Just got a signed copy from Skyper and coin from Phrack Zine. Thanks for all you do chompie and Phrack Zine 🙏🏻🫶🏻

youtube.com/watch?v=TW-D1I…

Great writeup from Intel 471! intel471.com/blog/the-phrac…

Did you miss our DEF CON panel this year? It's hacker history storytime hosted by Richard Johnson Battle Programmer Yuu chompie with special guests! Check it out: youtube.com/watch?v=TW-D1I…

More free Phrack Zine zines at Datenspuren!

Very good report.

This blog post has a great breakdown of all the data in the archives from the recently released Phrack Zine article on attacks in Korea. It goes into great detail on the Linux rootkit operation and changes from a 2022 version. enki.co.kr/en/media-cente…

APT from China bases their kernel backdoor on team-teso's 20+ years old adore-ng....💁‍♂️ 👉👉Team-Teso is not amused. enki.co.kr/en/media-cente… Thanks Phrack Zine for finding this 🍿

South Korea parliament hearing regarding China/NK hacking South Korea (as disclosed by Phrack) at 10am local time today 👀. Good luck. Latest analysis: enki.co.kr/en/media-cente…

At a time of heightened scrutiny and criticism over S. Korea's cyber resilience and government IT security, a fire at the National Information Resources Service has knocked out Gov24, the Onnara intranet, government email and dozens of other key systems. biz.heraldcorp.com/article/105846…

1/ South Korea is currently suffering a catastrophic digital infrastructure failure after a government data centre fire, highlighting a growing realisation that the country's digital security architecture is built on a castle of sand with no proper backup systems.

Sandfly is releasing a free script to find stealth rootkit kernel modules on Linux. It will reveal hidden modules from the recent North Korean rootkit, plus Reptile and other variants. This is what the North Korean rootkit looks like when active. See link in thread for repo.

I'm getting my slides finished for my trip to the FIRST Oslo Cold Incident Response Conference next week. We're going to be going after Linux kernel rootkits. I'll post the slides after it's over and it's going to be loaded with information on decloaking this kind of attack.

I have *so* many questions.

Added syntax highlighting to Aleph1's SMASHING THE STACK FOR FUN & PROFIT. Enjoy this classic in full color :> phrack.org/issues/49/14_m…

1/ South Korea's spy agency has raised the national cyber crisis alert for government systems from "Attention" to "Caution" as of 6 PM today, following the data centre fire that crippled government systems.

Amazing

Presentation ready for the Oslo Cold Incident Response Conference next week. I'm looking forward to seeing everyone. We're going to be decloaking Linux stealth rootkits with command line tools. I'll post the slides when it's over.

Shocking

Raphael Rashid That's sad. The culprit is to the North. South Korea, please fix this. You know where you can find us. Happy to assist.