syncop @colt@nanao.cybtex.fr

A #ransomware gang sent an email directly to students stating, “Additionally all of your SSN and Medical records will be put for sale, for every hacker to gain access and use your data in whatever illegal activity they want."

https://www.nbcnews.com/tech/security/ransomware-hackers-take-demands-directly-college-students-s-sad-day-rcna61253

It’s pretty insane what someone can do with Chinese PCB assembly, a steady hand and some resin. A full working computer in a sloped 2x2 LEGO brick.

https://youtu.be/6wBrOV2FJM8

Tails 5.8 is out, and it is the most important release of #Tails in years.

It includes both major redesign of existing features, important usability improvements, and hardened security.
https://tails.boum.org/news/version_5.8

the secret meetings you always suspected were going on behind the scenes at #defcon

#hiddencamera #jk #SeriousBusinessMeeting

For anyone who wants to say otherwise my code is public and has been https://github.com/Jxck-S/plane-notify

IDN is crazy https://daniel.haxx.se/blog/2022/12/14/idn-is-crazy/ - tldr: IDN is a plethora of options for tricking users.

My Ada Lovelace stamps from France arrived today. Interesting that they are not self adhesive.

Drew the Day 1 challenge tree in 150 bytes of #uxn.
https://paste.sr.ht/~rabbits/945f4bc069cc32f3bb5736f7b53b0f2004ff89a2

Surveiller sa conso électrique a un avantage

Quand je me fais un café, je peux me faire une notification pour me signaler qu’il a fini de couler rien qu’avec la courbe de puissance

So everyone knows #EternalBlue right?

That specific vuln is an incorrect patch of an int overflow in srv!SrvOs2FeaListSizeToNt that existed as far back as...

...the earliest dumped build of NT, build 196 from September 1991.

The bug probably existed before then, nt4 private\ntos\srv\ea.c's header comments say that file was created in April 1990.

MISP 2.4.165 released with many improvements in the workflow, bugs fixed and security fixes.

https://www.misp-project.org/2022/11/21/MISP.2.4.165.released.html/

Don't forget to update MISP.

#misp #threatintel #threatintelligence

A huge thanks to the contributors and especially the participants of the FIRST.org CTI workshop for the feedback during the workflow training.

Merging #PinePhone into Apache #NuttX RTOS ... So far so good! 👍

Work In Progress: https://github.com/lupyuen2/wip-pinephone-nuttx/pull/4/files

Meta’s latest Quarterly Adversarial Threat Report, out today, confirms that the U.S. military was connected to a sprawling, years-long phony account network. This comes after reporting in August and September exposing the network and saying that the Pentagon had ordered an audit of its information warfare operations: https://www.cyberscoop.com/meta-blames-u-s-military-for-information-operation/