Fr333k

@Fr333k@infosec.exchange

Online privacy, digital forensics and automotive security.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

Fr333k, to random

Enough Internet for today, but BOTH Harry Mack and Beardyman working together is peak everything: https://www.youtube.com/watch?v=CRDfZWwT8KI

Fr333k, to random

This looks really interesting, Google TAG report on commercial spyware: https://storage.googleapis.com/gweb-uniblog-publish-prod/documents/Buying_Spying_-

r1cksec, to infosec

A cool post about how to search for threats in Windows services🕵️‍♂️​

https://detect.fyi/threat-hunting-suspicious-windows-service-names-2f0dceea204c?gi=25697c91242b

Fr333k,

@r1cksec how do you make those „hacky“ images? They look dope …

dfncert, to random

Security advisory for created smartcard keys: Smartcard generation keeps an unprotected backup key on disk

https://gnupg.org/blog/20240125-smartcard-backup-key.html

Fr333k,

@dfncert hehe, thats the sound of hands-hitting-foreheads …

video/mp4

mherfurt, to random German

@Fr333k gratuliere Mr. Sniff0r!

Fr333k,

@mherfurt hard to earn, easy to spend!!

mrcippy, to random
@mrcippy@mrcippy.xyz avatar

Samsung's Galaxy S24 Ultra is here. Literally! It's on my desk right now. I'll be testing it and reviewing it for Pocket-lint before its Jan. 31 launch. What questions do you have? I'll try to answer them in my review!

Fr333k,

@mrcippy can it run /e/OS or graphene?

Fr333k, to random

I wrote a few words, about the papers of the upcoming https://schmiedecker.net/posts/2024-01-17_ndss24/

Fr333k, to random

Would love to be in Tokyo for Automotive. Maybe another time, I hope people will toot …

video/mp4

Fr333k, to random

Anyone claimed Bobr Kurwa forensics yet? Asking for a friend …

Fr333k,

Ok, I‘ll bite - what means „ja pierdole“, exactly?

Fr333k,

I lol‘d sooo hard, and now you have to see this too

image/jpeg
image/jpeg
image/jpeg

Fr333k,

What is even happening??? 😅

video/mp4

Fr333k,

@themoep 🤣

joebeone, to random
@joebeone@techpolicy.social avatar

I'm excited about @NDSSSymposium 2024! The program is amazing, and we have awesome keynotes (both TBA soon).

Don't sleep on sponsorship: If you'd like to support the best in networked computer science, we'd love to add your org to the growing list: https://www.ndss-symposium.org/ndss2024/sponsorship/

Fr333k,

@joebeone Hi Joseph, do you happen to have any ETA for the list of accepted papers?

Fr333k,

@joebeone splendid, thanks! Yes, website would be great!

Fr333k,

@joebeone splendid, thanks a lot!

video/mp4

cy, to random
@cy@chaos.social avatar

@SaatChris @seecurity Nachfrage zum 37c3 talk:
woher habt ihr diese 600k KIM-Emails? habt ihr da Zugriff von der gematik bekommen oder ist das rein als Teilnehmer-Praxis ersichtlich? (und damit implizit mindestens 600k Teilnehmern (plus deren Technikern) möglich, die z.b. auch ausprobieren könnten wer da so log4shell-anfällig ist ?)

Fr333k,

@cy @SaatChris @seecurity hab ich als Einträge im LDAP verstanden, für die gäbe es Schlüssel

leyrer, to random
@leyrer@chaos.social avatar

I want this for @emf (still not renamed to EMP) and ;)

"I Built a Flying Umbrella"
https://www.youtube.com/watch?v=qNTv5SgM0BM

Fr333k,

@leyrer @qch3n @emf hack my castle?

Fr333k,

@leyrer @qch3n splendid, thanks!!

Fr333k, to random

I guess tomorrow will be interesting at work: https://www.nozominetworks.com/blog/vulnerabilities-on-bosch-rexroth-nutrunners

HalvarFlake, to random
@HalvarFlake@mastodon.social avatar

I didn't always admire young GeoHot, but watching this interview was a lot of fun, and he has clearly matured a lot.

Or so I thought, until the last 30 seconds, which are pretty bonkers, but that doesn't devalue the stuff before 🙂

https://www.youtube.com/watch?v=rJg0hAKtzt8

Fr333k,

@Viss @HalvarFlake ok, I‘ll bite - whats with the hat?

Fr333k,

@Viss @HalvarFlake 🤣😂

video/mp4

dangoodin, to random

Researchers have unearthed nearly two dozen vulnerabilities that could allow hackers to sabotage or disable a popular line of network-connected wrenches that factories around the world use to assemble sensitive instruments and devices.

The vulnerabilities, reported Tuesday by researchers from security firm Nozomi, reside in the Bosch Rexroth Handheld Nutrunner NXA015S-36V-B. The cordless device, which wirelessly connects to the local network of organizations that use it, allows engineers to tighten bolts and other mechanical fastenings to precise torque levels that are critical for safety and reliability. When fastenings are too loose, they risk causing the device to overheat and start fires. When too tight, threads can fail and result in torques that are too loose. The Nutrunner provides a torque-level indicator display that’s backed by a certification from the Association of German Engineers and adopted by the automotive industry in 1999.

Nozomi researchers said the device is riddled with 23 vulnerabilities that, in certain cases, can be exploited to install malware. The malware could then be used to disable entire fleets of the devices or to cause them to tighten fastenings too loosely or tightly while the display continues to indicate the critical settings are still properly in place.

Bosch officials emailed a statement that included the usual lines about security being a top priority. It went on to say that Nozomi reached out a few weeks ago to reveal the vulnerabilities. "Bosch Rexroth immediately took up this advice and is working on a patch to solve the problem," the statement said. "This patch will be released at the end of January 2024."

https://arstechnica.com/security/2024/01/network-connected-wrenches-used-in-factories-can-be-hacked-for-sabotage-or-ransomware/

Fr333k,

@dangoodin to be fair, this is an OT device rather then a regular wrench

Fr333k, to random

Must be one of this weird coincidences that farmers in Germany are protesting now, instead of, I don‘t know - July to September?

video/mp4

Fr333k, to random

Remember when you had to install an app to turn your phone into a flashlight? Good times…

video/mp4

  • All
  • Subscribed
  • Moderated
  • Favorites
  • anitta
  • everett
  • magazineikmin
  • Youngstown
  • thenastyranch
  • rosin
  • slotface
  • ngwrru68w68
  • Durango
  • PowerRangers
  • kavyap
  • cisconetworking
  • tsrsr
  • DreamBathrooms
  • modclub
  • mdbf
  • tacticalgear
  • khanakhh
  • ethstaker
  • vwfavf
  • InstantRegret
  • tester
  • osvaldo12
  • cubers
  • GTA5RPClips
  • Leos
  • normalnudes
  • provamag3
  • All magazines
    •