweet

The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

Alexander Clarkson @APHClarkson
One for @ItsBorys 
8:15 PM ∙ May 16, 2022
1,852Likes294Retweets

Iconic.
Illia Ponomarenko 🇺🇦 @IAPonomarenko
The Azovstal redemption.
By @Kozatsky_D 
10:33 AM ∙ May 16, 2022
11,229Likes1,474Retweets

The losses from this event are staggering. Technology puts it into perspective. 
Mathieu Bourdin @Arka_Voltchek
Une fois les photos assemblées, ça rend le massacre plus visible, et impressionnant. La violence des combats lors de ce franchissement raté par les russes a été décrite comme "inouïe"...

Je veux bien le croire... 
6:52 PM ∙ May 15, 2022
2,886Likes720Retweets

Seems very cool
Thomas Graf @tgraf__Today, we are open sourcing Tetragon after several years of development. eBPF-based Security Observability & Runtime Enforcement.

isovalent.comTetragon - eBPF-based Security Observability & Runtime EnforcementIntroduction to Tetragon - eBPF-based Security Observability & Runtime Enforcement3:00 PM ∙ May 16, 2022
617Likes206RetweetsRepo:

https://github.com/cilium/tetragon

Theoretical malware running at the same level as “find my iPhone” 

https://arstechnica.com/information-technology/2022/05/researchers-devise-iphone-malware-that-runs-even-when-device-is-turned-off/

AI can recognise race based on an X-ray, and scientists has no idea how. 

https://www.thelancet.com/journals/landig/article/PIIS2589-7500(22)00063-2/fulltext

Great assessment.
Francis Scarr @francis_scarr
In an extremely rare moment of candour on Russian state TV today, defence columnist Mikhail Khodaryonok gave a damning assessment of Russia's war in Ukraine and his country's international isolation. It's fairly long but worth your time so I've added subtitles. 
8:09 PM ∙ May 16, 2022
67,273Likes19,503Retweets
ITW exploited bug. 
Maddie Stone @maddiestone
✨ New RCA for CVE-2022-22675 by @natashenka! 

CVE-2022-22675 is an iOS/macOS in-the-wild 0-day in AppleAVD that was patched in March #itw0days

googleprojectzero.github.ioCVE-2022-22675: AppleAVD Overflow in AVC_RBSP::parseHRDInformation about 0-days exploited in-the-wild!12:29 AM ∙ May 17, 2022
95Likes39Retweets
Microsoft is doing a heckuva job on this one…
an0n @an0n_r0CVE-2022-26923 ("Certifried") combined with KrbRelayUp: domain user to domain admin without the requirement for adding/owning previously a computer account. Step-by-step write-up of the attack in a pure Windows environment: gist.github.com/tothi/f89a3712… 
11:52 PM ∙ May 16, 2022
492Likes172Retweets

Jan Lemnitzer @JanLemnitzer
Some interesting figures in the @HiscoxDE report on cybercrime in Germany, key insights:
1) Ransomware numbers are still rising: they received almost twice as many reports of companies hit in 2021 than 2020.
2) Almost half of the ransomed German companies paid up. @thegrugq 1/21:10 PM ∙ May 17, 2022
4Likes4Retweets
Marcus Weisgerber @MarcusReports
JUST IN: The U.S. Air Force says it successfully fired a hypersonic weapon. A B-52 bomber launched the Lockheed Martin-made Air-launched Rapid Response Weapon. The ARRW missile flew at more than five-times the speed of sound 
12:08 AM ∙ May 17, 2022
2,141Likes526Retweets
The iOS browser core is gonna be replaceable. ? Hello more attack surface!

https://www.theregister.com/2022/04/26/apple_ios_browser/

badidea 🪐 @0xabad1dea
science has no explanation for why some programming languages are harder than others yet none are easier than others 
Eleftheria Batsou @BatsouElef
What’s the easiest programming language in your opinion?6:40 AM ∙ May 17, 2022
163Likes32Retweets
DPRK infiltration is at it again.
schmackofant.eth @schmackofant
We just had a 🇰🇵 North Korean scammer/hacker apply as a tech contributor for @vita_dao yesterday. 

The whole thing felt very surreal:
7:58 AM ∙ May 17, 2022
79Likes24Retweets

A read on terrorism. I am very unsure what I think about it. 
Seamus Hughes @SeamusHughes
“My friends in the terrorism-analysis community engaged in preemptive scolding as news of the manifesto came out” by the always must read ⁦@gcaw⁩  theatlantic.comWhy Tucker Carlson Should Want the Buffalo Manifesto Made PublicI found on nearly every page of the manifesto evidence of profound moral deformity.12:18 AM ∙ May 17, 2022
16Likes5Retweets
Thank you for reading The Info Op. This post is public so feel free to share it.
Share

                Don't miss what's next. Subscribe to the grugq's newsletter: