• Feb 7, 2020

    SpiderFoot 3.0: OSINT reconnaissance tool

    SpiderFoot is an OSINT automation tool for reconnaissance process, written in Python 3 and GPL-licensed. Recently, Steve Micallef released on GitHub [1] a new version (3) of SpiderFoot, with a lot of interesting enhancements. Web based UI or CLI Over 170 modules (see… read more »
  • Feb 6, 2020

    CVE-2019-18426: WhatsApp bug allowed remote access to users computers with just a text message

    Recently, developers of famous messaging app acknowledged and patched a major vulnerability that gave malicious users the ability to access files on a victim's computer. A target user may fall prey to this attack simply clicking a disguised link preview… read more »
  • Feb 5, 2020

    Simon Weckert Google Maps Hack: a hoax?

    Is it really possible to create a fake traffic jam on Google Maps? According to ArsTechnica [1] and TheRegister [2], the german artist Simon Wecker realized a performance art piece, named "Google Maps Hacks", walking around the roads of Berlin… read more »
  • Feb 3, 2020

    My Weekly RoundUp #125

    Some server issues, this week! So few links, sorry! Cybersecurity IM­P4GT: IM­Per­so­na­ti­on At­tacks in 4G NeT­works Long Term Evo­lu­ti­on (LTE/4G) es­ta­blis­hes mu­tu­al au­then­ti­ca­ti­on with a prov­a­b­ly se­cu­re Au­then­ti­ca­ti­on and Key Agree­ment (AKA) pro­to­col on layer three of the net­work stack.… read more »
  • Jan 31, 2020

    Some thoughts on Information Technology in a post-apocalyptic environment

    Some funny thoughts about information technology on a post-apocalyptic environment, and some info about a more serious project! When most people think about what to do after an apocalyptic event, the first time that comes to mind is food and… read more »
  • Jan 30, 2020

    CVE-2019-8641: remotely compromising an iPhone through iMessage

    Last December, in a talk at 36th Chaos Communication Congress, Samuel Groß presented a technical report about the infamous iOS vulnerability that allowed remote code execution on all iDevices up to iOS 12.4, within a couple of minutes and without… read more »
  • Jan 29, 2020

    CacheOut - Another day, another CPU attack!

    A team of researchers from University of Michigan (Stephan van Schaik, Marina Minkin, Andrew Kwong and Daniel Genkin) and University of Adelaide (Yuval Yarom) recently presented a new attack technique that targets Intel CPUs. The attack, dubbed CacheOut (CVE-2020-0549), is… read more »
  • Jan 28, 2020

    TLDR #1: Jeff Bezos’ iPhone hack

    Just few words (and links) about this hot topic. The Amazon billionaire Jeff Bezos had his mobile phone “hacked” in 2018 after receiving a WhatsApp message that had apparently been sent from the personal account of the crown prince of… read more »