DHS IG finds serious problems w/ the govt's cyber threat information sharing portal.

# of entities sharing CTI "declined to its lowest level since 2017."

A DoD system changed hands and new operator stopped sharing "due to unspecified security concerns."https://t.co/KVCzlv5d6l pic.twitter.com/EpIGAoGpKU

— Eric Geller (@ericgeller) September 27, 2024

NCSC Wall of Spies artifact: In 1999, a Russian listening device was found hidden in a chair rail in a conference room at US State Department HQ. @FBIgov later detained a Russian SVR official who had been recording audio in the room using special equipment in his nearby vehicle. pic.twitter.com/2Ci4cPacMC

— NCSC (@NCSCgov) September 27, 2024

I just opened up CUPS on my firewall to my Linux desktop, if anyone wants to configure my printer for me that would be awesome

— hackerfantastic.x (@hackerfantastic) September 26, 2024

💥PoC is now public!

target = "https://{ip_address}/cgi/login.cgi"
command = "touch /tmp/BRLY"

libc = 0x76283000 # we try to guess
gadget1 = 0x000D8874 # pop {r0, r1, r2, r3, fp, pc};
gadget2 = 0x001026D4 # mov r0, sp; blx r3;
system = 0x0003C4D4https://t.co/CU2EQK1Faa https://t.co/KERDiRBCFx

— Alex Matrosov (@matrosov) September 27, 2024

🚁 Another funny OPSEC fail by one of the biggest cybercriminals on the planet, who laundered billions of dollars in cryptocurrency for carders and ransomware gangs https://t.co/phPsMNaEWQ pic.twitter.com/BgHiweFuox

— Will (@BushidoToken) September 28, 2024

Since @dobinrutis doesn't tweet. Here you go https://t.co/uKx9FVwSsZ

"EDR functionality and bypasses in 2024, with focus on undetected shellcode loader." pic.twitter.com/aazoST6NpG

— Carel van Rooyen (@carelvanrooyen) September 27, 2024

PolyTracker: A new @TrailofBits tool for understanding how computer programs handle your data https://t.co/5kClZUKElW via @growkudos

— Trail of Bits (@trailofbits) September 27, 2024

Building an EDR From Scratch Part 1 - Intro (Endpoint Detection and Response) : https://t.co/nbANOFf2jd

— Binni Shah (@binitamshah) September 28, 2024

Onyx hacked for $3.8 million via the same exploit used against them less than a year ago

September 26, 2024 pic.twitter.com/9LB8JFjIiJ

— web3 is going just great (@web3isgreat) September 28, 2024

#SpyNews - week 39 (September 22-28):
A summary of 69 espionage-related stories from week 39 coming from 🇮🇱🇨🇳🇺🇸🇫🇮🇲🇽🇷🇺🇮🇹🇬🇧🇺🇦🇫🇷🇳🇿🇵🇭🇰🇷🇻🇳🇹🇼🇹🇭🇵🇰🇰🇵🇮🇷🇱🇧🇨🇦🇭🇰🇦🇿🇬🇷🇨🇾🇹🇷🇨🇿🇩🇪🇨🇭🇮🇳🇩🇿🇲🇦🇩🇰🇵🇱🇧🇾🇸🇦🇨🇺 https://t.co/L8WEuUuxqo#Espionage #OSINT #HUMINT #SIGINT #spy

— Spy Collection (@SpyCollection1) September 29, 2024