October 7, 2023
October 7, 2023
https://www.theregister.com/2023/10/05/hospital_cat_incident/The #PredatorFiles investigation reveals the #Predator spyware attack interface for the first time, with invasive capabilities to steal photos, track the victims location and record their microphone pic.twitter.com/7mt8fx4cVD
— Donncha Ó Cearbhaill (@DonnchaC) October 6, 2023
Good morning. Do u have adhd?? food for thought pic.twitter.com/RiyhKaCAIP
— Vinny Thomas (@vinn_ayy) October 6, 2023
This new Twitter link change is a killing field for malware operators.
— John McFarland 🌻 ن (@BruSec_) October 5, 2023
Hard to envision a trained, well-funded foreign intelligence service not taking advantage of this personality trait. https://t.co/EOEip7huFX pic.twitter.com/Egrcg7Q7J3
— Pete Strzok (@petestrzok) October 6, 2023
https://www.theregister.com/AMP/2023/10/02/us_state_security_gao
Michael Taylor on The Development of the M1 Garand and its Implications – A Collection of Unmitigated Pedantry
This week, Michael Taylor, Associate Professor of History at SUNY Albany, returns to offer an interesting argument about the longterm impact of the M1 Garand, the US army’s extremely successf…
https://tigress.wtf/index.html https://tigress.wtf/transformations.html
Kevin Beaumont: "Lyca Mobile’s announcement page for their ransomw…" - Cyberplace
Lyca Mobile’s announcement page for their ransomware data breach is back, HT @carlypage@mastodon.social
They confirm data exfil including customer details, passport scans and card payment information.
I can't see the announcement on their actual website frontpage, I might be missing it though.
I think it's a wake up call for telcos.
https://www.lycamobile.co.uk/en/update
#threatintel
NSA getting ‘a lot more flexible’ under major workforce initiative | Federal News Network
The director of the NSA’s “Future Ready Workforce” initiative says “we’ve got some room to grow in our telework functions.”
Employee: I’m good at my job and deserve a raise
— Adam Karpiak (@Adam_Karpiak) October 6, 2023
Company: pic.twitter.com/L98TsJXUN1
And we’re live! https://t.co/c6ztQwvR5f https://t.co/wPmPif9Fo5
— cts🌸 (@gf_256) October 7, 2023
23andMe user data was seemingly stolen in a credential stuffing campaign that targeted Ashkenazi Jews. Also maybe data from Mark Zuckerberg, Elon Musk and Sergey Brin is in the leak? 23andMe seems to be confirming the incident yet hasn't validated the data https://t.co/9Rq4DcqHnP
— Lily Hay Newman (@lilyhnewman) October 6, 2023
Really cool project @meansec has started kicking off tracking the legality of #ransomware payments:https://t.co/f6XjAzDWZn
— Silas // p1nk (@silascutler) October 7, 2023
cc: @IST_org #RansomwareTaskForce pic.twitter.com/Fq1jGYfNZs
One saving grace for US counterintelligence is that most of our traitors aren’t exactly geniuses. pic.twitter.com/UFLuZummgb
— 𝙰𝚕𝚎𝚡 𝙱𝚕𝚊𝚌𝚔𝚠𝚎𝚕𝚕 (@alexrblackwell) October 6, 2023
"Individuals entrusted with national defense information have a continuing duty to protect that information beyond their government service and certainly beyond our borders".
— Dr. Dan Lomas (@Sandbagger_01) October 6, 2023
https://t.co/Mu5q8fnPfL
Intel history nerds when they see the wooden seal https://t.co/dDm75fXk8H pic.twitter.com/L4XQnLclQc
— Glitchy Michael 🌻 (@GlitchyMichael) October 5, 2023
It's not a bug, it's a feature!
— Jonathan Jogenfors (@Jogenfors) October 6, 2023
Interesting reading on how to break bare metal firmware encryption (FortiGate firewalls) for security research.
— 0xor0ne (@0xor0ne) October 6, 2023
Credits Jon Williams (@bishopfox)https://t.co/IezIyMddWF#Fortinet #embedded #infosec pic.twitter.com/0ajPeVzDY1
Did your your experience "running sources as a spy handler" teach you to handle them over Gmail? I'll bet it didn't. pic.twitter.com/mbuqszcC2w
— Adam Rawnsley (@arawnsley) October 6, 2023
People, please. I cannot stress this enough: do not take espionage advice from Reddit. pic.twitter.com/YMNVwDaC5w
— Adam Rawnsley (@arawnsley) October 6, 2023
That’s just what the espionage elite want you to think, this is gatekeeping
— Dave (also @cursed.monster on bsky) (@6502_ftw) October 6, 2023
❅ phishing 2fa 25 years ago ❅
— pad (@123456) October 6, 2023
two-factor authentication is revered as the end all be all of account security. it shouldn't be. it's been easy to phish 2fa since the 90s.
aol employees used physical "rsa securid" devices displaying 6 digits that changed once per minute.
i… pic.twitter.com/gBxrUezeYd
Weekly analysis is out (attribution by others):
— Ollie Whitehouse (@ollieatnowhere) October 7, 2023
-🇰🇵 ops in 🇪🇸 on ✈️ coders
-🇰🇵 ops in 🇰🇷 on 🚢
-🇨🇳 ops on ASEAN members
-🇨🇳 ops in 🇬🇾 on Gov
-🇮🇷 ops in 🇸🇦
then
- Malvertising via hacked ad accts
-Smart contracts hosting payloads
Plus off/def tradecraft.https://t.co/8ZElyuvtiZ
Checkout @sublime_sec 's "quishing" 😬 aka QR Code Phishing analysis and protection tech. Excellent overview:https://t.co/jlyBfNLTcY
— Jason Haddix (@Jhaddix) October 6, 2023
Now do one's on LNK, CHM, MSI, MSIX, APPX, HTML Smugg, *ZIP, ISO, CPL, XLL, js, WSF's ... ! 😜
Looks like a good time for a thread on token theft :)
— Nathan McNulty (@NathanMcNulty) October 6, 2023
Not all MFA is of the same quality, and anything using OTP (SMS, hardware/software tokens) or Push (MS Authenticator, Duo, etc.) is susceptible to AITM attacks
That doesn't mean it's useless, but it's becoming less useful https://t.co/YKIcsYVY7y
Thread by @NathanMcNulty on Thread Reader App – Thread Reader App
@NathanMcNulty: Looks like a good time for a thread on token theft :) Not all MFA is of the same quality, and anything using OTP (SMS, hardware/software tokens) or Push (MS Authenticator, Duo, etc.) is susceptible...…
I hate that when something is difficult, people say "it's no picnic," as if picnics are just some walk in the park.
— Dead Pan Nick (@Contwixt) June 2, 2018
The Herald-Journal, Logan, Utah, February 29, 1936 pic.twitter.com/AouYQddqBQ
— Yesterday's Print (@yesterdaysprint) October 6, 2023
A Brief History of America is in Decline Like The Roman Empire
— Paul Fairie (@paulisci) October 2, 2023
🧵
Thread by @paulisci on Thread Reader App â Thread Reader App
@paulisci: A Brief History of America is in Decline Like The Roman Empire 𧵠2022 2017 2013 2007 1995 1987 1973 1972 1969 1956
Sonar Research: "Auth Bypass, SSRF, LF Injection, SNMP to XSS, Cod…" - Infosec Exchange
Auth Bypass, SSRF, LF Injection, SNMP to XSS, Code & Command Injection, and much more. The recording of our @WEareTROOPERS talk "Monitoring Solutions: Attacking IT Infrastructure at its Core" is now live: https://www.youtube.com/watch?v=hGne0DbR6bY #TROOPERS23
Trying something that will probably not work:
@viktorwinetrout.bsky.social on Bluesky
"I usually don’t do this on the first date," I say, pushing two lobsters together and making sex noises
"I usually don’t do this on the first date," I say, pushing two lobsters together and making sex noises