Archive (Page 25) • the grugq's newsletter

Brian in Pittsburgh @arekfurtI'm not sure people understand the reason having a functional, capable, independent, dedicated cybersecurity incident...

Good read. Judge Russian cyber on their own understanding of cyber, not on ours. The Info Op is a reader-supported publication. To receive new posts and...

Hillel Neuer @HillelNeuerEmotional moment today as one of the longest-serving former members of the U.N. Human Rights Council (left) meets one of the newest...

Ryanair Flight FR4978 The report on Belarus’ rerouting Ryanair flight FR4978 to abduct an activist is now out. https://www.icao.int/Security/Pages/FFIT.aspx...

My keynote presentation on the Russian cyberwar in Ukraine. - The Info Op is a reader-supported publication. To receive new posts and support my work,...

Carole Cadwalladr @carolecadwallaMy jaw hit the floor when I discovered Boris Johnson left an emergency NATO meeting after the Kremlin’s chemical warfare...

Good analysis on problems with the phrase “zero trust.” It’s not the best for getting buy in from end users, and why that matters. 'Zero Trust' security is a...

Heather Adkins - Ꜻ - r00t folding team #258829 @argveeExcited to announce the inaugural DHS CISA Cyber Safety Review Board’s findings on the Log4j event of...

A pretty good idea. Huawei is owning the Linux kernel security bug contest… or as I’ve recently begun calling it, Linux kernel plus security bugs. Patrick...

Some basic numbers on ransomware which seem to be maybe reasonable? Measuring one of the most lucrative parts of the infosec industry and the driver for so...

A great fact check on the misplaced nostalgia for USIA. I’ll admit to not knowing enough about the organisation, just thinking that it was the closest thing...

This is amazing and I think they should’ve done it as just a sport performance without the gambling. Fake IPL in Gujarat village dupes Russian punters |...

the murmurings linking the Predatory Sparrow attack with Israel have been loud enough to prompt a response from the Israeli government.According to Israeli...

Dreg @therealdregported idapython IDA-VMware-GDB by @d_olex to python3 + idapython 7.4. Helper script for Windows kernel debugging with IDA Pro on VMware +...

wrongbaud @wrongbaudHappy Friday! Looking to learn a little more about #ghidra or software RE? Here is a quick thread with some resources that I've put...

All warfare is based… — Sun Tzu - Argha 🏏 📚 💻 @StringsVsAtoms“Laws can change. Social rules can change. The perfectly harmless conversation you had yesterday...

According to IBM X-Force, TrickBot group has been systematically attacking Ukraine since the invasion. Unprecedented Shift: The Trickbot Group is...

Important analysis of the lessons learned so far on cyber in Ukraine. European Cyber Conflict Research Initiative @EuropeanCyberWhat lessons can we draw from...

Lets start with a lol The message below was meant to start an embargo for the issue, but it was CC'ed to netfilter-devel, which is a public mailing list, so...

Happy long weekend to all the Americans. - Andrew Nadeau @TheAndrewNadeauebay: you need to list if your item is used or new theseus (sobbing, just trying to...

Event-level prediction of urban crime reveals a signature of enforcement bias in US cities. Event-level prediction of urban crime reveals a signature of...

This is interesting. The TV hacking has escalated in Ukraine, a channel was hacked to play Russian propaganda. The group responsible , XakNet, has been...

MIT Technology Review @techreviewWe asked Meta, Twitter, Google, TikTok, and Reddit how they will moderate abortion content and handle subpoenas and warrants...

Rolf Degen @DegenRolfLandmark psychology experiment that indicated how easy it is to plant false memories in people's minds about getting lost in a shopping...

TV hacking June 28 There is a bit of tit for tat TV hacking going on between Russian and the collective Ukraine cyber forces. The most recent was a foiled...

Carla Notarobot 🤖👩🏻‍💻 @CarlaNotarobotyou can get a really cool black wallpaper on your Linux machine just by typing 'sudo rm -rf /'3:44 PM ∙ Jun 27,...

Some “hacktivists” *cough* *cough* have trashed steel works in Iran. Their justification is ridiculous — “these plants are sanctioned” which they claim makes...

Alfred Anaya Put Secret Compartments in Cars. So the DEA Put Him in Prison. (2013) I love the creativity of how these stash boxes work. He Put Secret...

clearbluejar @clearbluejarCheers to @itm4n for inspiration, @topotam77 for PetitPotam, and @tiraniddo for NtObjectManager. New post detailing #RPC auditing...

For some research I’ve been rereading “Unrestricted Warfare” and the thinking always seems so fresh and current. the new concept of weapons is a view of...

Big deal hack and leak operation by Anonymous via DDoSecrets — Ecuadorian Embassy Hack In Russia Details Discussions On Snowden....

“I learned it from watching you!” Matthijs R. Koot @mrkootU.S. DOJ: Deputy U.S. Marshal charged w/unlawfully obtaining cell phone location info (Jun 14)...

Linux rootkit adore-ng is alive and well. Stealth wrote that code 20 years ago, and it is still going. https://decoded.avast.io/davidalvarez/linux-threat-...

This is fascinating insight into the psyche of the average Russian. toomas hendrik ilves @IlvesToomasAn interesting take on Russia and Russians by a Russian...

Amazing work, as we have come to expect, from Kim Zetter. Zero DayWhat It Means that the U.S. Is Conducting Offensive Cyber Operations Against Russia When...

B. Dave Walters: I Say Words About Things @BDaveWaltersSCIENCE 9:36 AM ∙ Jun 17, 20221,259Likes397Retweets - Military Pigeons @MilitaryPigeonsRAF Pigeon...

I love this Dave Aitel video. - Great follow up thread on yesterday’s GRU illegal. Aric Toler @AricTolerDutch and Ukrainian intelligence are the two services...

Crazy story of the Indian police and hacking and all. Thomas Rid @RidTAbsolutely wild story that has it all: hacking, an extraordinary integrity attack, with...

In theory, and in the lab at least, this is a cool little attack. Intel is super skeptical it’s a big deal for many ppl. Who knows? It’s a bit early to make...

Quantified Failure

Data Driven Intelligence When planning regime change it is useful to know a bit about the target country’s population. How will they feel about the invasion...

During WW2 enemy beaches had to be surveyed and mapped. There was a top secret group of elite cartographers and surveyors who were up to the task! To carry...

Calum E. Douglas @CalumDouglas1Without actually understanding applied mathematics to a good level you cant win a world war. This is one of the most important...

Another reminder of how difficult it is to maintain good OPSEC for long periods of time. Mistakes are fatal, and inevitable. The better way to run a secret...

Great article on ancient warfare. I know you all subscribe for the history, so you’ll love this. https://www.historytoday.com/archive/history-matters/no-...

[Ed: the end of RSAC week. The internets are out of cybers. They just need a glass of milk and a nap, and they'll be ready to go…] Farida Rustamova...

Userland Rootkits are Lame

Many people may not know this, but fifteen…twenty years ago I knew a thing or two about rootkit development. I wrote detection software for a few years as...

A userland rootkit is pretty weak. There are some easy ways to detect it. The simplest is to just use a staticky linked binary, like busybox, rather than the...

On June 5 Russians took over a streaming TV service in Ukraine and for ten minutes replaced the England v Wales football match with Russian propaganda. Cyber...

Probably the big article of the day, this one on CIA hacking. The Surreal Case of a C.I.A. Hacker’s Revenge | The New Yorker A hot-headed coder is accused of...

Wow Runa Sandvik @runasandAnne-Elisabeth Hagen, wife of Norwegian billionaire Tom Hagen, disappeared without a trace from her home near Oslo on 31 October...