4Dgifts

Reflective loading of an unsigned Windows driver.
This may be useful for red teaming and game cheating, but also to reclaim ownership of your computering device.
Yay, you don't need a cloud services account to do it!

RW physical memory pages with a side of LSTAR MSR overwrite? YOLO!

BYOVD is a well-known technique commonly used by threat actors to kill EDR 🔪
However, with the right primitives, you can do much more.
Find out how Luis Casvella found and exploited 4 vulns (CVE-2025-8061) in a signed Lenovo driver.
👇
blog.quarkslab.com/exploiting-l...

Microsoft says Azure affected after cables cut in the Red Sea | TechCrunch It's not clear who cut the cables or why.

It's not clear who cut the cables or why.

Reverse engineering of the patch for a (remote?) code execution vuln recently fixed by Apple, allegedly used in attacks ITW.
They "improved bounds checking" at an infinite rate, from 0 to actually checking.
This is the kind of simple bug that a fuzzer would catch so it is puzzling that it wasn't.

What kind of advise is "We don't know what is going on, disable your VPN server" ?
Also a 0day is not "a security bug that was discovered and exploited before the vendor could patch the issue".
0day is a vuln that is not publicly known.
A known vuln that the vendor did not care to patch isn't 0day.

30+ years in cybersecurity and I still see these vendor-supported private 0day sharing clubs.
Vendors that tilt the patch and later demand fair play.
We have not learned anything from MAPP have we?

😍Un equipo de la UBA se ubicó entre los 5 mejores (de más de 100) en el mundial de “satélites enlatados”👇en la final del proyecto CanSat, organizado por la Universidad Nacional de México, con un satélite del tamaño de una lata que ellos mismos diseñaron y fabricaron 👇

tambien acá 👋

last I checked immigrant expenditures are not tax free either

"(...) esa línea de crédito es extorsiva, y mientras la mantengan siempre China va a poder extorsionar"

En cambio, el crédito que el FMI por recomendación de los Estados Unidos le otorga a la Argentina... ¡Caramba! ¡qué coincidencia!

La recomendación a Milei de un funcionario de Trump: “Mientras tenga el swap con China, Argentina no será libre” Mauricio Claver-Carone, enviado especial de Estado Unidos para América Latina, fue entrevistado en exclusiva por Infobae

Estados Unidos en el rol del novio violento y golpeador recomendándole a la novia liberarse de las amigas que la bancan cada vez que la faja

www.infobae.com/economia/202...

This is *significantly* better than Johnny Mnemonic and yet much less known.
Recommended!

Motosierra sin fin: el Gobierno eliminó definitivamente el FISU y el Fondo Fiduciario para la Promoción Científica | Luego de subejecutarlos En una nueva muestra de su desprecio por las políticas públicas, el Gobierno de Javier Milei eliminó dos fondos fiduciarios clave: uno destinado a la ciencia y tecnología, y otro a la vivienda. Esta d...

OJO con esta nota.
El fondo fiduciario eliminado NO es el FONCYT, que no es un fondo fiduciario.
El eliminado es el FONDOTEC, creado por la Ley N° 23.877, de 1990.
El FONCYT se creó en 1996 con la @agenciaidiar

www.pagina12.com.ar/823318-motos...

Strange times: CISA employees this morning received a "workforce accountability survey" email requiring them to say whether they were on-site, teleworking, on leave, on travel, or no longer employed at CISA.

Then a few hours later, they got another email saying "no response is needed."

There is a small bug in the signature verification of OTA packages in the Android Open Source Framework.
Official builds doing normal double verification of packages are not vulnerable but OEMs and third party apps may be.
Jérémy Jourdois explains it here:
blog.quarkslab.com/aosp_ota_sig...

PARA PARA PARA VOS ME ESTAS DICIENDO DE QUE PATRISSIA BULLREICH ES UNA ZURDA?

beware of how this plays out..
as in "we cannot do it unless a backdoor is installed..." etc

Agrego que cerraron estaciones d ela línea D durante 3 meses no de sabe para qué carajos. La frecuencia de trenes sigue siendo una mierda, esta llenos todo el tiempo y cada dos por tres se quedan parados varios minutos en los túneles.
Solo hicieron boludeces cosméticas

Pope Francis made a brief statement from the hospital balcony:

Saw this on the other site but I should comment here:
Can't remember his hacker handle but I think Pad & Gandalf of 8lgm were arrested the same day in 1991.
You may not know it but the entire infosec & software industries owe 8lgm immense gratitude for making vendors accountable for their vulns

ZOMG

This is the new diplomacy?

FCC Reaffirms Decision to Reject Starlink Application for Nearly $900 Million in Subsidies FCC reaffirmed WCB's prior decision to reject the long-form application of Starlink to receive public support through the RDOF program, based on the applicant's failure to meet the program requirement...

Es una saga que lleva años. Previamente le cancelaron un subsidio por casi $900M USD por no cumplir con los requerimientos técnicos prometidos
www.fcc.gov/document/fcc...

Excellent Zoolander reference by @wdormann.bsky.social in his video.

You know where to find us if you need help @msftsecresponse.bsky.social

🌺 @lutasecurity.bsky.social 🌺

le hicieron una bandera a Dani Osvaldo ?
😂

But not the swastitrunk?

A deep dive into phishing
I guess there is a pun in there but child[0|1] have banned dad jokes.
sorry

Y ni hablar si Putin lo invitaba a tomar un té