September 9, 2023

EthicalChaos

                            September 9, 2023

                September 9, 2023

                        September 9, 2023
Think about your 3 best friends. If none of them are beetles

You are the beetle pic.twitter.com/7Yj628lhl4
— Entomemeology (@entomemeology) September 8, 2023

The International Criminal Court Will Now Prosecute Cyberwar Crimes https://t.co/qdXnCtIPnG
— Teri Radichel #cybersecurity #cloudsecurity (@TeriRadichel) September 8, 2023

            Technology Will Not Exceed Our Humanity – Digital Front Lines
            We must renew our efforts to ensure that justice is not outpaced by the changing character of war.

ASMesh: Anonymous and Secure Messaging in Mesh Networks Using Stronger, Anonymous Double Ratchet
https://eprint.iacr.org/2023/1053

Outlook is currently down due to a Senate-wide reply-all apocalypse. Well done guys
— rachel cohen (@rcohen) September 8, 2023

“They’re endangered. We’re down to only 20 or 30 breeding pairs remaining. Unless drastic action is taken, the Russian spy in the US could be extinct within our generation!”

            FBI Director Christopher Wray issues warning about number of Russian spies in the US | CNN Politics
            FBI Director Christopher Wray warned Thursday that the number of Russian spies operating inside the United States is “still way too big,” despite efforts to kick them out.

Chernobyl liquidators', protective goggles (ОПФ), USSR,1980s.

Available here: https://t.co/A5w0zDKEhI pic.twitter.com/Xmy2fADaB4
— Soviet Visuals (@sovietvisuals) September 9, 2023

            X, formerly Twitter, challenges California's new transparency law as unconstitutional | TechCrunch
            X says California's new moderation transparency law is unconstitutional and a precursor to censorship of politically sensitive topics.

😐 I’m not sure if the magnitude of this has fully sunk in for everyone, given the muted reactions. Is it a form of cognitive dissonance where people think, 'Yes, it's bad, but there's no better alternative and appropriate response'? https://t.co/CiF7pvhtyK pic.twitter.com/ew8RMGYeZS
— Florian Roth (@cyb3rops) September 8, 2023

            Google gets its way, bakes a user-tracking ad platform directly into Chrome | Ars Technica
            Chrome now directly tracks users, generates a "topic" list it shares with advertisers.

            Defcon 31 snoop unto them, as they snoop unto us | blog.dataparty
            The official videos from DEFCON 31 have been posted!
Below you can watch our talk “Snoop unto them as they snoop unto you”. The talk, slides, files

Short beginners introduction to firmware emulation with QEMU for IoT devices analysis

Credits @IamAlch3misthttps://t.co/lBFhSv8oti#qemu #reverseengineering pic.twitter.com/DaHFHigsK8
— 0xor0ne (@0xor0ne) September 8, 2023

            GitHub - opsdisk/the_cyber_plumbers_handbook: Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.
            Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss. - GitHub - opsdisk/the_cyber_plumbers_handbo...

            FTC judge rules Intuit broke law, must stop advertising TurboTax as “free” | Ars Technica
            Intuit plans appeal, slams FTC's "predetermined decision."

https://web.archive.org/web/20150317062651/http://www.ourwebhome.com/TENP/Recommended.html

            False Fang: When the CIA Staged a Vampire Attack
            In the 1950s, American counterinsurgents decided to play into Philippine folklore by orchestrating a deadly âvampireâ attack.

My #DEFCON31 talk, A Broken Marriage: Abusing Mixed Vendor Kerberos Stacks is live.  Hope you enjoy watching as much as I did presenting.  Thank you @defcon for having me. https://t.co/tHOAI479WI
— CCob🏴󠁧󠁢󠁷󠁬󠁳󠁿 (@EthicalChaos) September 9, 2023

Except this progress is quite limited. HW's Hisilicon was already a skilled chip design firm.  the problems were EDA tools and fabbing.  EDA tools were always vulnerable to hacking (https://t.co/f7KwpZnjpg ) and as for fabbing HW's chip, SMIC still has access to US equip https://t.co/PdOpAxgmcn
— 傅道格 Doug Fuller (@FuDaoge) September 9, 2023

The @DEFCON videos have been posted to the media server. Here’s my talk: https://t.co/CSB7JvYe6P pic.twitter.com/B0z1RJNrIv
— @mikko (@mikko) September 9, 2023

Old blog post but still very intereting. Address space regions unmapping as an exploitation primitive

Credits @_2canhttps://t.co/Ini6ejqGjD#exploit #hacking pic.twitter.com/VWWcQruBzW
— 0xor0ne (@0xor0ne) September 9, 2023

I alluded to “tiers” of sellers earlier but around this time I got into groups selling explosives, Yugo M53 LMGs, Newer suppressed subguns, and some more cool stuff. Explosives are used sometimes in bank robberies in NL so it was cool to see where a few got their explosives pic.twitter.com/yK0vNX60Al
— Xaniken (@Xaniken) September 8, 2023

Anyway just soon after I got into contact with Jake Hanrahan as I said earlier because of Jstark and just before his death I shared this video with him of how FGC-9s are tested pic.twitter.com/9Qloo1Lmwp
— Xaniken (@Xaniken) September 8, 2023

Lots of people dead from those days but after Peters death, Dutch police infiltration of the Dream market, bad opsec, and criminals being dumb, most of the big sellers are in prison now and new ones have popped up (with much better opsec) https://t.co/gqDmXZ1d5x
— Xaniken (@Xaniken) September 8, 2023

                            Don't miss what's next. Subscribe to the grugq's newsletter:

September 9, 2023

September 9, 2023

Technology Will Not Exceed Our Humanity – Digital Front Lines

We must renew our efforts to ensure that justice is not outpaced by the changing character of war.

ASMesh: Anonymous and Secure Messaging in Mesh Networks Using Stronger, Anonymous Double Ratchet

FBI Director Christopher Wray issues warning about number of Russian spies in the US | CNN Politics

FBI Director Christopher Wray warned Thursday that the number of Russian spies operating inside the United States is “still way too big,” despite efforts to kick them out.

X, formerly Twitter, challenges California's new transparency law as unconstitutional | TechCrunch

X says California's new moderation transparency law is unconstitutional and a precursor to censorship of politically sensitive topics.

Google gets its way, bakes a user-tracking ad platform directly into Chrome | Ars Technica

Chrome now directly tracks users, generates a "topic" list it shares with advertisers.

Defcon 31 snoop unto them, as they snoop unto us | blog.dataparty

The official videos from DEFCON 31 have been posted! Below you can watch our talk “Snoop unto them as they snoop unto you”. The talk, slides, files

GitHub - opsdisk/the_cyber_plumbers_handbook: Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.

Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss. - GitHub - opsdisk/the_cyber_plumbers_handbo...

FTC judge rules Intuit broke law, must stop advertising TurboTax as “free” | Ars Technica

Intuit plans appeal, slams FTC's "predetermined decision."

False Fang: When the CIA Staged a Vampire Attack

In the 1950s, American counterinsurgents decided to play into Philippine folklore by orchestrating a deadly âvampireâ attack.

In the 1950s, American counterinsurgents decided to play into Philippine folklore by orchestrating a deadly âvampireâ attack.