E8af7bfc1ab4eb2e

James Wright ๐Ÿ”‘ @james

๐ŸŽ‡AlphaBay, an anonymous dark web data marketplace, is shut down by law enforcement. The site's sales are โ‰ˆ๐Ÿ’ฐ $1MM per day! ๐Ÿ—๏ธ

In the first six months of 2017 the site sold $5MM worth of stolen credit-card numbers.

wsj.com/articles/illegal-goods

โœ๏ธApple will build a data center in China housing local customer data; while retaining keys. ๐Ÿ”

wsj.com/articles/apple-to-buil

@lx The side channel attack extrapolates approximately 50% of the private key, the remaining bits are solved using a modified version of the branch and prune algorithm of Heninger and Shacham. ๐Ÿ˜Ž

It's an interesting way to break the crypto library. ๐Ÿ”ฆ

Here are fireworks๐ŸŽ†: researchers ๐Ÿ”ฌ crack 1024-bit RSA Libgcrypt crypto library ๐Ÿ”. CVE-2017-7526 effects GnuPG, Debian, and Ubuntu. Patch Libgcrypt to version 1.7.8. ๐Ÿ’พ

thehackernews.com/2017/07/gnup

mastodon.jamesmwright.com/medi mastodon.jamesmwright.com/medi

๐Ÿ˜Ž Finished upgrading my instance to v1.4.7 ๐Ÿ’พ

Thank you to all that contribute to this open-source social media project! ๐Ÿ…

bf50e3e5aefc88f7a6d9ab4aafe5beab4360292b

github.com/tootsuite/mastodon/

๐Ÿ“ก Open Whisper Systems releases new features in , an encrypted communications app. Changes revolve around safety numbers use. ๐Ÿ”

mastodon.jamesmwright.com/medi

โ€ช๐Ÿค” is using vulnerability to spread through firewalls and WMIC / PSEXEC to move internally. No clicking required. โ€ฌ ๐Ÿ’พ

mastodon.jamesmwright.com/medi

โ€ชโŒ› is infecting computers worldwide today, causing mass outages. Power system generation in the Ukraine is impacted. Banks and other services knocked offline. ๐Ÿ

โ€ช zdnet.com/article/a-massive-cyโ€ฌ

๐Ÿ˜Ž Finished upgrading my instance to v1.4.6 ๐Ÿ’พ

Thank you to all that contribute to this open-source social media project! ๐Ÿ…

7b13e6efc2402bde71d3bcf69c859ce8974ac9cb

github.com/tootsuite/mastodon/

๐Ÿ˜Ž Finished upgrading my instance to v1.4.5 ๐Ÿ’พ Thank you to all that contribute!

9ca02a00a62855fa0daa39870e03bc88f695bbc0

github.com/tootsuite/mastodon/

๐Ÿ”ฆ Walmart is telling its vendors to get off Amazon cloud services if they want to do business with them. That's a whole new level of risk management. โŒจ

wsj.com/articles/wal-mart-to-v

Finished upgrading my instance to v1.4.4 ๐Ÿ’พ Thank you to all that contribute!

946a166791e5a1a10778e15ca4a9f5f10c961134

github.com/tootsuite/mastodon/

exploits a vulnerability in Linux, FreeBSD, OpenBSD, and other OSes. Check with vendors on patches for this flaw. ๐Ÿ’พ

arstechnica.com/security/2017/

Our detailed technical report on an advanced intrusion is now released. This group has improved their tradecraft and is using a few techniques I haven't seen any other hackers use before.
root9b.com/sites/default/files

is new fileless that injects its code into the svchost.exe process.๐Ÿ”’ It is being leveraged as in the wild by encrypting file systems and demanding payment. ๐Ÿค

2010 article on PsExec covers risks:
๐Ÿ‘‰techgenix.com/psexec-nasty-thi

๐Ÿ‘ thehackernews.com/2017/06/file