Rick Hunter

@rickhunter@infosec.exchange
10 Followers
56 Following
247 Posts
Got roped into product security by sitting in the wrong cockpit at the wrong time.
Rick HunterFeb 20
daniel:// stenberg://Feb 20
It's time to re-enjoy this golden quote about me and #curl, shown in the most awesome way.
Rick HunterAug 8, 2024
Jen GentlemanAug 8, 2024
😶
Rick HunterJul 25, 2024
Kenn WhiteJul 25, 2024

Protip: When choosing a root-of-trust encryption key for a hardware secure enclave, maybe don't use the vendor's asymmetric key literally labeled "CN=DO NOT TRUST - Test PK". New scoop by @dangoodin: Secure Boot is Completely Broken on 200+ Models from 5 Big Device Makers

https://arstechnica.com/security/2024/07/secure-boot-is-completely-compromised-on-200-models-from-5-big-device-makers/

Secure Boot is completely broken on 200+ models from 5 big device makers

Keys were labeled “DO NOT TRUST.” Nearly 500 device models use them anyway.

Ars Technica
Rick HunterJul 19, 2024
Rick HunterJul 16, 2024

So, let me see if I understand the current state of anti-malware from an application vendor's perspective:

* One tool's AI/ML feature hallucinates and marks your software as malware
* VirusTotal publishes their finding
* All the other anti-malware vendors see the one report in VirusTotal and copy it.
* App vendor's customers complain because their local scanner or IT department's monitoring freaks out
* The app vendor has to individually contact each anti-malware vendor, dealing with broken support portals, outdated contact info, or full email inboxes.
* A few vendors clear your app, while others won't clear their finding until other vendors clear first (insert Spiderman pointing meme)
* Repeat forever

Rick HunterApr 12, 2024
Gert van DijkApr 10, 2024

Lasse Collin in commit message: “The other maintainer suddenly disappeared.” 😆

#jiatan #xz
https://github.com/tukaani-project/xz/commit/77a294d98a9d2d48f7e4ac273711518bf689f5c4

Update maintainer and author info. · tukaani-project/xz@77a294d

The other maintainer suddenly disappeared.

GitHub
Rick HunterJan 25, 2024
Glyn MoodyJan 25, 2024
The amazing helicopter on #Mars, Ingenuity, will fly no more - https://arstechnica.com/space/2024/01/nasas-mars-helicopter-has-made-its-last-flight-above-the-red-planet/ "has flown a staggering 72 flights. It has spent more than two hours—128.3 minutes, to be precise—flying through the thin Martian air."
The amazing helicopter on Mars, Ingenuity, will fly no more

Ingenuity has spent more than two hours flying above Mars since April 2021.

Ars Technica
Rick HunterNov 28, 2023

There's a lot of appeal to Cybellum, but their SBOM scanning tech is still immature on Windows. They consistently mis-identify Microsoft's binaries as OSS equivalents (Wine, Samba), even though those binaries are attributed and signed by MS. Hoping they get that resolved soon.

https://bird.makeup/users/thecybersechub/statuses/1729516803616117009

The Cyber Security Hub™

Cybellum achieves significant market share growth among leading medical device manufacturers https://www.helpnetsecurity.com/2023/11/28/cybellum-medical-device-manufacturers-market-share/?utm_source=dlvr.it&utm_medium=twitter

Rick HunterAug 24, 2023
Politico's headline game on point!
https://www.politico.eu/article/wagner-reacts-oh-my-god-they-killed-yevgeny-you-bastards/
Wagner allies react: OMG, they killed Yevgeny! You bastards!

The former catering chief’s death is an ominous sign for his cheerleaders.

POLITICO
Rick HunterAug 23, 2023
First the moon, now this. What will Russia crash next?
×
Gert van DijkApr 10, 2024

Lasse Collin in commit message: “The other maintainer suddenly disappeared.” 😆

#jiatan #xz
https://github.com/tukaani-project/xz/commit/77a294d98a9d2d48f7e4ac273711518bf689f5c4

Show threadGert van DijkApr 10, 2024

Also #jiatan in #xz: No need to create a PR, we usually cherry-pick and *edit your commits* preserving you as the author. 😏

https://github.com/tukaani-project/xz/issues/18#issuecomment-1994829182

[Feature Request]: Create Windows CI Support · Issue #18 · tukaani-project/xz

Describe the Feature Both MinGw and CMake Windows builds should be tested. Expected Complications Downloading the correct build environment dependencies could be tricky. GitHub might have some reus...

GitHub
Show threadmathieuiApr 10, 2024
@gertvdijk this commit is even better https://github.com/tukaani-project/xz/commit/780cbf29d5a88db2b546e9b7b019c4c33ca72685
Fix NEWS for 5.6.0 and 5.6.1. · tukaani-project/xz@780cbf2

XZ Utils. Contribute to tukaani-project/xz development by creating an account on GitHub.

GitHub
Show threadraboofApr 10, 2024
@mathieui @gertvdijk I am very glad to see they appear to have their sense of perspective and humor intact!
Show threadKevin Karhan Apr 10, 2024
@gertvdijk would not be surprised if he was forcibly disappeared...
Show threadsrslypascalApr 10, 2024
@kkarhan @gertvdijk I doubt that, xz is a *lossless* compression after all.
Show threadKevin Karhan Apr 10, 2024
@srslypascal @gertvdijk that's some 1/10 #shitpost...
Show threadollibabaApr 10, 2024
@gertvdijk Also, removing them from the "THANKS" file! Maybe should add a NO_THANKS file instead? ;-)
Show threadjayApr 10, 2024
@gertvdijk I hope we don't see a Rise of Skywalker style "Somehow JiaTan returned" commit in a few years
Show threadstux⚡Apr 10, 2024
@gertvdijk I still am very curious though what team was behind it all 
Show threadRiley S. FaelanApr 10, 2024
@gertvdijk I would publicly state that I'm not honouring any of Jia Tan's copyrights or authorship on xz-utils, and challenge them to sue me if they want such a state of affairs to change.
Show threadspvApr 10, 2024
@riley @gertvdijk so we can find their real name through the courts! brilliant!
Show threadRiley S. FaelanApr 10, 2024
@spv Or they will not get any credit. (We might need to heap praise upon how elegant the backdoor was in order to entice them to want that credit.)
Show threadspvApr 10, 2024

@riley brb, boutta spam the internet with llm-generated jiatan-stan-spam so scammers scan the internet and think it's a popular opinion and it becomes accepted in the public consciousness

fuck did i just invent disinformation campaigns again

Show threadkolyaApr 10, 2024
@gertvdijk sounds a bit wistful for the days when a state sponsored actor helped with maintenance
Show threadKarl Matthias 🇺🇦Apr 10, 2024
@gertvdijk @jwz I feel bad for Lasse Collin. Needed help, was taken advantage of, but still stepped up to deal with the fallout. We should all appreciate that dedication🙏
Show threadnjsgApr 10, 2024

@gertvdijk I've chuckled reading yesterday's NEWS changes [1] for v5.6.1: "This fixed bugs in the backdoor" :-)

[1] https://git.tukaani.org/?p=xz.git;a=commitdiff;h=780cbf29d5a88db2b546e9b7b019c4c33ca72685

Show threadqerupasyApr 11, 2024
@gertvdijk Good to see that he has his GitHub back.
Show threadJavier Jimenez ShawApr 11, 2024

@gertvdijk
This commit message is also good: "Backdoors are bad for security."

https://github.com/tukaani-project/xz/commit/e93e13c8b3bec925c56e0c0b675d8000a0f7f754

Remove the backdoor found in 5.6.0 and 5.6.1 (CVE-2024-3094). · tukaani-project/xz@e93e13c

While the backdoor was inactive (and thus harmless) without inserting a small trigger code into the build system when the source package was created, it's good to remove this anyway: - The e...

GitHub
Show threadSamantaz FoxApr 11, 2024

@gertvdijk This other commit to the changelog is really fun, too:

https://github.com/tukaani-project/xz/commit/780cbf29d5a88db2b546e9b7b019c4c33ca72685

Fix NEWS for 5.6.0 and 5.6.1. · tukaani-project/xz@780cbf2

XZ Utils. Contribute to tukaani-project/xz development by creating an account on GitHub.

GitHub
Show threadvxoApr 12, 2024
@gertvdijk to be found eventually buried in a landfill among Corel Linux boxes
@jwz
Show threadtessie Apr 12, 2024
@gertvdijk "special author" haha
Show threadur angle, or ur devil.....Apr 13, 2024
@gertvdijk vaxed?
Show threadEric ZhangApr 13, 2024
@ligma_male @gertvdijk vac banned