@x0rz.bsky.social
Cybersecurity & Threat Intelligence. Knowledge is power, France is bacon ๐ฅ
1/ Chinaโs cyber capabilities didnโt start top-down, they started with raw hacking talent. The new CSS/ETH report "Before Vegas" traces how informal talent shaped Chinaโs cyber ecosystem, moving from online forums to industry leaders (link in thread).
21.07.2025 08:11 โ ๐ 13 ๐ 8 ๐ฌ 1 ๐ 0
2/2 Russia at will. Although he claims to be apolitical, he denies responsibility for the crimes that are enabled by his platform. He loves to dish out advice to Western politicians, but hates paying taxes and prefers to live in a dictatorship. In short, he embodies the stereotypical Russian.
20.06.2025 04:51 โ ๐ 17 ๐ 6 ๐ฌ 1 ๐ 0
Following long practice of US gov indicting Chinese/Russian state hackers for breaching US systems, China has named and issued warrants for 3 NSA workers it says were behind hacks of China systems during Asian Winter Games. Also says University of California and Virginia Tech participated in attacks
15.04.2025 12:53 โ ๐ 19 ๐ 8 ๐ฌ 1 ๐ 1
ESET disputes Microsoft's classification of the FamousSparrow APT as part of the Salt Typhoon group.
ESET believes the two APTs may be using a shared digital quartermaster (malware and tools developer).
www.welivesecurity.com/en/eset-rese...
When the answer to "are you cheating on me?" is "who told you that?" and not "no"
21.03.2025 17:04 โ ๐ 2220 ๐ 396 ๐ฌ 67 ๐ 9
@hpiedcoq.bsky.social ๐ท๐บ๐
12.03.2025 20:59 โ ๐ 3 ๐ 0 ๐ฌ 1 ๐ 0
Tweet by Graham Stuart, Tory MP @grahamstuart: We have to consider the possibility that President Trump is a Russian asset. If so, Trump's acquisition is the crowning achievement of Putin's FSB career - and Europe is on its own.
Extraordinary comment from Tory MP Graham Stuart:
โWe have to consider the possibility that President Trump is a Russian asset.
If so, Trump's acquisition is the crowning achievement of Putin's FSB career.โ
(Narrator: Itโs extraordinary because our own gd government didnโt say it first.)
It shouldnโt take a panic over Chinese AI to remind people that most companies in the business set the terms for how they use your private data.
And when you use their AI apps, youโre doing work for them, not the other way round.
being able to walk away from the internet, even via laptops was nice
28.01.2025 04:19 โ ๐ 8 ๐ 2 ๐ฌ 0 ๐ 1
Ah yes. We're at the 'pUt It On ThE bLoCkChAiN' stage.
25.01.2025 20:13 โ ๐ 296 ๐ 35 ๐ฌ 27 ๐ 13It's like Ivanti. Every month is zero-day awareness month.
14.01.2025 21:35 โ ๐ 2 ๐ 1 ๐ฌ 0 ๐ 0I can never fully know if I already read this "Fortinet 0day in the wild" article 3 weeks ago or if itโs new. Ha, never mind! Itโs new ๐ฅฒ
14.01.2025 21:14 โ ๐ 17 ๐ 8 ๐ฌ 3 ๐ 0
LeMonde investigation finds that members of a French nuclear-armed submarine crew inadvertently shared sensitive information about the patrol schedule of the ship via the Strava workout app: www.lemonde.fr/videos/artic...
13.01.2025 18:01 โ ๐ 26 ๐ 17 ๐ฌ 3 ๐ 5We're witnessing the evolution of ransomware.
Yesterday someone informed us of the existence of the new TTP of AWS S3 extortion. More specifically, Threat Actors abusing the Amazon Key Management Service (KMS) to encrypt company AWS buckets (or any cloud provider).
incredibly detailed piece on Salt and Volt Typhoon (apparently named as if they're brothers)
"a cybersecurity vendor notices the activity and flags it to the port's cybersecurity chief, who examines it and decides it's a false alarm. He heads to lunch at Whataburger."
www.wsj.com/tech/cyberse...
Court order text. Link to follow
Court order text. Link to follow
Court order text. Link to follow
Court order text. Link to follow
BREAKING: court finds NSO Group liable for #Pegasus hacking of #WhatsApp users.
Big win for spyware victims.
Big loss for NSO.
Bad time to be a spyware company.
Landmark case. Huge implications. 1/ ๐งต
This aspect of restructuring authority between NSA and USCYBERCOM in light of a dual-hat split is one I hadnโt considered before:
19.12.2024 06:49 โ ๐ 9 ๐ 5 ๐ฌ 1 ๐ 0I donโt normally get worked up about the naming threat actors thing.
But the Volt & Salt Typhoon is a disaster as itโs so hard for non-specialists to tell them apart:
- Salt is Snowden style espionage by China against US
- Volt is a direct ๐จ๐ณ military threat to degrade western infrastructure 1/2
The US Treasury has sanctioned Sichuan Silence, the Chinese company that developed exploits against Sophos firewalls
home.treasury.gov/news/press-r...
A simple experiment you can do is buy a server, set up a website with nothing on it, then look at the access logs. All day, every day, there are random systems just blasting vulnerabilities at every device on the internet. Analysts call it "background noise", executives call it "cyber attacks".
06.12.2024 02:15 โ ๐ 6846 ๐ 757 ๐ฌ 160 ๐ 48Free backup service!
30.11.2024 11:38 โ ๐ 1 ๐ 0 ๐ฌ 0 ๐ 0Why the f*ck does my Windows trying to reach browser.events.data.msn[.]cn
30.11.2024 09:45 โ ๐ 4 ๐ 0 ๐ฌ 1 ๐ 0
"The networks are still compromised, and booting the hackers out could involve physically replacing โliterally thousands and thousands and thousands of pieces of equipment across the country,โ specifically outdated routers and switches" ๐ต๏ธโโ๏ธ
29.11.2024 18:35 โ ๐ 45 ๐ 37 ๐ฌ 1 ๐ 3More people should use QubesOS
28.11.2024 19:22 โ ๐ 3 ๐ 0 ๐ฌ 3 ๐ 0
Seems kind of important that Bruno Kahl, head of german foreign intelligence, said that it's his assessment that Russia by the end of this decade will be in a position to initiate an attack against NATO
www.spiegel.de/politik/bnd-...
Itโs a matter of time, Chinese media/bots will eventually target this platform as well.
27.11.2024 07:00 โ ๐ 12 ๐ 3 ๐ฌ 0 ๐ 1Itโs all about the message. Itโs more convincing this way.
27.11.2024 06:58 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0CTI is the cause of my brainrot but I really cooked on this #salttyphoon #telecomhack
26.11.2024 22:18 โ ๐ 51 ๐ 18 ๐ฌ 5 ๐ 3
