- The Grugq's Newsletter
- Posts
- Jan 6 2023
Jan 6 2023
I’m gonna do a manual quote here to say that this is exactly the type of stuff we predicted, and especially with automation bias with people overtrusting model outputs. Police didn’t even check the height of the person they claimed did this, and neither was the person in Atlanta.
https://dair-community.social/@timnitGebru/109634485377349541
-
-
-
-
-
A nice paper on Ukraine drones.
-
This article from @[email protected] on pig butchering scams is really good, and a great thing to send your friends and family. https://www.wired.com/story/what-is-pig-butchering-scam/
-
@malwaretech Don't forget Kaspersky finding 20 expired C2s belonging to the the NSA and gaining access to a massive hacking campaign that had gone undetected for 14 years.
"Perhaps most costly to the attackers was their failure to renew some of the domains used by these servers. Out of the 300 or so domains used, about 20 were allowed to expire. Kaspersky quickly registered the domains and, over the past ten months, has used them to "sinkhole" the command channels, a process in which researchers monitor incoming connections from Equation Group-infected machines."
-
-
-
-
Here's a couple very cool #vulnerability writeups by @[email protected] that were published in 2022 ✊
Disclosing information with a side-channel in #Django
Path Traversal Vulnerabilities in #Icinga Web
Reply