The Info Op

Share this post

The Info Op
The Info Op
April 14
Copy link
Facebook
Email
Notes
More

April 14

the grugq
Apr 14, 2022

Share this post

The Info Op
The Info Op
April 14
Copy link
Facebook
Email
Notes
More
Share

China is fucking around with US satellites. I thought Space Force was supposed to be protecting them?

“China ‘Decodes’ An Orbiting US Satellite; Claims Expertise In Automatically Detecting & Fixing Security Flaws In Outer Space”

https://eurasiantimes-com.cdn.ampproject.org/c/s/eurasiantimes.com/china-decodes-an-orbiting-us-satellite-claims-expertise-in-automatically-detecting-fixing-security-flaws-in-outer-space/

There is a chance that, like… maybe vigilantes are going too far.

Hacking Russia space agency’s monitoring systems and bricking them seems not at all nice.

Twitter avatar for @WeldPond
Chris Wysopal @WeldPond
Western hackers have turned RU's own ransomware against it in a cyber attack on the country's space agency. Network Battalion 65 posted images of server info that it claimed to show it had shut down a monitoring system used by the Russian space agency.
telegraph.co.ukRussia’s space programme hit by western cyber attackA group linked to the cyber hackers Anonymous have admitted to stealing files from the Russian space agency, Roscosmos
7:24 PM ∙ Apr 13, 2022
18Likes25Retweets

An interesting thread on cyberwar and infrastructure hacking within the context of war. There is some lumping together of the… cyberwar is like nuclear people, and the rest of us. But I’ll overlook that.

Twitter avatar for @seanlawson
Sean Lawson 🇺🇦🌻 @seanlawson
There's a lot of buzz in the cyberwar twitterverse the last 24 hours about the thwarted Russian power grid hack. It's reported that if it had succeeded, it could have impacted up to 2 million people. That would not be good. It's good that it was stopped. BUT... 1/
4:04 PM ∙ Apr 13, 2022
19Likes8Retweets

A Russian naval vessel was involved in an anti-ship missile incident. The ship’s ammunition underwent a rapid state transition into hot gas, leading to a promotion from large cruiser to large semi-submersible.

The Moskva, blew up. There is actually room for debate over whether this is the result of enemy action, or just Russia’s poor track record of naval vessels randomly self destructing.

Twitter avatar for @BretDevereaux
Bret Devereaux @BretDevereaux
Amazing that when a key Russian warship blows up in a war zone, sober commentators have to admit that, given the Russian record on naval safety and maintenance, it might not have been attacked at all. Could have blown itself up. Picked an unwise fight with a drydock. 🤷‍♂️
2:36 AM ∙ Apr 14, 2022
3,515Likes405Retweets

The time the IRA botched a hit on an informer hiding in New York City.

https://www.nytimes.com/2022/04/13/nyregion/cruxy-oconnor-ira-spy-wednesday.html

A REcon talk from 2018 on amazing hackery.

Twitter avatar for @travisgoodspeed
Travis Goodspeed @travisgoodspeed
Holy hell was this a good lecture. Elias made Starcraft Remastered backward compatible with memory corruption exploits that targeted the original game, at a commercial scale!
Twitter avatar for @0xeb
Elias Bachaalany @0xeb
At last, my talk "StarCraft Remastered: Emulating a buffer overflow" @ REcon 2018 (Brussels) is now available: https://t.co/Sw1Odw3CFf
3:54 AM ∙ Apr 14, 2022
31Likes7Retweets
Twitter avatar for @0xeb
Elias Bachaalany @0xeb
At last, my talk "StarCraft Remastered: Emulating a buffer overflow" @ REcon 2018 (Brussels) is now available:
youtube.comREcon 2018 - StarCraft Remastered: Emulating a buffer overflow for fun and profit.Turning a buffer overflow bug back into a feature. Slides: https://recon.cx/2018/brussels/resources/slides/RECON-BRX-2018-Starcraft-Emulating-a-buffer-overfl...
10:52 PM ∙ Apr 13, 2022
113Likes34Retweets

Lots more excitement over ICS malware. Dragos is involved. There is the usual behind the scenes drama. Interesting to note that this malware is not the stuff that was pulled off the electrical substation on April 8th. It is, instead, a new in box malware. A real collectors item now.

Twitter avatar for @selenalarson
Selena @selenalarson
Now that is quite an assessment: "INCONTROLLER poses the greatest threat to Ukraine, NATO member states, and other states actively responding to Russia's invasion of Ukraine."
mandiant.comINCONTROLLER: New State-Sponsored Cyber Attack Tools Target Multiple Industrial Control SystemsThis ICS threat represents an exceptionally rare and dangerous cyber attack capability.
8:28 PM ∙ Apr 13, 2022
11Likes9Retweets

Sample available here

https://samples.vx-underground.org/APTs/2022/2022.04.13/

You would think that the DoD head of counterintelligence getting fired for having multiple affairs would be a bigger story. You would like to think that…

https://thedebrief.org/sex-lies-and-ufos-pentagons-head-of-counterintelligence-and-security-ousted/

Delicious serendipity. A postage stamp with “Russian warship, go fuck yourself!” and a picture of said warship, was released on the day the very same ship was sunk.

Русский военный корабль, иди на хуй

Twitter avatar for @OstapYarysh
Ostap Yarysh @OstapYarysh
An interesting detail — yesterday, the Postal service of #Ukraine️ presented a new series of postage stamps “Russian warship, go f*ck yourself”. And guess what? The ship in the picture is Russian missile cruiser #Moskva, the Black Sea Fleet flagship that was destroyed today.
Image
Image
3:28 AM ∙ Apr 14, 2022
5,978Likes1,256Retweets

A look at how Chinese citizens evade Chinese censors. Fascinating.

Twitter avatar for @ThisIsWenhao
Wenhao @ThisIsWenhao
It's gone unnoticed by many. So I felt like I should properly document what just happened on Weibo today. Netizens in China, for just a few hours, got to unleash their wrath on the Chinese government for how they handled the Covid crisis in Shanghai and other social issues.
10:57 PM ∙ Apr 13, 2022
13,069Likes4,036Retweets

A black college is now bankrupt and shutting down after a ransomware attack. Fuck ransomware assholes.

Русский вымогатель, иди на хуй

Twitter avatar for @palewire
Ben Welsh @palewire
A buried lead: This small Illinois college serving black students is slated to close following a ransomware attack on its admissions systems. chicagotribune.com/news/ct-lincol… Would love to see somebody in the national tech media pick this up.
chicagotribune.comWanted: Donor with $50 million to help halt closing of Lincoln College in central Illinois. Deadline: Now.The school, founded in 1865, has seen its finances devastated by the pandemic and a ransomware attack. If a hefty donation doesn’t come soon, its fate will be sealed.
10:52 PM ∙ Apr 13, 2022
74Likes78Retweets

The new Seriously Risky Business is out. Absolutely worth a read.

Twitter avatar for @tomatospy
Tom Uren @tomatospy
This week's SRB: - Critical infrastructure attack own goals - Pokemon Go, but for war zones - Don't solve the same problem three times Thanks to @mcdaidc, @jfslowik and Prof Harsh V Pant of the @orfonline for their thoughts. srslyriskybiz.substack.com/p/srsly-risky-…
Image
3:08 AM ∙ Apr 14, 2022
12Likes2Retweets

A little more information on how the Ukrainians caught the wiper attack against the substation.

Twitter avatar for @VZhora
Victor Zhora @VZhora
@LenMaschmeyer @thegrugq CERT-UA got a tip from private sector on potential wiper risk. The rest was found directly during research process.
12:15 PM ∙ Apr 14, 2022
14Likes3Retweets

And another hint:

Twitter avatar for @lukasmaeder
Lukas Mäder @lukasmaeder
@VZhora @LenMaschmeyer @thegrugq So this could be the reason why the CERT-UA also thanked Microsoft in their report :)
12:58 PM ∙ Apr 14, 2022

An op-ed giving some response options for cyber attacks.

Here’s how the U.S. should respond to any Russian cyberattacks

https://www.washingtonpost.com/outlook/2022/04/15/us-russia-cyber-attacks/

Share this post

The Info Op
The Info Op
April 14
Copy link
Facebook
Email
Notes
More
Share

Discussion about this post

No posts

Ready for more?

© 2025 the grugq
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great culture

Share

Copy link
Facebook
Email
Notes
More