threatresearch

threatresearch, 3 months ago to random

NO, YOUR MOM IS MALICIOUS 🤦🏼‍♂️​

Tarah, 3 months ago to random

Yesterday morning, very suddenly, my beloved cat Frankie Fangs died of a stroke. He fell off his cat tower, I heard it, I picked him up, and after trying some rescue breaths and his inhaler, I had a few moments to make him feel loved. Dev and I were there while he crossed over the Rainbow Bridge.

He was the best gato and was filled with unconditional love. If the spirit moves you, please donate to your local pet shelter because animals are the best parts of our lives and deserve all the the care we can give them. Frankie is survived by his little sister Whisper, and nine and a half years of incredible, joy-filled, incredibly funny, lifelong memories.

chetwisniewski, 3 months ago to infosec

So the "takedown" of Volt Typhoon routers is interesting, but I am curious why it was done.. . To what end? They are all still vulnerable and instantly reinfectable and no patches were supplied (as far as I've heard). So... Sending a signal? #InfoSec #AmIDumb

briankrebs, 3 months ago to random

Over the past month or so I've received multiple requests from other journalists to talk on background about what can be done about the swatting problem.

My replies could fill several pages of toots here, but one area that I think is important to focus on involves getting some mandatory, uniform reporting federally when these violent crimes occur at the state and local level (which they almost always do).

The Uniform Crime Reporting Program is voluntary for most agencies, but it is mandatory for federal law enforcement entities. It has categories for violent crimes like murder, rape, and assault. But is there a category for swatting? Would that be helpful in getting a better gauge on the size of this problem? I think so.

Anyway, I got a response from the DOJ. Short answer, there is no category for it. Also, a newish FBI entity created specifically to track these incidents has seen over 550 swatting incidents reported since May 1, 2023. Here's their official statement:

"In response to the national call on swatting, the FBI initiated the Virtual Command Center (VCC) known as the National Common Operation Picture (NCOP). The NCOP-VCC is a collaborative effort between the FBI and law enforcement partners to track and create a real-time picture of swatting incidents. Established in May 2023, this initiative is open to any law enforcement agencies and fusion centers who wish to participate in tracking and sharing swatting information in respective jurisdictions. Since its inception, there have been over 550 swatting incidents reported to the FBI’s NCOP-VCC since May 1, 2023."

threatresearch, 4 months ago to infosec

An op-ed by two champions of women's professional tennis lays out a rationale not only for the WTA not to stage its championship in Saudi Arabia, but a perfectly cromulent reason why the #BlackHat conference should not now, or ever again - at least until its draconian social laws dramatically change - host an infosec conference in Saudi Arabia.

#Infosec already treads a fine line and many members of our professional community are women, nonbinary, LGBTQ+, or members of other groups that are threatened, or have been subject to deeply offensive and (in some cases) genocidal behavior by those in charge of that country.

Nobody should have to wonder whether being accepted to speak at a professional conference will result in their death at the hands of the state where the conference will take place, or that their civil and human rights may be strictly curtailed by the host country.

It's disgusting that an organization with as much power as #Informa PLC would even consider hosting a professional conference in the KSA, as they plan to do in November.

I appeal to members of this community who care about human rights and their fellow community members who simply cannot travel to this part of the world without the fear of imprisonment, torture, or death not to support this conference, not to submit to their call for papers, not to promote or encourage others to attend, and to speak out about the human rights this government violates - KSA behaves abhorrently every day.

Informa PLC - you must end the practice of hosting this conference in Saudi Arabia until circumstances drastically change there.

Those of you who gladly appear on the Black Hat MEA website as speakers or keynote speakers - we see you, and this tells us everything we all need to know about you and your values. You should be deeply ashamed.

https://www.washingtonpost.com/opinions/2024/01/24/evert-navratilova-wta-saudi-arabia/

#HumanRights #KSA #DefCon #InformaPLC

jfmezei, 4 months ago to random

@HoffmanLabs I got offered some VAX in case I ran a museum. Apparently a microvax 1000 they say. Do you know anyone who is running such a museum who might be interested ?

hacks4pancakes, 4 months ago to random

IDK y’all but my ten year old Honda batteries seem to be rocking it right now in Chicago. Seems like a them problem.

MLE_online, 4 months ago to random

Do I know anyone on here who has experience adapting a rotary phone to work over modern VOIP?

I know I will need both an adapter from rotary to touch tone and then a VOIP adapter, but there seems to be a variety of options and I can't tell what's good and what's lousy.

AAKL, 4 months ago to random

deleted_by_author

thomasfuchs, 4 months ago to random

𝓖𝓵𝓸𝓼𝓼𝓪𝓻𝔂

Blockchain: a slow database

Crypto: an expensive slow database

NFT: an expensive slow database to store URLs

AI: a way to write slow and inefficient algorithms

LLM: a database that stores text in a slow and inefficient way

Chat GPT: an expensive imprecise query language for slow and inefficient text databases that often returns wrong results

atomicpoet, 4 months ago to random

Oh my God. I’m tired of PC gamers – but also gamers in general – badmouthing emulation.

I’m sorry, but most people don’t have an old beige box PC with a Pentium CPU and CRT monitor. That’s simply not an option for 99% of people out there. If they want to play old DOS games, they need DOSBox. Yes, it’s not perfect. Nothing is.

But if you want to play the original game on new hardware, not some re-make that pretends to be the original, then emulation is the answer.

hacks4pancakes, 4 months ago to random

All packed up #Shmoocon

dangoodin, 4 months ago to random

Researchers have unearthed nearly two dozen vulnerabilities that could allow hackers to sabotage or disable a popular line of network-connected wrenches that factories around the world use to assemble sensitive instruments and devices.

The vulnerabilities, reported Tuesday by researchers from security firm Nozomi, reside in the Bosch Rexroth Handheld Nutrunner NXA015S-36V-B. The cordless device, which wirelessly connects to the local network of organizations that use it, allows engineers to tighten bolts and other mechanical fastenings to precise torque levels that are critical for safety and reliability. When fastenings are too loose, they risk causing the device to overheat and start fires. When too tight, threads can fail and result in torques that are too loose. The Nutrunner provides a torque-level indicator display that’s backed by a certification from the Association of German Engineers and adopted by the automotive industry in 1999.

Nozomi researchers said the device is riddled with 23 vulnerabilities that, in certain cases, can be exploited to install malware. The malware could then be used to disable entire fleets of the devices or to cause them to tighten fastenings too loosely or tightly while the display continues to indicate the critical settings are still properly in place.

Bosch officials emailed a statement that included the usual lines about security being a top priority. It went on to say that Nozomi reached out a few weeks ago to reveal the vulnerabilities. "Bosch Rexroth immediately took up this advice and is working on a patch to solve the problem," the statement said. "This patch will be released at the end of January 2024."

https://arstechnica.com/security/2024/01/network-connected-wrenches-used-in-factories-can-be-hacked-for-sabotage-or-ransomware/

verovaleros, 4 months ago to grafana

I am proud of the infrastructure we created for our Introduction to Security class at CTU in Prague.

It is a challenge to keep services and student containers up in a quite adversarial network where everyone is attacking but we managed to secure a 99% uptime.

In 15-16 weeks of class, our network sees hundreds of millions of network flows. We use #zeek for log collection, a dockerised suite with #grafana for monitoring, and #splunk for threat hunting.

Students are in full control of their containers. Our classes are a well-balanced mix of attack and defence, where students are in charge of protecting their own containers for the duration of the class. The attacking includes a wide variety of attacks and tools, including active exploiting of web applications and services.

Very proud of each of our students who do not stop surprising us each year!

codinghorror, 4 months ago to random

Some helpful nutritional ideas

dangoodin, 4 months ago to random

I have been following the scandal involving Sarasota, Florida, husband and wife Christian and Bridget Ziegler. In brief, Christian was the chair of the Florida Republican Party and has straddled the fence between supporting Trump and Gov. DeSantis. Bridget, the founder of Moms for Liberty and a member of the Sarasota County School Board, has championed a cruel and bigotted campaign against trans and black people. DeSantis appointed her to Florida's recently created Disney Oversight Board. Together, the couple has aggressively promoted Christian and family values.

Recently, an acquaintance of the couple accused Christian of rape. (Christian has denied the accusations and no charges have been filed, but video shot by him and recovered by Sarasota Police does confirm he had sex with the accuser.) In the resulting investigation, it was revealed that the couple had a three-way sexual encounter with the acquaintance. The hypocrisy bombshell has resulted in conservatives calling for both to resign their posts.

I'm fascinated to know: how did the detailed police report get leaked to the press? I can't help wondering if Trump had something to do with it. Trump is mad that the Florida GOP hasn't endorsed him and has applied considerable pressure for it to do so. The Zieglers' fall from grace is a major benefit to Trump. It would also play into Trump's penchant for retaliating against anyone who doesn't support him. My guess is that it's within Team Trump's power to get the investigative report leaked.

This is pure speculation on my part. There are lots of things I don't know about the Florida GOP dealings. Still, I really, really want to know how this came out.

https://www.nytimes.com/2024/01/08/us/christian-ziegler-florida-republican.html

threatresearch, 4 months ago to random

My unbroken streak of never attending #shmoocon will not be broken this year, but I will be in DC this week for #HackersOnTheHill to meet with congressional staffers and representatives to talk through technical and infosec topics they should be aware of in the coming year.

It'll be my first time attending this event, so if anyone in my circle will be there or has attended previously, I'd love to hear about how it went and how much preparation you did.

Also down for drinks/coffee/meeting up with other folks who will be there this week.

jerry, 4 months ago to random

Surprise 10:30pm conference call. Now I’m awake 😕

threatresearch, 4 months ago to apple

PowerBook 145B

I have replaced
the battery
that was soldered to
the PRAM subassembly

and which
you were probably
expecting
was not user-serviceable

Forgive me
it was delicious
to hear
that bootup sound again

#Apple #Retrocomputing #RetroMac #PowerBook #MediaArchaeology

A PowerBook 145B