October 7, 2023

        October 7, 2023

October 7, 2023

            October 7, 2023

https://www.theregister.com/2023/10/05/hospital_cat_incident/

The #PredatorFiles investigation reveals the #Predator spyware attack interface for the first time, with invasive capabilities to steal photos, track the victims location and record their microphone pic.twitter.com/7mt8fx4cVD
— Donncha Ó Cearbhaill (@DonnchaC) October 6, 2023

Good morning. Do u have adhd?? food for thought pic.twitter.com/RiyhKaCAIP
— Vinny Thomas (@vinn_ayy) October 6, 2023

This new Twitter link change is a killing field for malware operators.
— John McFarland 🌻 ن (@BruSec_) October 5, 2023

Hard to envision a trained, well-funded foreign intelligence service not taking advantage of this personality trait. https://t.co/EOEip7huFX pic.twitter.com/Egrcg7Q7J3
— Pete Strzok (@petestrzok) October 6, 2023

https://www.theregister.com/AMP/2023/10/02/us_state_security_gao

https://acoup.blog/2023/09/08/michael-taylor-on-the-development-of-the-m1-garand-and-its-implications/

https://tigress.wtf/index.html

https://tigress.wtf/transformations.html

https://cyberplace.social/@GossiTheDog/111188765385044501

https://federalnewsnetwork.com/inside-ic/2023/10/nsa-getting-a-lot-more-flexible-under-major-workforce-initiative/

Employee: I’m good at my job and deserve a raise

Company: pic.twitter.com/L98TsJXUN1
— Adam Karpiak (@Adam_Karpiak) October 6, 2023

And we’re live! https://t.co/c6ztQwvR5f https://t.co/wPmPif9Fo5
— cts🌸 (@gf_256) October 7, 2023

23andMe user data was seemingly stolen in a credential stuffing campaign that targeted Ashkenazi Jews. Also maybe data from Mark Zuckerberg, Elon Musk and Sergey Brin is in the leak? 23andMe seems to be confirming the incident yet hasn't validated the data https://t.co/9Rq4DcqHnP
— Lily Hay Newman (@lilyhnewman) October 6, 2023

Really cool project @meansec has started kicking off tracking the legality of #ransomware payments:https://t.co/f6XjAzDWZn

cc: @IST_org #RansomwareTaskForce pic.twitter.com/Fq1jGYfNZs
— Silas // p1nk (@silascutler) October 7, 2023

One saving grace for US counterintelligence is that most of our  traitors aren’t exactly geniuses. pic.twitter.com/UFLuZummgb
— 𝙰𝚕𝚎𝚡 𝙱𝚕𝚊𝚌𝚔𝚠𝚎𝚕𝚕 (@alexrblackwell) October 6, 2023

"Individuals entrusted with national defense information have a continuing duty to protect that information beyond their government service and certainly beyond our borders".
 https://t.co/Mu5q8fnPfL
— Dr. Dan Lomas (@Sandbagger_01) October 6, 2023

Intel history nerds when they see the wooden seal https://t.co/dDm75fXk8H pic.twitter.com/L4XQnLclQc
— Glitchy Michael 🌻 (@GlitchyMichael) October 5, 2023

It's not a bug, it's a feature!
— Jonathan Jogenfors (@Jogenfors) October 6, 2023

Interesting reading on how to break bare metal firmware encryption (FortiGate firewalls) for security research.
Credits Jon Williams (@bishopfox)https://t.co/IezIyMddWF#Fortinet #embedded #infosec pic.twitter.com/0ajPeVzDY1
— 0xor0ne (@0xor0ne) October 6, 2023

Did your your experience "running sources as a spy handler" teach you to handle them over Gmail? I'll bet it didn't. pic.twitter.com/mbuqszcC2w
— Adam Rawnsley (@arawnsley) October 6, 2023

People, please. I cannot stress this enough: do *not* take espionage advice from Reddit. pic.twitter.com/YMNVwDaC5w
— Adam Rawnsley (@arawnsley) October 6, 2023

That’s just what the espionage elite want you to think, this is gatekeeping
— Dave (also @cursed.monster on bsky) (@6502_ftw) October 6, 2023

❅ phishing 2fa 25 years ago ❅

two-factor authentication is revered as the end all be all of account security. it shouldn't be. it's been easy to phish 2fa since the 90s.

aol employees used physical "rsa securid" devices displaying 6 digits that changed once per minute.

i… pic.twitter.com/gBxrUezeYd
— pad (@123456) October 6, 2023

Weekly analysis is out (attribution by others):
-🇰🇵 ops in 🇪🇸 on ✈️ coders
-🇰🇵 ops in 🇰🇷 on 🚢
-🇨🇳 ops on ASEAN members
-🇨🇳 ops in 🇬🇾 on Gov
-🇮🇷 ops in 🇸🇦

then
- Malvertising via hacked ad accts
-Smart contracts hosting payloads

Plus off/def tradecraft.https://t.co/8ZElyuvtiZ
— Ollie Whitehouse (@ollieatnowhere) October 7, 2023

Checkout @sublime_sec 's "quishing" 😬 aka QR Code Phishing analysis and protection tech. Excellent overview:https://t.co/jlyBfNLTcY

Now do one's on LNK, CHM, MSI, MSIX, APPX, HTML Smugg, *ZIP, ISO, CPL, XLL, js, WSF's ... !  😜
— Jason Haddix (@Jhaddix) October 6, 2023

Looks like a good time for a thread on token theft :)

Not all MFA is of the same quality, and anything using OTP (SMS, hardware/software tokens) or Push (MS Authenticator, Duo, etc.) is susceptible to AITM attacks

That doesn't mean it's useless, but it's becoming less useful https://t.co/YKIcsYVY7y
— Nathan McNulty (@NathanMcNulty) October 6, 2023

https://threadreaderapp.com/thread/1710220821183279302.html

I hate that when something is difficult, people say "it's no picnic," as if picnics are just some walk in the park.
— Dead Pan Nick (@Contwixt) June 2, 2018

The Herald-Journal, Logan, Utah, February 29, 1936 pic.twitter.com/AouYQddqBQ
— Yesterday's Print (@yesterdaysprint) October 6, 2023

A Brief History of America is in Decline Like The Roman Empire

🧵
— Paul Fairie (@paulisci) October 2, 2023

https://threadreaderapp.com/thread/1708970126358552693.html

https://infosec.exchange/@SonarResearch/111182995903416600

Trying something that will probably not work:

             — Bluesky             

"I usually don’t do this on the first date," I say, pushing two lobsters together and making sex noises

                            Don't miss what's next. Subscribe to the grugq's newsletter:

          Add a comment:

                Share this email:

                                Share on Twitter

                                Share on Hacker News

                                Share via email

                                Share on Mastodon

                                Share on Bluesky