hexproof

@[email protected]
3 Followers
14 Following
5 Posts
Show threadhexproofApr 30

@mattburgess @lhn

Last year Amazon stonewalled TechCrunch for weeks after being told Cocospy's S3 buckets were live with victim data. Will there be a followup article about Amazon's "process"?

https://techcrunch.com/2025/03/13/amazon-is-still-hosting-stalkerware-victims-data-weeks-after-breach-alert/

https://techcrunch.com/2025/05/19/cocospy-stalkerware-apps-go-offline-after-data-breach/

https://www.wired.com/story/exposed-data-illustrates-the-nightmare-scenario-for-a-stalkerware-victim/

cc @zackwhittaker

Amazon is still hosting spyware victims' data weeks after breach alert | TechCrunch

Amazon won't say if it will stop hosting data from three phone surveillance operations that spilled private data on millions of people.

TechCrunch
hexproofApr 30

Cerberus is one of the longest-running stalkerware apps on Android.

We reverse-engineered their ecosystem to document how it operates, and why Google must remove it from the Play Store, stop monetizing it through AdMob, and stop hosting the Firebase Cloud Messaging that runs its C2.

tl;dr https://hexproof.dev/datagrams/cerberus-on-play/

deep dive https://hexproof.dev/datagrams/cerberus-stalkerware-re/

#reverseengineering #android #stalkerware

Cerberus is stalkerware. Google Play hosts it.

Cerberus on Google Play: €5/month buys silent camera, microphone, GPS, and SMS access on a victim's phone. Researchers reported it to Google as intimate-partner-violence spyware in 2018; Google removed it later that year on an unrelated policy and relisted it in 2023. Google AdMob pays the developer; Google Firebase hosts the command-and-control backend.

hexproof
hexproofApr 10

Hello world, I'm @eslerm and will be posting about security and systems performance on @hexproof

My first post compares the recently leaked Claude Code source code with other harnesses:

https://hexproof.dev/datagrams/fossil-record-harness-engineering/

The Fossil Record of Harness Engineering

How Claude Code, Aider, Cursor, Windsurf, and Copilot engineer the systems around their models — and what the architecture reveals about each team's priorities. From source code and leaked prompts.

hexproof