Andrew 🌻 Brandt πŸ‡

@[email protected]
3.4K Followers
791 Following
5.8K Posts

Words published here do not necessarily reflect views of my employer or any other organization I am affiliated with.

Research and analysis about malware, network forensics, and the intersection of crime with anything that electrons or photons flow through.

Board member of World Cyber Health, the parent organization behind Malware Village and the NO-HAVOC project.

Docent of obsolete technology at @mediaarchaeologylab

Executive director, Elect More Hackers: electmorehackers.com

"By reading this, you agree, on behalf of your employer, to release me from all obligations and waivers arising from any and all NON-NEGOTIATED agreements, licenses, terms-of-service, shrinkwrap, clickwrap, browsewrap, confidentiality, non-disclosure, non-compete and acceptable use policies ("BOGUS AGREEMENTS") that I have entered into with your employer, its partners, licensors, agents and assigns, in perpetuity, without prejudice to my ongoing rights and privileges." -- Cory Doctorow

Backup tooter@threatresearch.bsky.social
Threat levelmostly harmless
Andrew 🌻 Brandt πŸ‡1d ago
BrianKrebs1d ago

From the WTAF dept:

Malware developers are now adding text about nuclear and biological weapons to their spyware to evade AI-based security scanners.

tl;dr: The inclusion of content that LLMs are trained to refuse -- such as information about nukes and bioweapons -- can effectively prevent the LLM from continuing to analyze the threat.

"This header appears designed for AI-mediated analysis, not for Node, Bun, or Python. It attempts to derail scanners or analyst copilots that feed the beginning of a file to a language model without clearly isolating the content as untrusted data. In weak pipelines, this can cause refusal behavior, prompt confusion, context pollution, or premature classification before the scanner reaches the actual malware."

https://socket.dev/blog/mini-shai-hulud-miasma-and-hades-worms-target-bioinformatics-and-mcp-developers-via-malicious

IDK why, but this reminds me of the Calvin & Hobbes cartoon where Calvin asks his mom for stuff she will never give him in a million years, and then he just asks for a cookie.

Andrew 🌻 Brandt πŸ‡1d ago
Jessica Lyons1d ago
Nightmare Eclipse released yet another 0-day exploit late Wednesday that they claim will spawn a command prompt that provides total access to the BitLocker volume. Researchers like @wdormann report mixed results: https://www.theregister.com/security/2026/06/11/nightmare-eclipse-drops-claimed-bitlocker-bypass-for-microsoft-windows/5254371
Nightmare Eclipse drops claimed BitLocker bypass for Microsoft Windows

Another day, another Windows exploit code

theregister
Andrew 🌻 Brandt πŸ‡1d ago
stacksmashing1d ago

My DEF CON talk "Hacking jetskis - from Sea-Don't to Sea-Doo" got accepted πŸ₯³

We'll be having some good fun - such as bypassing the immobilizer using a custom Flipper Zero app, building a custom diagnostic adapter, and some big plot-twists πŸ›₯️

Andrew 🌻 Brandt πŸ‡2d ago

Have you ever used Facebook business tools for your Meta pages?

Did you know how easy it is to scam someone using these tools? And then you can just create a new account and do it all over again?

Meta: Not Even Once

Andrew 🌻 Brandt πŸ‡2d ago

I'm getting extremely frustrated with stories like this about officers abusing #Flock cameras and search systems to engage in stalking and harassment.

As much as the system can help cops (acting in good faith) solve emergent crime situations, the entire system becomes toxic when it cannot prevent officers like this from abusing it.

In the end, the very existence of a system, like Flock has created, is too much of a temptation for some officers, and inevitably leads some to abuse it.

Systems like this, that create an environment ripe for abuse and that systematically fail to adequately discipline the abusers, must be dismantled.

https://www.404media.co/cops-keep-getting-arrested-for-using-flock-to-stalk-people/

#Flock #abuse #fraud #police #crime #privacy #security

Andrew 🌻 Brandt πŸ‡4d ago
Electronic Frontier Foundation4d ago
Interested in attending Black Hat this summer? EFF supporters can get discounted passes when registering with our code! Learn more here: https://eff.org/blackhat
EFF at Black Hat USA

EFF will be back in Las Vegas, NV for Black Hat USA! We're excited to be in the Business Hall, where you can come say hi and learn more about the work we are doing to defend digital freedoms. You can even pick up a special member gift as a token of our thanks when you take advantage of our...

Electronic Frontier Foundation
Andrew 🌻 Brandt πŸ‡4d ago
Patrick C Miller 4d ago
Over 116,000 Minecraft systems infected in WeedHack malware campaign https://www.bleepingcomputer.com/news/security/over-116-000-minecraft-systems-infected-in-weedhack-malware-campaign/
Over 116,000 Minecraft systems infected in WeedHack malware campaign

A large-scale malware campaign dubbed WeedHack is targeting Minecraft players and has infected more than 116,000 systems since January.

BleepingComputer
Andrew 🌻 Brandt πŸ‡4d ago
Show threadevacide4d ago
@floe It is important to celebrate your victories as an activist, even if no win is permanent or total, because otherwise you will burn out to a cinder. I find people who piss on every achievement because it is not perfect or complete incredibly tedious and unhelpful.
Andrew 🌻 Brandt πŸ‡4d ago
Molly White4d ago

I've been running Follow the Crypto since 2024. Today I'm relaunching it as Tech Influence Watch, expanded to cover AI political spending alongside crypto. They’ve spent more than $400 million this election cycle, and now you can follow it in close to real time.

https://influence.citationneeded.news/

Here’s the full story behind the Tech Influence Watch launch, including what I found while building it and why it matters now: https://www.citationneeded.news/tech-influence-watch/

#crypto #cryptocurrency #AI #ArtificialIntelligence #USpol #USpolitics #CitationNeededNewsletter

Tech Influence Watch

Tracking cryptocurrency and artificial intelligence industry influence on 2026 elections in the United States.

Tech Influence Watch
Andrew 🌻 Brandt πŸ‡4d ago
Show threadMolly White4d ago

The crypto industry spent $130 million buying the 2024 elections. Over a dozen pro-crypto Congresspeople were installed, and regulatory destruction followed. Now AI is running the same play, with the same strategists and funders. Following only crypto would be telling half the story.

#crypto #cryptocurrency #AI #ArtificialIntelligence #USpol #USpolitics #CitationNeededNewsletter