Seized cameras, electronic equipment and GPS transmitters, which the suspects planned to PLACE ON transports with the equipment. To aid in its localisation….?
Lukasz Olejnik (@LukaszOlejnik@Mastodon.Social) @lukOlejnik
-
Exchange bug is apparently pretty sweet. RCE with invisible emails.
https://github.com/sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAY
-
This ICMP bug raised quite a bit of interest in certain circles, but exploitation seems to be in the theoretical stage for now.
-
🚨 NEW Blog from @Mandiant 🚨
Suspected Chinese Threat Actor (#UNC3886) involved in Espionage Operations.
mandiant.com/resources/blog…
🧵
-
Latest post for my Journalist and Spy newsletter is about Peruvian journalist Vicky Peláez. In 2010, Peláez, her husband and eight others were arrested by the FBI for carrying out long-term, deep-cover assignments in the U.S. on behalf of Russia.
-
New: hacker who allegedly breached a U.S. federal law enforcement tool that let them look up info on "anyone in the US" was on-the-run. Now found he's been arrested in Florida
-
Fuzzing a formally verified compiler for six CPU years: Found unbreakable.
From [PLDI'11] "Finding and Understanding Bugs in C Compilers" by Yang, Chen, Eide, and Regehr: users.cs.utah.edu/~regehr/papers…
@mboehme_ CompCert contains/contained unverified parts for builtin handling, in which we have found bugs.
Paper:
https://www.manuelrigger.at/papers/GCCBuiltins-ESECFSE19-preprint.pdf
-
Amazing work by @Reuters: An insider account of Wagner Group, the convict army feeding men into the "meat grinder" of Russia's war in Ukraine.
reuters.com/investigates/s…
-
Father of 39-year-old Russian Igor Nebivaev, the executive director of the Council of Europe's anti-money laundering programme Moneyval, is believed to be a general in Russia's Foreign Intelligence Service - 68-year-old Vladimir Nebivaev
-
“Drone crashed in 4,000 to 5,000 ft of water. Before it was downed, operators took steps to wipe its electronics in hopes of rendering the wreckage useless for intelligence collection.” ~ NSC spokesman
-
After the Exchange bug what are the odds that we’d get a second awesome bug in the same week? Turns out pretty good. This one is really juicy. RCE via VoLTE. Since P0 found this bug in this attack surface, my suspicion is that there are more of these out there.
Word to the wise — disable VoLTE
Critical flaws expose Samsung’s Exynos modems to “Internet-to-baseband remote code execution” attacks with no user interaction. Project Zero says an attacker only needs the victim’s phone number. @ryanaraine reports: -
-
-
The original find by Metabaseq is 🔥 gonna deep dive into tEXt and other png chunks for a few days.
Poc here :
github.com/duc-nt/CVE-202…
publiclyDisclosed @disclosedh1
-
Well, that was fast…
I just helped create the first jailbreak for ChatGPT-4 that gets around the content filters every time
credit to @vaibhavk97 for the idea, I just generalized it to make it work on ChatGPT
here's GPT-4 writing instructions on how to hack someone's computer
-