the grugq's newsletter

Subscribe
Archives
September 22, 2025

September 22, 2025

September 22, 2025

this was a googlectf challenge btw https://t.co/tC2yYC09At pic.twitter.com/FzaRuBAaWX

— Rebane (@rebane2001) September 21, 2025


Thorough and interesting report about the recents developments in the high-end spyware-market: https://t.co/mBFxdveQuB

— Electrospaces (@electrospaces) September 21, 2025


#SpyNews - week 38 (September 14-20):
A summary of 63 espionage-related stories from week 38 coming from 🇮🇱🇮🇷🇰🇵🇰🇷🇺🇸🇩🇪🇶🇦🇺🇦🇷🇺🇮🇶🇬🇧🇨🇳🇦🇫🇹🇯🇻🇪🇹🇭🇹🇷🇦🇹🇨🇾🇨🇴🇽🇰🇷🇸🇳🇿🇲🇪🇧🇪🇱🇻🇱🇾🇳🇱🇲🇦🇲🇩🇷🇴🇧🇾🇫🇷🇸🇾🇪🇹🇨🇿🇵🇱🇭🇺🇧🇩🇲🇲🇮🇪🇲🇺 https://t.co/enabnjthrD#espionage #OSINT #HUMINT #SIGINT #spy

— Spy Collection (@SpyCollection1) September 21, 2025


EDR-Freeze - a tool that exploits the software vulnerability of WerFaultSecure to suspend the processes of EDRs and antimalware without needing to use the BYOVD (Bring Your Own Vulnerable Driver) attack method. https://t.co/SjWQRCQSdR

— Panos Gkatziroulis 🦄 (@netbiosX) September 21, 2025


We've just published the slides of @solardiz's @Nullcon Berlin 2025 talk "Linux Kernel Runtime Guard (LKRG) 1.0" https://t.co/gIj8vDjs1A #LKRG #nullconBerlin2025 #nullcon pic.twitter.com/xyE8e6PUB4

— Openwall (@Openwall) September 20, 2025


Cyberattack on Paris Natural History Museum in July disabled alarms and monitoring - leading to physical theft. In September, thieves exploited the vulnerability "opened" by the cyberattack. They calmly cut through doors with angle grinders and used blowtorches to open display…

— Lukasz Olejnik (@lukOlejnik) September 22, 2025


Python library for accessing and decrypting Apple Find My network data, including AirTags and iDevices pic.twitter.com/rkXO2MZiQL

— Tom Dörr (@tom_doerr) September 21, 2025


🛡️🥶 EDR-Freeze abuses WerFaultSecure.exe to suspend AV/EDR via MiniDumpWriteDump — no BYOVD needed.https://t.co/cxRk5stidg

I wrote a DefenderXDR KQL to catch it by mapping WerFaultSecure PID to core MDE processes. 🫡https://t.co/3k5vUtgWlY#CyberSecurity #EDRFreeze… pic.twitter.com/hkkP6fjzUK

— Steven Lim (@0x534c) September 21, 2025


no thanku. https://t.co/osS2B6g901 pic.twitter.com/qb349IukO8

— J⩜⃝mie Williams (@jamieantisocial) September 5, 2025


incredible things are happening pic.twitter.com/WbYXBLeh2h

— akano (@princessakano) September 21, 2025


this patch is fuckin nuts lol (nuts as in extremely fucking cool) pic.twitter.com/knR4xhklT0

— cts🌸 (@gf_256) September 22, 2025
Don't miss what's next. Subscribe to the grugq's newsletter:
Start the conversation:
X