Archive (Page 2) • the grugq's newsletter

February 12, 2025

February 12, 2025 Cyberpunk future is weird Russian criminal organizations have begun using FPV drones to kill their business rivals, the first recorded...

February 11, 2025

February 11, 2025 Russians shot down their own Eleron-3 reconnaissance drone and painted a Ukrainian flag on it in an attempt to receive awards instead of...

February 10, 2025

February 10, 2025 A lot of people don’t know this, but any platform Chrome runs on except iOS has a fully featured Bluetooth scanner that allows viewing,...

February 9, 2025

February 9, 2025 Interesting report from ReversingLabs researchers, who named a new attack nullifAI, a novel malware distribution technique targeting ML...

February 8, 2025

February 8, 2025 02 releases "AI Granny" to hijack your scam calls and frustrate the scammers into agony. This should be a service that ALL major service...

February 7, 2025

February 7, 2025 Snooper's Charter realized. "The British government’s undisclosed order, issued last month, requires blanket capability to view fully...

February 6, 2025

February 6, 2025 I think this sort of thing is good. Governments need these tools but there must be consequences for abuse. That will help keep the end users...

February 5, 2025

February 5, 2025 0x08 - Modern Windows Kernel Race Conditions : https://t.co/Wz1M7jlZ22 0x07 - Introduction to Windows Kernel Race Conditions :...

February 4, 2025

February 4, 2025 Interview with @Adam_pi3 and me about LKRG, in English https://t.co/TN7B3OKJHj and Polish https://t.co/TFdCuQ49XI— Solar Designer...

February 3, 2025

February 3, 2025 We're super stoked to publish this post. A huge shoutout to our former intern, @rainbowpigeon_ who poured his heart & soul into this 7-8...

February 1-2, 2025

February 2, 2025

February 1-2, 2025 Today, I'm releasing the first version of a small web 🚀: https://t.co/WZMsLWpGEKIt provides IOCs and YARA rules collected semi-...

January 31, 2025

February 2, 2025

# January 31, 2025 a 2005 study found an autistic reindeer herder in siberia that didnt like being around people but memorized the entire genealogical and...

January 30, 2025

February 2, 2025

January 30, 2025 Wiz Research Uncovers Exposed DeepSeek Database Leaking Sensitive Information, Including Chat History | Wiz BlogA publicly accessible...

January 29, 2025

January 29, 2025 ''GitHub - mandiant/flare-vm: A collection of software installations scripts for Windows systems that allows you to easily setup and...

January 28, 2025

January 29, 2025

January 28, 2025 SLAP and FLOPThe SLAP and FLOP Address and Value Prediction Attacks Lazarus Group Deploys Electron-Based Malware to Target Cryptocurrency...

January 26, 2024

January 27, 2025

January 26, 2024 Logon scripts are as old as Active Directory....yet I still see numerous misconfigurations during internal pentests. Back in 2023 I did some...

January 25, 2025

January 27, 2025

January 25, 2025 I never imagined this concept.#bugbountytips pic.twitter.com/AITLKca5Dr— H4x0r.DZ (@h4x0r_dz) January 24, 2025 A PoC for Early Cascade...

January 24, 2024

January 27, 2025

January 24, 2024 Concrete example of the difference between theory and practice in systems engineering:When we were designing the storage system at @Dropbox...

January 27, 2025

January 27, 2025 I need to confirm, but I think there’s another strategy to exploit a file UAF. You have to do what’s shown here https://t.co/8vEoH5gh9F but...

Quick Update on the Newsletter Issues

January 26, 2025

Hi, Thank you to everyone who flagged the recent issues with the newsletter. It’s good to know people are reading and care enough to let me know when things...

January 23, 2024

January 23, 2025

January 23, 2024 The third article (62 pages) of the Exploiting Reversing Series (ERS) is available on:https://t.co/UuOt1aLcNXI would like to thank Ilfak...

January 22, 2025

January 22, 2025 A bug in Cloudflare (and just the nature of how CDNs work) let an attacker learn the broad location of Discord, Signal, Twitter users by...

January 21, 2024

January 21, 2025

January 21, 2024 🚨Just in, I can't believe it! UK just released Kim Philby’s interrogation docs! Philby, a top British intelligence officer turned Soviet...

January 20, 2025

January 20, 2025 Weekend (2025) papers:QMSan: Efficiently Detecting Uninitialized Memory Errors During Fuzzinghttps://t.co/riwZuOMqFiInvivo Fuzzing by...

January 19, 2025

January 19, 2025 TikTok thoughts The second order effects of banning TikTok will be very interesting.Personally, I think people are missing the real threat...

January 18, 2025

January 18, 2025 Chinese hackers broke into 400 Treasury department computers Treasury hacked by exploiting trust relationship with BeyondTrust. lol...

January 17, 2025

January 17, 2025 Today brings us the Biden administrations last Executive Order on cyber. It contains some improvements to policy surrounding emerging...

January 16, 2025

January 16, 2025 #DOOM is now playable in a PDF file 🎮 pic.twitter.com/gzOxuheAId— Culture Crave 🍿 (@CultureCrave) January 15, 2025 Made by Github user...

January 15, 2024

January 15, 2025

January 15, 2024 Wild that the Senate Armed Services Committee, in its questions to Pete Hegseth, asked him whether Salt Typhoon was an act of war:...

January 14, 2025

January 14, 2025 Already 1.7 million views and 19k likes in 19 hours... And of course the mentioned .exe is not seems malware at all.🤷‍♂️...

January 13, 2025

January 13, 2025 Academic work on honeypots and deception are often kinda disappointing, but this paper by @debi_ashenden and Reeves is worth the skim...

January 12, 2025

January 12, 2025 Ships Must Practice Celestial Navigation An interesting point here, actually. The Navy conducts live-fire weapons drills, damage control...

January 11, 2025

January 11, 2025 [POC2024]An insider perspective on the offensive industryhttps://t.co/RYKwC1MAkp@qwertyoruiopz— xvonfers (@xvonfers) January 10, 2025 Just...

January 9-10, 2025

January 10, 2025

January 9-10, 2025 From https://t.co/XFEpKzhGim pic.twitter.com/b6HXJIy5FL— Alberto Acerbi (@acerbialberto) January 9, 2025...

January 8, 2025

January 8, 2025 Hundreds of police license plate cameras are misconfigured to stream to the open internetA privacy researcher took these streams and turned...

January 7, 2024

January 7, 2025

January 7, 2024 AWS introduced same RCE vulnerability three times in four years https://t.co/Ooljsa6Nji— /r/netsec (@_r_netsec) January 4, 2025 How to become...

January 6, 2025

January 6, 2025 https://archive.ph/2025.01.05-232824/https://www.wsj.com/tech/cybersecurity/typhoon-china-hackers-military-weapons-97d4ef95?st=4zK2ke Ollie...

January 5, 2025

January 5, 2025 False alarm.It's porn: https://t.co/rckofBv3N7 https://t.co/Q0UgAxpJsz— Proton (@ProtonPrivacy) January 3, 2025 John Regehr: "meta's AI...

January 4th, 2025

January 4, 2025

January 4th, 2025 CF Hero CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web...

January 3, 2025

January 3, 2025 Interested in all the new macOS malware of 2024!? 🍎🐛I've started my annual "The Mac Malware of " report.Each day, I'll be adding details of a...

January 2, 2025

January 2, 2025 From fault injection to RCE Analyzing a Bluetooth tracker by Nicolas Oberlihttps://t.co/AkGMEAyJOuhttps://t.co/lgwhI1Zb2a...

January 1. 2025.

January 1, 2025

January 1. 2025. Anyone that ever opened a PE file in ida knows this is bullshit, without reading a single line of 7z code https://t.co/2nJZoSX30o...

December 31, 2024

December 31, 2024 Happy New Year! By popular demand, as promised, I compiled a short thread of the funniest and most absurd of Russia's recent arsons (with a...

December 29-30, 2024

December 30, 2024

December 29-30, 2024 During the US Election 2020, on Facebook, misinformation (strictly defined) spread more slowly than true information, mostly relying on...

December 28, 2024

December 28, 2024 NEW: Data-loss prevention startup Cyberhaven said hackers took over its official Chrome extension, pushing a malicious version designed to...

December 26-27, 2024

December 27, 2024

December 26-27, 2024 Last month @ASU I presented my work on formalizing automated bug discovery, developing a framework to characterize the full spectrum of...

December 25, 2024

December 25, 2024 As much as I love fail2ban, I love @drk1wi's portspoof even more :phttps://t.co/s0sQnW2tlY https://t.co/IP9Jc65CBs...

December 24, 2025

December 24, 2024

December 24, 2025 JUST IN: DPRK-related addresses have swapped nearly $200k via MetaMask, who has profited $1,985 in swap fees.Ya'll, DPRK doesn't trade....

December 23, 2024

December 23, 2024 Happy war on Christmas to all who celebrate. in case you didn't know, this is how you're actually supposed to do software versioning...

December 22, 2024

December 22, 2024 Just dropped my latest paper on kernel callbacks in Windows. It breaks down key internals and explores how red teamers can exploit them and...