Archive (Page 15) • the grugq's newsletter

December 19, 2022

- Emo Philips @EmoPhilipswe’ve solved our killer asteroid problem https://t.co/gzd9t45oMiEcoWatch @EcoWatchAmazon produced enough plastic packaging in 2021...

December 18, 2022

Last newsletter of the year, unless inspiration strikes. - Matthew Green @matthew_d_greenI think we’re about to see an explosion of new end-to-end encrypted...

December 17, 2022

dr4k0nia @dr4k0niaWant to obfuscate strings but need to avoid high entropy? Well after taking some inspiration from a malware sample I wrote a new string...

December 16, 2022

Supply chain now means anything. John Hultquist🌻 @JohnHultquistDetails on a supply chain attack that has hit Ukraine's government. Ukrainian-language Windows...

December 15, 2022

- Davis Blalock @davisblalockHere are all the ways to get around ChatGPT's safeguards: [1/n]9:44 AM ∙ Dec 13, 20226,202Likes1,078Retweets-Kaspersky has some...

December 14, 2022

Administrivia: The holidays are coming up fast and output from the infosec community is slowing down. I will be taking time off as well. I haven’t figured...

December 13, 2022

The last Between Two Nerds of the year was just released. This is a really good discussion on how countries should approach cyber grand strategy. Some...

December 12, 2022

Halvar Flake @halvarflakeA first blog post on Prodfiler internals: How does Prodfiler perform in-production stack unwinding in frame-pointer omitted code,...

December 11, 2022

New Perun - Subscribe now Lodestar Finance (💙,🧡) @LodestarFinanceProtocol was exploited and deposits have been drained. We have set all interest rates to 0...

December 10, 2022

On war and cybers, some thoughts The first reports are now coming out about the offensive cyber operations of the Ukrainian intelligence services. Apparently...

December 9, 2022

Jan Lemnitzer @JanLemnitzerE-government German style: students have finally Ben allowed to apply for grants online, but since the administration was...

December 8, 2022

molly conger @socialistdogmomok never mind it was all worth it just to accidentally stumble across this exchange between a judge, a prosecutor, and a federal...

December 7, 2022

LABScon talks are up on YouTube. Here’s the playlist. - A web page that uses OpenAI’s Whisper and GPT-2 to listen, transcribe, feed to GPT, and then speak...

December 6, 2022

Between Two Nerds: The ethical rules of espionage When "economic gerrymandering" crosses a line... A truly great between two nerds. https://risky.biz/BTN15/...

December 5, 2022

Lukasz Olejnik (@LukaszOlejnik@Mastodon.Social) @lukOlejnikSeems that Microsoft AGAIN calls Ukraine war a 'hybrid war'. That is unfortunate, as this is not...

Cyber. Terrorism. Cyber terrorism.

December 5, 2022

Recently, Danny Moore asked a question about cyber terrorism. His post, and the discussion, is on Mastodon here: Danny Moore: "Because I was triggered by...

December 4, 2022

- Subscribe now - Matthijs R. Koot @mrkootHow Nat'l Govt's & Research Institutions Safeguard Knowledge Development in Science & Tech. (.pdf, Nov 2022, 64pp)...

December 3, 2022

frycos @frycosMy blog post "Pre-Auth RCE with CodeQL in Under 20 Minutes" frycos.github.ioPre-Auth RCE with CodeQL in Under 20 MinutesThis write-up won’t be...

December 2, 2022

Folks, this is bad news. Very, very bad. Hackers and/or malicious insiders have leaked the platform certificates of several vendors. These are used to sign...

December 1, 2022

I started today’s newsletter by typing in “December 1” and then taking five to just repeat “WTF? December? How? WTF…” KT @koczkatamasWe've disclosed two...

November 30, 2022

Dreadnought Holiday @TheDreadShipsIt's a well-known fact that steam engines can be bloody dangerous, what with being powered by water in its angriest phase...

November 28, 2022

Administrivia: Sorry everyone. I’m not sure what happened to make Google decide the November 27 newsletter was a phishing attack. If you didn’t get the...

November 27, 2022

New Perun! - The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber. - b1ack0wl...

November 26, 2022

Eliot Higgins @EliotHigginsThis week, a Russian couple living in Sweden for the past 20 years were arrested, with the husband detained under suspicion of...

November 25, 2022

I spent some time yesterday running #sudo through Facebook's Infer static analyzer. It seems much more strict about dead stores than other analyzers and...

November 24, 2022

Chad Loder @chadloderBREAKING: I have just received evidence of a massive Twitter data breach affecting millions of Twitter accounts in EU and US. I have...

November 23, 2022

The Swedes are rolling up a lot of Russian spies recently. Christo Grozev @christogrozevSwedish couple who immigrated from Russia more than 20 years ago...

November 22, 2022

Lukasz Olejnik on Cyber, Privacy and Tech Policy CritiqueTechLetters Insight. Why would anybody hack Electric Vehicle Charging Stations?A Russian zero-day...

November 21, 2022

- Subscribe now 0xor0ne @0xor0neKernel memory allocator hardening by @Apple kheap, data split, memory sequestering, kalloc_type, temporal safery......

November 20, 2022

Matthijs R. Koot @mrkootWho's behind Rybar? The Bell unmasks one of Telegram's most widely-cited pro-Kremlin military analysis channels (Nov 18)...

November 19, 2022

Lukasz Olejnik @LukaszOlejnik@Mastodon.Social @lukOlejnikWhen cybersecurity cross-sects with policy, defence, even warfare, this calls for additional...

Russian 0day thirst traps

November 19, 2022

Last month a Russian exploit company increased their price offer for Signal RCE exploits to three times the Zerodium rate. What, if anything, does this mean?...

November 18, 2022

Kylie Robison @kyliebytesWhat I’m hearing from Twitter employees; It looks like roughly 75% of the remaining 3,700ish Twitter employees have not opted to...

November 17, 2022

Donie O'Sullivan @donieNEW: Facebook sent a memo to its fact-checkers this afternoon telling them if Trump announces he's running for president tonight they...

November 16, 2022

Watching "Analysis of an in-the-wild Samsung exploit chain" by @maddiestone at #ekoparty The Info Op is a reader-supported publication. To receive new posts...

November 15, 2022

This is insanity. Why can’t Europe fixate on information sharing and public private partnerships instead of banning security research? Lukasz Olejnik...

November 14, 2022

Administrivia: Sorry for the abbreviated newsletter today. I have a paper due and it’s crunch time. Will be back on schedule tomorrow. Subscribe now U.S....

November 13, 2022

New Perun! - Russia wants its GRU illegal back (from Brazil) — fascinating new details here https://www.vg.no/nyheter/i/rlP7Je/russland-hevder-avsloert-...

November 12, 2022

‘Dark Ships’ Emerge From the Shadows of the Nord Stream Mystery | WIRED ‘Dark Ships’ Emerge From the Shadows of the Nord Stream Mystery | WIRED Satellite...

November 11, 2022

Remembrance Day. Doctrine Man @Doctrine_ManNothing says Veteran's Day like Captain Lewis Nixon waking up after a night of celebrating V-E Day with Herman...

November 10, 2022

phil @pncthe dick's sporting goods yeti cooler spam is actually tight as hell from a spam standpoint12:27 AM ∙ Nov 8, 2022231Likes38Retweets - Mastodon...

November 9, 2022

Matthew Burton @matthewburton@mstdn.social @matthewburtonRecently, @ONCD solicited ideas for building a larger, more diverse cyber talent pool. A friend and...

A cool story, buried beneath bollocks

November 8, 2022

How Ukraine learned to cloak its drones from Russian surveillance AeroScopes identify drone operator positions thanks to something called DroneID, a program...

November 8, 2022

Between Two Nerds is a weekly discussion between Tom a Uren and myself. We cover interesting topics, and this week’s show is no exception. Feast your...

November 7, 2022

New Perun! - Japan joins nato cyber defence https://www.theregister.com/2022/11/07/japan_joins_nato_cyber_defence/ And you can join the newsletter! - Dominic...

November 6, 2022

New Lazerpig. The ad is probably the greatest ever made. - The Info Op is a reader-supported publication. To receive new posts and support my work, consider...

November 5, 2022

Spy Blog 🇬🇧 @spyblog#Qatar #Potemkin #WorldCup "Fans paid to be ‘spies’ at World Cup " Free flights, apartments £60 a day etc. Expected to sing and chant and...

November 4, 2022

Friend: oh no, crows have read FM 3-24 Counterinsurgency Sydney Battle @SydneyBattlehuge drama on my block rn. basically my crows got tired of the local...

November 3, 2022

Benedict Evans @benedictevansI wrote something new: Ways to think about a 'metaverse'. What does anyone mean when they say that, and what might happen next?...

November 2, 2022

Alfredo Ortega @ortegaalfredo"We downgraded it from CRITICAL because the small elite of friends we showed this in advance can't write exploits and think...