Archive (Page 3) • the grugq's newsletter

August 9, 2024 wow. an amazing 325 page google strategy document quietly unsealed buried in google antitrust docket. It's gonna take a long thread but I have...

August 8, 2024 I’m no military security expert (ok, yes I am) but it seems like using Discord for critical comms is bad? Two more videos of Russian soldiers...

The Hostile Hotel

The Hostile Hotel Actually, it's good that hotels announced room searches Some hotels in Vegas have alerted their guests there will be daily room searches to...

August 6-7, 2024

August 6-7, 2024 Crowdstrike BSOD is actually exploitable for LPE.. https://t.co/OwT68CjDS0 pic.twitter.com/ErQAtzoYvN— Richard Johnson (@richinseattle)...

August 5, 2024 Nicholas Carlini is one of the sharper people I have ever met and I pay attention to anything he writes; this, on day-to-day utility of LLMs,...

August 4, 2024 LayeredSyscall – Abusing VEH to Bypass EDRs : https://t.co/PWlPoiLZm9 Bypassing AV/EDR Hooks via Vectored Syscall - POC Vectored Syscall :...

August 3, 2024 Seems like the Docker Escape (CVE-2024-6222) that our team members, @st424204 ,@n0psledbyte & @tuanit96 presented at Pwn2Own is finally fixed....

August 2, 2024 The first version of Arcane, formerly known as PowerRemoteDesktop is now available. For those unfamiliar with the project, Arcane is a fully...

August 1, 2024 I found an old iOS reversing guide I wrote a few years ago, it's a bit dated but I think it's still useful ☺️ https://t.co/kPaHN7zdNv— Ghidra...

July 31, 2024 I’m thrilled to share my latest blog post! This one focuses on the bug hunting process: inspiration, approach, and execution. I also provide a...

July 30, 2024 A few days ago we were alerted to Roblox 'cheaters' (we're using that term loosely) being impacted by malicious code in their 'cheat tool'....

July 29, 2024 True for FPV drone vs FPV drone? https://t.co/2KCorOr9F2— Dave Aitel (@daveaitel) July 28, 2024 This is cool, I guess. Too bad defcon is...

July 28, 2024 Activision Blizzard released a 25 white page document that includes an amazing A/B test where they secretly progressively turned off SBMM and...

July 27, 2024 In case you’ve missed the JD Vance couch memes, here is a good summary thread. Thread by @TeddyRoosevalt on Thread Reader App – Thread Reader...

July 26, 2024 1/ A world first reverse engineering analysis of AWS Session Tokens. Prior to our research these tokens were a complete black box. Today, we...

July 25, 2024 As we all know, drones have completely revolutionised everything. Even sports teams’ spying on their competitors. Canadian women's soccer team...

July 24, 2024 Since it turns out there's interest in cyber war stories, let me give you a cyber and war story combined and drop another bomb. Literally...

July 23, 2024 New from 404 Media: the DHS has bought a dog-like robot that can DDoS internet of things items inside peoples' homes. "Carries an onboard...

July 22, 2024 https://www.reuters.com/technology/microsoft-says-about-85-million-its-devices-affected-by-crowdstrike-related-2024-07-20/ The world’s...

July 21, 2024 Microsoft on CrowdStrike-related outage: About 8.5 million Windows devices were affected by faulty Falcon update, or less than 1% of Windows...

July 20, 2024 Do Social Media Influencers spread misinformation? Short answer: No. https://t.co/3yeAKUzocY— Alberto Acerbi (@acerbialberto) July 19, 2024...

July 19, 2024 Another research (from Trento colleagues @marcotonin @brulepri @mtizzoni) suggesting that offline partisan isolation, both considering physical...

July 18, 2024 Indeed, the introduction of Mozilla’s privacy-preserving advertisement attribution has been a PR disaster and a major failure. It is clear that...

July 17, 2024 Excited to publish a new report on a linux kernel eBPF vulnerability. CVE-2024-41003https://t.co/ZfHbgclUtA We found this (a month ago) with...

July 16, 2024 Exclusive: Kaspersky Lab is closing its US division and laying off all workers associated with it. The move follows the US Commerce...

July 15, 2024 Here is a solid data driven analysis of LLM's ability to identify software vulnerabilities introduced in a new benchmark that is dynamically...

July 14, 2024 I think OpenAI is just trolling the AI doomers now. https://t.co/1MQZ4NAGND pic.twitter.com/BCkucxaAPu— Matthew Green (@matthew_d_green) July...

July 13, 2024 The joke: They should release a deepfake of Biden being coherent.— thaddeus e. grugq (@thegrugq) July 12, 2024 The entirely serious suggestion:...

July 12, 2024 There's something special about this McDonald's advertisement. Did you catch it? It contains what is known as a split-second phantom attack. A...

July 11, 2024 Beijing accused of misusing Western research to claim Volt Typhoon is a ransomware group https://t.co/e0gjPRdacn @TheRecord_Media &...

July 10, 2024 I encountered a delightful little astrodynamics proof last week when an astronaut casually stated it as a fact, and when I looked skeptical, he...

July 9, 2024 Reverse Engineering TicketMaster's Rotating Barcodes (SafeTix) Reverse Engineering TicketMaster's Rotating Barcodes (SafeTix)“Screenshots won’t...

July 8, 2024 Any discussion of NAT without introducing netfilter sounds like a networking cargo cult. If you really want to understand NAT, you should just...

July 6-7, 2024 Delay due to being too damn sick to do anything. So now that Nvidia has far outstripped the market cap of AMD and Intel, I thought this would...

July 5, 2024 Estimating the air speed of an unladen swallow https://style.org/unladenswallow/ pic.twitter.com/6CkrqbsAJt— Alex Tabarrok 🛡️ (@ATabarrok) July...

July 4, 2024 Bindependence Day Vote Count Bin Face! Finnish national police comissioner on recent infrastructure related incidents: "something is happening...

July 3, 2024 We’re honoured to welcome the new team to the Gecko family 🦎 https://t.co/VJPAyEhQVD— Binary Gecko (@Binary_Gecko) July 2, 2024 Today...

July 2, 2024 The woman who predicted the Tết Offensive, but was ignored, passes away at 97 https://t.co/KAqs9OTvcD— Task & Purpose (@TaskandPurpose) July 1,...

July 1, 2024 Pre Auth RCE in OpenSSH. https://www.openwall.com/lists/oss-security/2024/07/01/3 The award-winning Qualys Threat Research Unit (TRU) has...

June 30, 2024 In case you're interested in EQGRP malware, you should take a look at this memory dump of an SBZ implant uploaded from Panama today@X__Junior...

June 29, 2024 q3k :blobcatcoffee:: "It's finally happened! NEWAG IP Management just s…" - Warsaw Hackerspace Social ClubAttached: 1 image It's finally...

June 28, 2024 maybe the funniest explanation for a recall i’ve seen pic.twitter.com/99Ws47l7Dk— beer person (@CantEverDie) June 27, 2024 “Teslas are...

June 27, 2023 Spy in Sweden doesn’t have to pay taxes on his payments from GRU. There you go people, finally a way to earn a tax free income in Scandinavia!...

June 26, 2024 AI associated platforms are one of my 1st targets on internal pentests and red team tests atm. Training web UIs, model GUIs, AI associated web...

June 25, 2024 Today, Julian Assange made a plea deal with the US government. Assange will plead guilty to a felony charge for his role in a major breach of...

June 24, 2024 Thoughts on Strategy, War and AI - by Dr. Heather M. RoffSelf-Reflection, Deception, and Degradation of "The People" (or political and...

June 23, 2024 Memory sealing for the GNU C Library [LWN.net] https://criu.org/Main_Page We recently reported a v8 sbx escape that control RIP directly....

June 22, 2024 “The National Crime Agency (NCA) is weighing up the possibility of taking retaliatory action against Qilin, the Russian-based ransomware gang...

June 21, 2024 New Project Zero blog post by Sergei Glazunov and Mark Brand: Project Naptime: Evaluating Offensive Security Capabilities of Large Language...

June 20, 2024 Kraken Security Update: On June 9 2024, we received a Bug Bounty program alert from a security researcher. No specifics were initially...