Olivia
Online
Keerthi
@kr33pt
Cyber Security Enthusiast
Joined April 2017
964 Following
159 Followers
3.2K Posts
New from 404 Media: inside a global phone spy tool that takes data from ads inside normal apps to monitor billions. Company removed videos while I was asking questions; we archived in the article. Google has now cut-off a connected company in response.
https://t.co/9CvHyQ2mul
I did not know, but I guess I did imagine, that car manufacturers were intercepting and sharing text messages with law enforcement. Seems like a pretty terrible idea, unless there’s more to this story. https://t.co/HwzjYZijH9
Earlier this year @AmnestyTech and @_clem1 from Google TAG found an in-the-wild iPhone zero day full chain. Today I’m publishing my analysis of the Safari sandbox escape component, the first in-the-wild sample to break into the new Safari GPU process.
.@_clem1 discovered another ITW 0-day in use by a commercial surveillance vendor: CVE-2023-5217. Thank you to Chrome for releasing a patch in TWO 🤯day!!
https://t.co/QhzJonwLXi
Who to follow
babonaz
@babonaz
The world is mine! Cyber Security Enthusiast (in free time)
Ravi Rajput
@infosecRavi
Core Team @Telecom Village Defcon US
Author & Project Lead @AutoHackOS BH 2023
Course Author- AutoSec Pro @PentestMag @Hakin9
Ex-Lead @nullahm
Speaker & Mentor
Yo 
@X_fklimczak
What I live and what you google are not the same. You all be careful out there in cyber Space, ya hear. IT security professional.
Who needs a 0-click when you have MITM? ✨ Working with @billmarczak & @citizenlab we discovered 3 iOS and 1 Chrome 0-day from Intellexa, used to install Predator spyware in Egypt 🇪🇬
https://t.co/5KF5v4xEnr
🚨SCOOP: My new @Haaretzcom investigation reveals new Israeli cyber companies developed technology that exploits the heart of the online economy - ads - not just for mass surveillance, but also to hack phones 👇
https://t.co/TPfBO1SZHP
Mashing Enter to bypass full disk encryption with TPM, Clevis, dracut and systemd https://t.co/YV7IIzzVxS
New—hackers have access to a powerful chain of data that lets them dox nearly anyone in US for $15. With credit cards your address goes to the credit bureaus. That is then sold to companies, and the hackers tap into that. Targets include Musk, Rogan, Biden https://t.co/ljCCCj3fWb
Thousands of Android APKs use compression trick to thwart analysis - @billtoulas
https://t.co/GkIk797MSd
Need to access those precious encrypted kitten pics but you can't unlock your phone ? Don't worry, in this blog post @max_r_b and @DamianoMelotti will take you in a journey to the depths of #Android's file-based encryption so you know what to do.
https://t.co/acROY5cEGq
Our next blogpost on #iOSTriangulation (https://t.co/OnjtckIn5i) is finally out. Today we are ready to share details about the final payload used in the attack, which is a #spyware implant that we dubbed #TriangleDB @bzvr_ @2igosha [1/3]
💣💣 The inevitable has happened. #CoWINDataLeak reported by @thefourthlive @ManoramaDaily is a largest #DigitalPublicInfrastructure disaster.
Thread on some impacts.
A while back, I stumbled upon a file I consider the largest piece of evidence revealing how hundreds of data brokers trade personal data on everyone, including very sensitive data, globally.
Massive investigation by @themarkup and German @netzpolitik_org:
https://t.co/uJ7MpmIJ69
India seems to be the new destination for “Hacking for hire” operatives. A lack of ethics and legal action allows these people to operate freely. I’m sure a lot of them are even hand in glove with the government.
https://t.co/sOVjqSguB9
Hundreds of models of Gigabyte motherboards, used in gaming and other high-performance computers, have a backdoor in their firmware that invisibly downloads code to the machine at startup—and does so insecurely, leaving the feature open to abuse. https://t.co/pHNj6GN1ue
The recording of my @offensive_con talk about eSIM is online: Embedded Threats: A Deep Dive into the Attack Surface and Security Implications of eSIM Technology
https://t.co/CMtchgCfvn
#OffensiveCon23
In which we describe one of our incident response engagements where five different actors were observed exploiting the same victim for completely different purposes. https://t.co/QuyofhLvOq
☢️MSI leaked code signing certificate already abused by Threat Actors (expires in 2024).
I've collected 9 recently leaked certificates to cover up in upcoming Modern Initial Access training sessions🔥
https://t.co/vhHKWITJaC
👾 Already weaponised in Red Macros Factory 1.8!
Nice intro for beginners to bluetooth communications reverse engineering (Domyos EL500)
Credits @Palantir555
https://t.co/SI2G5epseL
#bluetooth
A couple of nice blog posts for learning about Linux process injection
(specifically sshd injection for credential harvesting)
@_xpn_: https://t.co/1eIYm48xIO
@jm33_m0: https://t.co/VQrBwL4b28
#sshd #processinjection #redteam #infosec #cybersecurity #Linux
Last Seen Users on Sotwe
سالب رجولي ،، عـرعر
Seen from Saudi Arabia
INCEST_KAVI
Seen from India
Jassi
Seen from Singapore
EDİRNE AKTİFF
Seen from Turkey
sex_evidence
Seen from Turkey
xxxssxxx
Seen from Turkey
AMIR TOP DOM 🍆🔥🔥
Seen from Mexico
Enset Maras
Seen from Turkey
Brook
Seen from Indonesia
Emerald Apple
Seen from South Africa
Most Popular Users
Elon Musk
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.1M followers
Taylor Swift
@taylorswift13
80.9M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.7M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.2M followers