Jesse Michael

Two guys ran an entire hacking operation in a PRISON for months In 2015, two prisoners in Ohio were assigned to a recycling program where they dismantled old computers Instead of scrapping the parts, they started stealing them Carried components over 1,100 feet past guards, metal detectors, and multiple security checkpoints Then built two working PCs and hid them behind a plywood board in the ceiling of a training room closet They ran cables from the ceiling into the prison's own network Stole login credentials from an employee by watching him type his password Set up Bitcoin wallets, Stripe accounts, bank accounts and credit card applications using another inmate's stolen identity Downloaded VPNs, the Tor browser, password cracking tools and what investigators called "a large hacker's toolkit" Created fake security passes to access restricted areas of the prison This entire operation ran for months They only got caught because one of the computers used so much bandwidth it triggered an automatic alert The Inspector General said it was "almost as if it's an episode of Hogan's Heroes" Two guys with recycled computer parts and a ceiling tile built a cybercrime operation inside a state prison

GPU-Z is on basically every gaming PC on earth. TechPowerUp makes it. they also make Sapphire TRIXX. What I found is insane... both ship TRIXX.sys. IOCTL 0x800060C4 calls HalSetBusDataByOffset with user-controlled bus, device, function, and offset. any local process. no admin. reprogram any PCI BAR to any physical address. map it. arbitrary physical memory R/W from ring 3. a GPU info tool with the keys to your entire system. EV cert. valid through April 2028.

You can now run a full Linux operating system inside a 6mb PDF. Someone embedded a RISC-V emulator inside a standard document. You don't need a virtual machine, just a PDF reader. → Runs interactively inside the file. → Powered by a tiny RISC-V emulator. → The entire OS fits in just 6MB.

If you use a personal phone/laptop for your work, pay very close attention to this little detail. Iran attackers wipe 200k devices at a company called Stryker. Within those devices appears to be employees PERSONAL devices. The attackers used the company’s MDM software, which is basically IT management software running on everything. It’s an incredibly attractive backdoor to an attacker. I successfully targeted MDM software for several Red Team engagements. It’s… lots of fun :) Anyway, a lot of companies require you to install their MDM software on your personal devices before you can access resources like Corp email. It’s used to keep devices updated, lock things down if they get stolen, etc. The company often promises that they won’t access personal data, erase any personal data, etc. But this is often ONLY POLICY. If a bad actor gains access to the MDM tool, as was the case here, then anything can happen. People should be aware of these risks. I refused to run MDM software on any of my personal devices. The company needs to provide me with hardware if they want that. I personally isolate all corp devices to their own network too. If an adversary can get into the corp laptop, then can then get inside my network… there have been cases of it happening in the past.