November 5, 2022

                November 5, 2022

            November 5, 2022

Spy Blog 🇬🇧 @spyblog
#Qatar #Potemkin #WorldCup
"Fans paid to be ‘spies’ at World Cup "
Free flights, apartments £60 a day etc. 
Expected to sing and chant and wave flags during the opening ceremony.

George Mann 🫧⚒️🫧 @sgfmann
Times Sport: Fans paid to be ‘spies’ at World Cup #TomorrowsPapersToday https://t.co/TGglgUzyjV12:32 AM ∙ Nov 4, 2022
26Likes16Retweets
-
The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

Dr Kate Compton #BotGirlSummer @GalaxyKate
Shaka, when Twitter fell.11:14 AM ∙ Nov 4, 2022
146Likes35Retweets
TheDanRing @TheDanRing1
@GalaxyKate @osamadorias Musk, his purse wide open11:32 AM ∙ Nov 4, 2022
26Likes6Retweets
-
Brad Smith @BradSmi
Today with @FedorovMykhailo we're announcing we will extend tech support free of charge for Ukraine through 2023. This ensures gov’t, critical infrastructure, and other sectors in Ukraine can continue to serve citizens through the Microsoft Cloud. blogs.microsoft.comExtending our vital technology support for Ukraine - Microsoft On the IssuesToday, we are announcing that Microsoft will extend technology support free of charge for Ukraine throughout calendar year 2023. This commits our company to providing additional technology aid valued at roughly $100 million, which will ensure that government agencies, critical infrastructure and oth…10:22 AM ∙ Nov 3, 2022
391Likes103Retweets
-
Xeno Kovah @XenoKovah
“No person ever audits the same code twice. For it is not the same code, and you are not the same person.”

(In response to accidentally checking out a slightly older version of code for a vuln, but the older version didn’t have the vuln, it was added in a newer version…)2:04 PM ∙ Nov 4, 2022
77Likes25Retweets
-
Maddie Stone @maddiestoneA detailed analysis of a Samsung in-the-wild exploit, attributed by TAG to a commercial surveillance vendor. All 3 bugs were 0-day at the time of the discovery of the sample. 1/3

googleprojectzero.blogspot.com/2022/11/a-very… 
3:50 PM ∙ Nov 4, 2022
242Likes119Retweets
-
Pierre H. 🔥🌸 @pedantcoder
macOS 13 / iOS 16 OSS drop is out! github.comGitHub - apple-oss-distributions/xnu at xnu-8792.41.9Contribute to apple-oss-distributions/xnu development by creating an account on GitHub.6:27 AM ∙ Nov 4, 2022
109Likes32Retweets
-
Natalie Haynes @officialnhaynes
You know what, British Museum cataloguer? Maybe this artist was doing their best. Maybe it was their first go at dolphins. Maybe they've never even SEEN a dolphin up close. Maybe painting dolphins onto a pot is harder than it looks. God, everyone's a critic. 
11:12 AM ∙ Nov 4, 2022
2,410Likes236Retweets
-
Byron Wan @Byron_Wan🚨 Daniel Duggan, the former US military pilot recently arrested in Australia, listed the same Beijing address as Stephen Su aka Su Bin, a 🇨🇳 businessman jailed in the US for a hacking case involving theft of US military aircraft designs by 🇨🇳 military. reuters.com/world/exclusiv…
reuters.comExclusive: Former U.S. military pilot arrested in Australia listed same Beijing address as Chinese hackerA former U.S. military pilot arrested in Australia and facing likely extradition to the United States on undisclosed charges listed the same Beijing address as a Chinese businessman jailed in the United States for conspiring to hack U.S. defence contractors’ computers, documents show.8:46 PM ∙ Nov 4, 2022
110Likes71Retweets
-
Cristin Flynn Goodwin @CristinGoodwin
The 2022 Microsoft Digital Defense Report is now live. #NationStates are coupling cyber and physical attacks and #influenceoperations are on the rise, while criminal actors are increasing speed and volume. Link to report in the blog post below. blogs.microsoft.comNation-state cyberattacks become more brazen as authoritarian leaders ramp up aggression - Microsoft On the IssuesOn February 23, 2022, the cybersecurity world entered a new age, the age of the hybrid war, as Russia launched both physical and digital attacks against Ukraine. This year’s Microsoft Digital Defense Report provides new detail on these attacks and on increasing cyber aggression coming from authorita…2:11 PM ∙ Nov 4, 2022
48Likes27Retweets
-
Hex-Rays SA @HexRaysSAWe’re happy to announce our new blog series called “Plugin Focus” where authors of some of the most useful plugins will introduce them and provide some valuable insights. We start with HRDevHelper 🌐 hex-rays.com/blog/plugin-fo…

#PluginFocus #IDAPro #IDAPython #IDAPlugin 
4:51 PM ∙ Nov 4, 2022
37Likes14Retweets
-
raptor @0xdea
A collection of source code of different UNIX and Windows flavors, plus some other gems.

github.comArquivothecaWe do a little archiving. Arquivotheca has 26 repositories available. Follow their code on GitHub.8:44 AM ∙ Nov 5, 2022
14Likes4Retweets
-
Jesse D'Aguanno @0x30n
Want to get into || improve in vulnerability research & exploit dev? My suggestions:
1.Pick a recent CVE in an open source target that interests you
2. Study the code until you thoroughly understand the issue (write it up)
3. Write a repro PoC
4. Try to write an exploit for it
🧵2:26 PM ∙ Nov 4, 2022
65Likes18Retweets
-
raptor @0xdeaRC4 Is Still Considered Harmful
// by @tiraniddo 
googleprojectzero.blogspot.com/2022/10/rc4-is…

Exploitation without Interception (CVE-2022-33679) PoC
// by @Bdenneu
github.comGitHub - Bdenneu/CVE-2022-33679: One day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.htmlOne day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html - GitHub - Bdenneu/CVE-2022-33679: One day based on https://googleprojectzero.blogspot.com/2022/...9:22 AM ∙ Nov 5, 2022
-
Suzanne Raine @SuzanneRaine2
When the Bank of England forecasts depression, does it factor into the forecast the impact of a forecast by the Bank of England predicting depression? I try to un-muddle our relationship with forecasting.  engelsbergideas.comSuperforecasting will not save us - Engelsberg ideasThe value of forecasts lies in how they help us shape the future. We should prioritise understanding what we can do.6:58 AM ∙ Nov 5, 2022
36Likes11Retweets
-
Electrospaces @electrospaces
Can privacy-enhancing technologies (pets), like zero-knowledge proofs and fully homomorphic encryption, solve the internet’s privacy problem?
theguardian.comCan a new form of cryptography solve the internet’s privacy problem?Techniques which allow the sharing of data whilst keeping it secure may revolutionise fields from healthcare to law enforcement9:14 AM ∙ Nov 5, 2022
5Likes5Retweets
-
mRr3b🎃🎃t 🕵️‍♂️ @UK_Daniel_Card
bleepingcomputer.comBritish govt is scanning all Internet devices hosted in UKThe United Kingdom’s National Cyber Security Centre (NCSC), the government agency that leads the country’s cyber security mission, is now scanning all Internet-exposed devices hosted in the UK for vulnerabilities.7:56 PM ∙ Nov 4, 2022
42Likes15Retweets
-
Elon Musk Sucks Goats @cstross
Why Twitter's 2023 revenue had imploded on word of the takeover before Musk even completed it: threadreaderapp.comThread by @GoAngelo on Thread Reader App@GoAngelo: 1/ There is some pretty substantial context about Twitter’s 2023 revenue and advertisers that I think partly help explains why Musk is really losing it... And it involves upfront ad sales. Let me explain....…10:28 AM ∙ Nov 5, 2022
53Likes28Retweets
-
@yeldnal @yeldnal@SarahTaber_bww I note that the acquisition and sudden implosion of freenode is a great model for understanding twitter's takeover, but mostly only open source guys noticed: see lwn.net/Articles/85654… and lwn.net/Articles/85714… and theregister.com/2021/05/26/fre… and so on.
theregister.comAfter staff revolt, Freenode management takes over hundreds of IRC channels for ‘policy violations’Gentoo and Raku call foul2:21 AM ∙ Nov 5, 2022
18Likes18Retweets
-
The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

Don't miss what's next. Subscribe to the grugq's newsletter: