- The Grugq's Newsletter
- Posts
- Feb 2, 2023
Feb 2, 2023
Wondering how, exactly, your phone is tracked at all times, with locations made available to law enforcement? This video tutorial from a creepy surveillance company is a great explainer:
-
The 5×5—China’s cyber operations - Atlantic Council
-
-
This paper shows that learning about how your firm works is equivalent to gaining Lovecraftian Secret Knowledge. Promising managers asked to do process redesign at their firm learn how messed up it all is, so they give up rising careers & become hermits at the edges of the firm http
— Ethan Mollick (@emollick)
4:48 PM • Aug 12, 2020
What causes people to make a sanity check is when they learn that the features of their organization are not, in fact, part of a Grand Plan, but rather socially constructed, random, & in flux. The highlighted quote says it all.
Official link (paywalled): httppubsonline.informs.org/doi/abs/10.128…p
— Ethan Mollick (@emollick)
8:09 PM • Aug 12, 2020
Summary of the paper here
-
The curse of the corporate headshot
Do an image search for the word “business” or “manager”, and what comes back? Nothing that remotely resembles business or managers. It isn’t just that the people are attractive. It is what they are doing. Many stock photos feature well-dressed types sitting around a table. One of them is holding forth and everyone else is laughing madly, like cult members hearing that the Rapture has been brought forward a week.
-
Me: "One time I farted so long, I was surprised that my butt didn't have to stop and catch its breath."
Interviewer: " ... and a weakness?"
— Marl (@Marlebean)
2:42 PM • Apr 30, 2018
-
a Royal ransomware threat actor named Baddie recently offered to buy any and all corporate network access on Exploit forum. Baddie claims to "be looking for professionals with their own access for his Royal ransomware program"
He claims Royal is the "best toy out there"— Azim Khodjibaev (@AShukuhi)
2:39 AM • Feb 2, 2023
-
Sure, but how many of those affirmatively log into Facebook vs. “interacting with a Facebook tracking pixel somewhere on the web?”
— Corey Quinn / @[email protected] (@QuinnyPig)
4:51 AM • Feb 2, 2023
-
Proud to release my newest AI Chatbot, "ChatPhD".
Its only responses are "Well, that depends" and "Have you considered bringing this to the other departments?"
— Matt Linton (@0xMatt)
10:47 PM • Feb 1, 2023
-
On Android, verified boot won't detect malicious updates to APK-based components. An attacker can do privileged persistence via fake APK-based component updates after exploiting the OS. They can't do this for APEX components but many APK-based components are quite privileged too.
— GrapheneOS | @[email protected] (@GrapheneOS)
3:41 AM • Feb 2, 2023
Our next release comes with massive improvements to verified boot addressing all of the issues we know about. It parses packages each boot instead of using a cache which adds less than a second to boot time and performs proper full verification of the signatures and versions.
— GrapheneOS | @[email protected] (@GrapheneOS)
3:45 AM • Feb 2, 2023
-
Ronin 2.0.0 release
What is Ronin?
Ronin is a free and Open Source Ruby toolkit for security research and development. Ronin contains many different CLI commands and Ruby libraries for a variety of security tasks, such as encoding/decoding data, filter IPs/hosts/URLs, querying ASNs, querying DNS, HTTP, scanning for web vulnerabilities, spidering websites, install 3rd party repositories of exploitsand/or payloads, run exploits, write new exploits, managing local databases,fuzzing data, and much more.
-
Exposed by an amusing OPSEC fail. Early in the DPRK work day, the threat actor connected directly from a DPRK IP address. OOPSEC.
New report from us: ”No Pineapple”.
We asses that this attack campaign is coming the 3rd Bureau of North Korean People’s Army. We believe North Korea used this attack for technological and commercial espionage.— @mikko (@mikko)
9:55 AM • Feb 2, 2023
-
Reply