scriptjunkie @sj@social.scriptjunkie.us
Cyber scared straight:
NCA: Ok kids, I'm going to show you what a life of cyber crime is really like.
*Lambos*
*R8 drifting on Moscow streets*
*Stacks of cash*
NCA: Well I hope we've learned our lesson today.
Kids: yep
Your XKCD passwords are cracked, excellent demonstration by unix_ninja. For a better way, a double clickable PowerShell generator and the math on the attack cost, see
https://www.root9b.com/newsroom/verifiably-bad-passwords/
https://mobile.twitter.com/unix_ninja/status/1202613252359958528
Lambos are clearly valued by cybercriminals. Congress should ban them, or at least restrict them to vetted industry in-groups.
https://twitter.com/josephfcox/status/1202634823019507712
Iran appears to be launching new domain-wide wiping attacks.
https://twitter.com/campuscodi/status/1202238762954174464
PyXie, full featured Python RAT obfuscated with opcode-swapped embedded Python interpreter. The teardown instructions are a great plus; I love articles that post how to extract the info, not just the final result.
https://threatvector.cylance.com/en_us/home/meet-pyxie-a-nefarious-new-python-rat.html
Larry Page out as Alphabet CEO. Sundar Pichai now CEO of both Alphabet and Google.
https://blog.google/inside-google/alphabet/letter-from-larry-and-sergey/?mod=article_inline
ICYMI RAP bypass for root -> kernel exploits on grsec. I did find the angry grsec/PaX replies entertaining too. Remember when grsec had to pay out a quarter mil because he couldn't handle critique?
H/T @silviocesare
https://twitter.com/uid1000/status/1172487719580254208
https://www.theregister.co.uk/2018/06/11/open_source_perens/
What is the best science/tech magazine or news site that is least prone to hype/sensationalism?
Infosec twitter: Maybe we shouldn't put very sensitive data on Slack. We know it's a big APT target.
Microsoft Teams: Hold my beer!
Uninstall Teams. If you have to use it, use the web version from your browser
https://mobile.twitter.com/mattaustin/status/1200893246131433472
Evading WinDefender ATP credential-theft: a hit after a hit-and-miss start.
tl;dr PssCaptureSnapshot syscall clones the process then you don't need to do ReadProcessMemory against the original process and avoid LSASS read detection.
https://www.matteomalvica.com/blog/2019/12/02/win-defender-atp-cred-bypass/
The first hacker con I ever went to had a talk by an anonymous hacker in a full ninja costume with face mask conducted entirely with speech to text, Q&A included.
https://twitter.com/IanColdwater/status/1201351946235523072
Federal agents persecuting a religious group we like might be held personally liable, but Oh No if they are, then federal agents persecuting religious groups we hate might be held liable too!
Basically everything wrong with the current partisan rhetoric.
scriptjunkie
boosted
RT @nixcraft@twitter.com
~/.ssh/authorized_keys
Aww, the Facebook outage was the thing I was most thankful for on Thanksgiving
https://mobile.twitter.com/WSJ/status/1200114080759140356
Well that's strange. I was assured several times that only the protesters were violent and against the will of the people.
Restrict freedom of expression and you'll soon find yourself believing your own reality-distanced propaganda, to your own embarrassment and detriment.
I just started getting random keybase follower emails; I'm guessing bots because this kenakval account is using a picture scraped from here and I would think that's not what that guy would want to draw attention to.
http://kavkaznews.az/2015/12/v-belarusi-zaderzhan-grazhdanin-azerbajdzhana-obmany-vavshij-zhenshhin-v-internete-foto/
Fortinet products, including FortiGate and Forticlient leaked
full HTTP URLs of users web surfing activity and more to passive internet observers, over effectively plaintext (static XOR) to Fortinet servers. Unfixed since May 2018 till now!
https://seclists.org/bugtraq/2019/Nov/38
Well this will be an interesting situation to watch going on right now.
https://twitter.com/ExcitableBoi/status/1198399400210567168
