October 10, 2024
October 10, 2024
"Influence and Cyber Operations: An Update," the new OpenAI threat intelligence report, out a few hours ago. The document is interesting for one specific reason that hasn't been mentioned in public reporting so far https://t.co/z3R0Hzan32
— Thomas Rid (@RidT) October 9, 2024
Thread by @RidT on Thread Reader App – Thread Reader App
@RidT: "Influence and Cyber Operations: An Update," the new OpenAI threat intelligence report, out a few hours ago. The document is interesting for one specific reason that hasn't been mentioned in public reporting s...…
We’ve just published the third and final part in our new series on Windows kernel driver vulnerability research and exploitation. https://t.co/hdr14dykCs
— HN Security (@hnsec) October 9, 2024
Let’s craft a full exploit that chains the 2 vulnerabilities we discovered to enable all privileges on Windows!
Truly one of the great bangers pic.twitter.com/cclU0luShx
— Vivid Void (@VividVoid_) October 9, 2024
OUT TODAY: @OpenAI's update on disrupting deceptive uses of AI.
— Ben Nimmo (@benimmo) October 9, 2024
Featuring case studies of cyber operations, covert influence ops and deceptive networks that we disrupted from around the world:https://t.co/jWOQYlayeF
Thought I'd share this remote code execution on one of the main sites for a large H1 target from a year ago. I found this one by being persistent and using Param Miner by @albinowax .
— Stealthy (@stealthybugs) October 9, 2024
After Param Miner discovered the header it was all manual testing to detect the template engine… pic.twitter.com/PMNGCmzx5B
Feels like every sentence of this para has big lessons for understanding cyber conflict
— Jay Healey (@Jason_Healey) October 9, 2024
From "Hawkish Biases and Group Decision Making" (International Organization 76, Summer 2022, pp. 513–48) https://t.co/1aNVPNF1Mo pic.twitter.com/ByJqx0MApP
BREAKING: The US government has charged crypto market makers with market manipulation and fraud.
— unusual_whales (@unusual_whales) October 9, 2024
To catch them, the FBI (!!!) created a crypto token called NextFundAi to "identify, disrupt, and bring these alleged fraudsters to justice."
The FBI pumping a shitcoin wasn’t on my bingo card for this week
— Orlando (@thisisorlando) October 9, 2024
Wow, this case get even more insane
— db (@tier10k) October 9, 2024
The FBI created their own coin called "The NexFundAI Token" and enlisted the services of the firms indicted to catch them
“The FBI took the unprecedented step of creating its very own cryptocurrency token and company to identify, disrupt, and…
If you are wondering, here is the CA
— db (@tier10k) October 9, 2024
Trading is disabled https://t.co/AK7ruxWPze
Not sure if the FBI realized this, but they doxxed their wallets.
— Conor (@jconorgrogan) October 9, 2024
Shortly after deployment, the wallet that seeded the FBI wallet deployed capital to multiple other wallets, making dozens of trades. FBI wallets own at least 75% of the token supply from what I can tell pic.twitter.com/k9xSsCUR0I
Friendly reminder I have created what I (non-humbly) consider the greatest SQL injection cheatsheet of all time:https://t.co/KDpvOnoM2L
— Tib3rius (@0xTib3rius) October 9, 2024
Unlike others, it contains payloads for 5 main database variants, and doesn't use weird quote chars (IYKYK 👀).
Want to check for #ESC15 ? Use the following cypher with #BloodHound
— Jean-Michel Besnard (@jmbesnard_maz) October 9, 2024
MATCH p=(:Base)-[:MemberOf*0..]->()-[:Enroll|AllExtendedRights]->(ct:CertTemplate)-[:PublishedTo]->(:EnterpriseCA)-[:TrustedForNTAuth]->(:NTAuthStore)-[:NTAuthStoreFor]->(:Domain) WHERE… pic.twitter.com/ZsAMPpbPiT
https://x.com/cyb3rops/status/1844276032221872176
🚨 SCOOP 🚨 Apple ran a conference for cops, hosting at Cupertino.
— Thomas Brewster (@iblametom) October 9, 2024
Called the Apple Global Police Summit, it welcomed cops from seven countries to talk about how they use Apple tech, from iPhones to CarPlay to Vision Pro.
And yes, for surveillance apps.https://t.co/gQVSLYSyly
DOJ Google Remedy Tracker:
— Adam Kovacevich (@adamkovac) October 9, 2024
I went through the DOJ's proposed Google search antitrust remedies, and charted them out here - including the potential issues each could face in the remedies trial & appeals process: pic.twitter.com/83ysHkqtEp
I also went back and looked at other remedies that have been floated by Google critics over the past two months.
— Adam Kovacevich (@adamkovac) October 9, 2024
DOJ did not include in its framework these remedies proposed by @Yelp @DCNorg @lutherlowe @superwuster ⬇️ pic.twitter.com/Ygq9pt4pxI
you can JUST fit "SKIBIDITOILET" into a single year of github activity squares pic.twitter.com/cq2QrpJSvs
— ravarcheon (@ravarcheon) October 8, 2024