January 1, 2023
Happy New Year!
Time to get back to regular posting.
-
It’s amusing that one of the better military analysis channels on YouTube is a puppet talking over found footage.
-
International Security and Estonia 2022 – Estonian Foreign Intelligence Service assessment of the threats for 2022 (published on Feb 15th, 2022)
They’re particularly concerned about Russia’s buildup for an invasion of Ukraine.
https://raport.valisluureamet.ee/en/
-
December 22nd, 2022, a group of researchers released ENLBufferPwn or now known as CVE-2022-47949.
It allows remote code execution on many first party Nintendo games such as Mario Kart, Animal Crossing, and more.
Intel via @lukOlejnik
More info:
-
Crazy story. I started with just this image. I used the magic iPhone extract text. And got the pre post post assembly. Then I wanted to see if #ChatGPT could figure it out. It required some #promptengineering but it eventually got there. #ai #hack
raptor @0xdea
-
-
Another cool #IoT #vulnerability #research and #exploitation writeup
HiSilicon DVR hack by @an0n_r0
github.com/tothi/pwn-hisi…
-
You can get fired from a ransomware group. Apparently.
Lockbit ransomware group issued a public apology to SickKids. SickKids is a Canadian based hospital and ranked #1 for Pediatric healthcare.
December 29th, 2022, the pediatric hospital was ransomed. Lockbit has issued the decryptor for free and has allegedly fired the affiliate.
-
Life imitates art: “Inspired by ‘Office Space’ film, Washington software engineer steals over $300K from employer, prosecutors say” cnn.com/2022/12/30/us/…
Seems like he should’ve watched The Wire too
A OneNote document on Castro’s work laptop called “OfficeSpace Project” was found through the investigation, and in it, a “scheme to steal shipping fees,” was outlined, according to the report.
-
As we conclude 2022 we have produced a small slide-show-like video illustrating key moments in malware, cyber crime, and vx-underground.
This is the best-of 2022.
Cheers
-vx-underground staff
*music by @Laughing_Mantis
-
Use “JE”, which is both an integer, and French for “I”.
Paul Vixie @paulvixie
-
You perhaps know @antirez because he’s one of the best Italian #hackers, the author of #hping and #redis.
Well, he recently published a hard sci-fi novel titled #wohpe and it’s very good. There’s also an English version available.
-
A while back I'd done some shallow reverse engineering of Copilot
Now I've done a deeper dive into Copilot's internals, built a tool to explore its code, and wrote a blog answering specific questions and pointing out some tidbits.
thakkarparth007.github.io/copilot-explor…
Do read, might be fun!
Parth Thakkar @parth007_96