Archive (Page 3) • the grugq's newsletter

March 15, 2025 $55000[382291459][wasm]Arbitrary Wasm type confusion is now openhttps://t.co/EbwB5VJeedPoC(exploits the hash collision + type confusion,...

March 14, 2025

March 14, 2025 Some exciting research to share from Binarly REsearchers @cci_forensics and @pagabuc -- a novel approach to UEFI bootkit detection. 🔥Read the...

March 13, 2025

March 13, 2025 Is this memory safety here in the room with us?@halvarflake posted slides for his keynote talk about the recent trends to resolve the problem...

March 12, 2025

March 12, 2025 In-Depth Technical Analysis of the Bybit Hack #Lazarushttps://t.co/chfR1uQ7Wg pic.twitter.com/dqMCJEBpiK— blackorbird (@blackorbird) March 11,...

March 11, 2025

March 11, 2025 In Russia’s cyber ecosystem, even FSB officers aren’t untouchable. CSI fellow @jshermcyber dives into the sentencing of an officer who took...

March 10, 2025

March 10, 2025 Here's RepoMan, a proof of concept surrounding git commit poisoning. The blog post dives a little deeper into how it all works and the...

March 9, 2025

March 9, 2025 Using RDP without leaving traces: the MSTSC public mode https://t.co/TMf3YP5JVS— Nicolas Krassas (@Dinosn) March 7, 2025 Sadly, too many...

March 8, 2025

March 8, 2025 When you struggle with first year linear algebra https://t.co/jF1XzxTBVg— Martin Bauer (@martinmbauer) March 6, 2025 Their task, as assigned by...

March 7, 2025

March 7, 2025 Multi-factor authentication works. From the indictment: 1 of the Chinese hacking teams was unsuccessful in breaking into email accounts of...

March 6, 2025

March 6, 2025 Chinese Great Firewall (website access blockade and. content filter for internet traffic) was leaking data! It's a fascinating discovery of...

March 5, 2025

March 5, 2025 LAZARUS HAS NOW FULLY LAUNDERED THE PROCEEDS OF THE BYBIT HACKThey have transferred 500,000 ETH mainly to native BTC.Thorchain has processed...

March 4, 2025

March 4, 2025 My presentation slides "UEFI Bootkit Hunting: In-Depth Search for Unique Code Behavior" @REverseConf are available online...

March 3, 2025

March 3, 2025 I've just published a new blog post detailing how I developed a deterministic kernel exploit for iOS. Enjoy!https://t.co/ah8qtW0CG5— Alfie...

March 2, 2025

March 2, 2025 🚨 - The @RecordedFuture 2024 Malicious Infrastructure Report is here! I know many of you have been looking forward to this! Insikt Group...

March 1, 2025

March 1, 2025 ‼️ CISA employees have been told to stop tracking Russian cyber threats, according to The Guardian. A recent agency priorities memo "did not...

February 28, 2025

February 28, 2025 Overcoming State: Finding Baseband Vulnerabilities by Fuzzing Layer-2https://t.co/v69u7amI7Qhttps://t.co/fuNHl52m60Dyon Goos & Marius...

February 27, 2025

February 27, 2025 My slides from out of the box con https://strapi.ootb.net/uploads/28_months_later_final_1357291282.pdf All presentation slides from #OOTB...

February 26, 2025

February 26, 2025 PSA #BinDiff for IDA 9.1+ will happen: https://t.co/dIqw27h0is— Christian Blichmann 🇺🇦 (on bksy and Mastodon) (@AdmVonSchneider) February...

February 25, 2025

February 25, 2025 A Ukrainian company has developed an electronic module that uses time of flight (ToF) for navigation independent of GPS.Their system...

February 24, 2025

February 24, 2025 Looks like BlackHat have added the talks from USA 2024 to YouTube.Here's @robHerrera_ and my talk on Listen Up: Sonos Over-The-Air Remote...

February 23, 2025

February 23, 2025 Spyware as a service: Challenges in applying export controls to cloud-based cyber-surveillance software (17 February 2025)...

February 22, 2025

February 22, 2025 Spice86 - A PC emulator for real mode reverse engineering : https://t.co/otjFdgCCjo— Binni Shah (@binitamshah) February 21, 2025...

February 21, 2025

February 21, 2025 recommended reading: OK so I've been reading through the transcripts of the cases where the LLM apparently cheats and wins and, you're not...

February 20, 2025

February 20, 2025 Signals of Trouble: Multiple Russia-Aligned Threat Actors Actively Targeting Signal Messenger | Google Cloud Blog Signals of Trouble:...

February 19, 2025

February 19, 2025 Reviewing the Cryptography Used by Signal - Dhole MomentsLast year, I urged furries to stop using Telegram because it doesn’t actually...

February 18, 2025

February 18, 2025 If you are an APT using CloudFlare as CDN and you see your beacons disappearing every weekend in Spain, it's because football. ISPs are...

February 17, 2025

February 17, 2025 Another pointless weekend project - a playable version of the old 3DMaze screensaver from Windows 9x.I reverse-engineered the original...

February 16, 2025

February 16, 2025 Hackers rejoice!We are releasing the Phrack 71 PDF for you today!Don't forget this year is Phrack's 40th anniversary release! Send in your...

February 15, 2024

February 15, 2025

February 15, 2024 https://vault.fbi.gov/kevin-mitnick/kevin-mitnick-part-01-final/view When I heard Musk say this on Tuesday, my assumption was that it was a...

February 14, 2025

February 14, 2025 Grab a ☕️ and enjoy this weeks EC #59 OUT NOW Steam Deck fun from @quarkslab @retr0reg exploits Llamma.cpp heap bugGorgeous PhysPuppet...

February 13, 2025

February 13, 2025 https://t.co/uDClBBH1DA is awesome! that is all! carry on cybering! :) pic.twitter.com/I87jnm5Dx2— mRr3b00t (@UK_Daniel_Card) February 12,...

February 12, 2025

February 12, 2025 Cyberpunk future is weird Russian criminal organizations have begun using FPV drones to kill their business rivals, the first recorded...

February 11, 2025

February 11, 2025 Russians shot down their own Eleron-3 reconnaissance drone and painted a Ukrainian flag on it in an attempt to receive awards instead of...

February 10, 2025

February 10, 2025 A lot of people don’t know this, but any platform Chrome runs on except iOS has a fully featured Bluetooth scanner that allows viewing,...

February 9, 2025

February 9, 2025 Interesting report from ReversingLabs researchers, who named a new attack nullifAI, a novel malware distribution technique targeting ML...

February 8, 2025

February 8, 2025 02 releases "AI Granny" to hijack your scam calls and frustrate the scammers into agony. This should be a service that ALL major service...

February 7, 2025

February 7, 2025 Snooper's Charter realized. "The British government’s undisclosed order, issued last month, requires blanket capability to view fully...

February 6, 2025

February 6, 2025 I think this sort of thing is good. Governments need these tools but there must be consequences for abuse. That will help keep the end users...

February 5, 2025

February 5, 2025 0x08 - Modern Windows Kernel Race Conditions : https://t.co/Wz1M7jlZ22 0x07 - Introduction to Windows Kernel Race Conditions :...

February 4, 2025

February 4, 2025 Interview with @Adam_pi3 and me about LKRG, in English https://t.co/TN7B3OKJHj and Polish https://t.co/TFdCuQ49XI— Solar Designer...

February 3, 2025

February 3, 2025 We're super stoked to publish this post. A huge shoutout to our former intern, @rainbowpigeon_ who poured his heart & soul into this 7-8...

February 1-2, 2025

February 2, 2025

February 1-2, 2025 Today, I'm releasing the first version of a small web 🚀: https://t.co/WZMsLWpGEKIt provides IOCs and YARA rules collected semi-...

January 31, 2025

February 2, 2025

# January 31, 2025 a 2005 study found an autistic reindeer herder in siberia that didnt like being around people but memorized the entire genealogical and...

January 30, 2025

February 2, 2025

January 30, 2025 Wiz Research Uncovers Exposed DeepSeek Database Leaking Sensitive Information, Including Chat History | Wiz BlogA publicly accessible...

January 29, 2025

January 29, 2025 ''GitHub - mandiant/flare-vm: A collection of software installations scripts for Windows systems that allows you to easily setup and...

January 28, 2025

January 29, 2025

January 28, 2025 SLAP and FLOPThe SLAP and FLOP Address and Value Prediction Attacks Lazarus Group Deploys Electron-Based Malware to Target Cryptocurrency...

January 26, 2024

January 27, 2025

January 26, 2024 Logon scripts are as old as Active Directory....yet I still see numerous misconfigurations during internal pentests. Back in 2023 I did some...

January 25, 2025

January 27, 2025

January 25, 2025 I never imagined this concept.#bugbountytips pic.twitter.com/AITLKca5Dr— H4x0r.DZ (@h4x0r_dz) January 24, 2025 A PoC for Early Cascade...

January 24, 2024

January 27, 2025

January 24, 2024 Concrete example of the difference between theory and practice in systems engineering:When we were designing the storage system at @Dropbox...