How to fix the Crowdstrike thing: 1. Boot Windows into safe mode 2. Go to C:\Windows\System32\drivers\CrowdStrike 3. Delete C-00000291*.sys 4. Repeat for every host in your enterprise network including remote workers 5. If you're using BitLocker jump off a bridge

😂

Here's the DEF CON 32 Aerospace Village badge, with ADS-B. linkedin.com/posts/mattmaye…

Thanks to everyone who came to my talks at defcon on the Tempest c2. Below are some links to the slides, 1st blog post, and repo. More on the way: slides: teach2breach.io/defcon/TEMPEST… Tempest c2 intro blog: teach2breach.io/tempest-intro/ repo: github.com/Teach2Breach/T…

In a massive win for privacy, the Fifth Circuit Court of Appeals has decided that Geofence warrants are “categorically” unconstitutional. eff.org/deeplinks/2024…

Post-Quantum Cryptography Standards Officially Announced by NIST – a History and Explanation securityweek.com/post-quantum-c…

You went to DEFCON, and got your cool badge. Now what? Did you know Raspberry Pi foundation has a RP2350 Hacking Challenge with a $10k bounty? The goal is to extract a secret hidden at OTP ROW 0xc08. It's 128 bits long. There are two barriers in the way: 1. The RP2350's

The Nevada Gaming Control Board has filed a complaint against Resorts World Las Vegas for alleged violations of Nevada gaming laws. They allege Resorts World's "compliance issues" damaged the state of Nevada and its gaming industry. This is a big deal.

In April, Sam Curry and I discovered a way to bypass airport security via SQL injection in a database of crewmembers. Unfortunately, DHS ghosted us after we disclosed the issue, and the TSA attempted to cover up what we found. Here is our writeup: ian.sh/tsa

HOW TO ROTATE YOUR VULNERABLE YUBIKEYS (PLEASE LIKE AND SHARE)

New writeup from ꙅɿɘƚɔɘqꙅ and I: we're finally allowed to disclose a vulnerability reported to Kia which would've allowed an attacker to remotely control almost all vehicles made after 2013 using only the license plate. Full disclosure: samcurry.net/hacking-kia

You have to start somewhere x.com/ClownWorld_/st…

200 IQ

New blog post with shubs: We found a vulnerability in Subaru where an attacker, with just a license plate, could retrieve the full location history, unlock, and start vehicles remotely. The issue was reported and patched. Full post here: samcurry.net/hacking-subaru

The SPECTRAN V4 Handheld is back - But now in COLOR 😊 9kHz - 6GHz Integrated 3D Compass Loaded with Direction Finding Software More to come soon! #Aaronia #RF #SpectrumAnalyzer