NEW BLOG: VulnCheck's CTO @Junior_Baines examines CVE-2023-36845, revealing a new path to code execution that doesn't require a file upload and outlining how the vulnerability alone can achieve remote, unauthenticated code execution. Learn more: https://t.co/bIJYlaSYMa

— VulnCheck (@VulnCheckAI) September 18, 2023

Telecommunications providers across the Middle East are being targeted with a new malware family that researchers are calling #HTTPSnoop. https://t.co/WHxqzYCAwn

— The Record From Recorded Future News (@TheRecord_Media) September 19, 2023

ASSET group @sutdsg is unleashing 5Ghoul soon. Watch out https://t.co/qUlavgatdi for all the details of the 5G implementation vulnerabilities and the respective exploit code after 7th Dec, 2023. #CyberSecurity #wireless #Fuzzing #5G pic.twitter.com/Dku0X8JnRK

— Sudipta (@chatsudi) September 19, 2023

“He Just Lost It In The Weather” – Audio From F-35 Crash Response Emergeshttps://t.co/SNi9Q0qCcr

— Tyler Rogoway (@Aviation_Intel) September 19, 2023

BREAK! The International Criminal Court (ICC) in The Hague has suffered a cyber attack. One source says a large trove of sensitive information has been stolen in the attack. https://t.co/i5PWr51T7t

— Rickey Gevers (@UID_) September 19, 2023

accidentally manifested this https://t.co/Iam8IkDiZa pic.twitter.com/j96ySD99A1

— █̶̳̘͛̄̃͒̄̃͜█̴͇̱̅͒̅█̵̻̣̝͒̈̄̈͝͝█̴̞̜̻̝͍̂̽͜█̷̢͔̭̝̼̾̍̚ (@SHL0MS) September 19, 2023

Have just been on @TimesRadio about the HMG campaign to stop @Meta rolling out e2ee.

Key arguments:

1. The Home Sec already has the legal power to stop Meta rolling out e2ee (a technical capability notice under the 2016 Investigatory Powers Act). 1/6https://t.co/yRcQLA8KEo

— Ciaran Martin (@ciaranmartinoxf) September 20, 2023

The fight isn't over, but ouch. In the UK, Parliament has passed the Online Safety Bill, which grants government the power to force companies to backdoor e2e encryption. https://t.co/ouTtzHpoeP

— Eva (@evacide) September 19, 2023

overwriting utsname fields with a flaky arb. write and confirming success through uname syscall is a cute/simple trick to reliably get some consecutive data written at a known address https://t.co/X24ce7qSO4

— blasty (@bl4sty) September 20, 2023

I just released a blog post on an Android ITW exploit chain: https://t.co/s0YZJ3maYo

A big thanks to Google TAG and the other members of Project Zero who participated in the creation of this blog post and analysis of the chain!

— Seth Jenkins (@__sethJenkins) September 19, 2023

Rumor: Microsoft has reportedly started cutting orders for Nvidia H100 chips as hype over ChatGPT fades and worse than expected subscriptions for Microsoft 365 Copilot, media report, saying the rumor tanked AI server related shares in Taipei on Tuesday. $MSFT $NVDA…

— Dan Nystedt (@dnystedt) September 20, 2023

I fixit very eloquently explains many problems with apple’s current level of control over our devices https://t.co/U9ciPP7imD

— Sam Bingner (@sbingner) September 20, 2023

China once again outing a US cyber attack. The west will laugh at this as it's an old attack but China is doing it's own thing and carefully starting to fight back on the narrative that the west is innocent in cyber. https://t.co/Y5asLdXuwe

— Joe Tidy (@joetidy) September 20, 2023

This is the Omnivision OV6948 camera, the world's smallest commercially available camera (Guinness World Record holder).

It shoots a 200x200px image, and can record video at 30fps.

I wonder what intelligence agencies and the U.S. military plays with that we don't know about? pic.twitter.com/rYOQ35EZIR

— John Greenewald, Jr. (@blackvaultcom) September 19, 2023