Discover and read the best of Twitter Threads about #cve

Most recents (24)

mshtml.dll was loaded into winword process, when Microsoft MSHTML used? I guess, it will be nice for #threathunting perspective
based on sample: app.any.run/tasks/36c14029…
possible another suspicious loads: ExplorerFrame.dll, ieproxy.dll

#CVE-2021-40444 #DFIR #BlueTeam
...run query on prod enviroment, last 30 days - 0 FPs hists. via (MDATP) @MSThreatProtect
Read 3 tweets
#RaisinaEdit offers a selection of commentaries that unpack, interpret, and problematise contemporary global developments corresponding to the Raisina Dialogue thematic pillars of 2021.

Curated by Harsh Pant and @WarjriLaetitia

#Raisina2021

Read ➡ bit.ly/32h18pv
#RaisinaEdit | If “Data is the New Oil” then our individual data has intrinsic value and, thus, the monetisation of the collective data of millions of our citizens is the proverbial gold mine, says Abdul Hakeem Ajijola: or-f.org/85352
Economic interdependence, imperatives of political geography, and Beijing’s successful elite capture in many societies have made it difficult for many in Asia to contest the unfolding Chinese dominance over the region, points out @MohanCRaja #RaisinaEdit: or-f.org/85281
Read 17 tweets
When the dust clears, folks will inevitably start talking about "countering violent extremism" #CVE aimed at the types of folks who stormed the capitol today. Here are a few things to think about.
What is CVE? Well, its a lot of diff things, lets go through them:
➡️ trying to ID potentially violent folks, very hard to do, where do you even start when you can't focus your resources on an identifiable minority as #CVE has done so far. No evidence it works at all.
➡️ community outreach to build relations with "affected communities" in the hope they will tell you what's going on. Generally cops/DHS/FBI have mtgs with ppl they identify as community leaders. Not clear how this translates when you can't really identify a "community."
Read 9 tweets
A hashtag appeared on panel asking for public hangings of rapists. I did initial data comparison of people who participated in this hashtag and various other hashtags. I found that
1) 27% users who were propagating "a woman shouldn't travel without a Mehram escorting her"
demanded public hangings of rapists.
2) 13% of "Travel with Mehram" advocates used abusive word "Randi" in their recent tweets while addressing some women on social media.
3) Out of users of "Randi" word in their recent tweets, 13% asked for public hangings
4) 12% users who contributed to a hashtag glorifying Khalid's act of killing a person in the court, demanded public hangings of rapists.
5) 8% users who labelled #AuratMarch2020 as Fahashi and Aurat Barbadi march, now asked for public hangings of rapists
Read 7 tweets
Here's a digest of my understanding of #CVE-2020-1472 for the Microsoft Netlogon secure channel vulnerability and what you need to do to protect yourself. Thread. ⬇️
Firstly, what's the issue? Well it seems an attacker could essentially become a domain admin, without needing to authenticate to the DC. They just need line-of-site. Yikes.
What is netlogon? Domain-joined systems use the Netlogon Remote Protocol (MS-NRPC) for secure communications between a client machine and a DC for things such as DC discovery, authentication, password changes, etc. Is is also used for trusts between forests.
Read 18 tweets
As a Romanian Jew, let me clear this up - Codreanu was to Romania what Hitler was to Germany and Mussolini was to Italy. ANY #CVE "deradicalization" expert who calls Codreanu "a Saint in my book" & rages about a (((parasite class))) is not a "former" neo-Nazi but an active one.
Check this out - a "former" neo-Nazi working in CVE & proclaiming expertise in reforming extremists is openly praising the Romanian Iron Guard. @FFRAFAction @JoeMulhall_ @MichaelEHayden @letsgomathias @jaredlholt @egavactip @hopenothate @AmarAmarasingam @MackLamoureux @Hatewatch
TIP: if you're an anti-racist group led by former neo-Nazis who claim expertise in deradicalizing extremists - having a spokesman who worships the Iron Guard, praises David Irving's "valuable insight" & lauds "degeneracy" laws that "threw homosexuals in jail" is a bad look. #CVE
Read 3 tweets
It's a total grift. I put 3 white supremacists leaders in jail solely on my testimony, helped shut down a hate group, turned 30 affidavits to police re guns/crime and lived in poverty & hiding for yrs. And unlike those who risked nothing, I wasn't offered a book, movie or TV deal
The CVE field is rampant w/ grifters & profiteers. After being groomed & exploited by neo-Nazis as a teen girl, I was exploited by @CBC, who took my life from headlines & made a movie that attributed it to another woman - a "former" who stole my story and marketed it as her own.
As I lived in hiding & dumpster-dived for food to stay alive, @CBC & @onemooreliz were making money & publicity from my life story. I made a difference - and others tried to steal it from me, knowing I wasn't well-connected & didn't have $$ to hire lawyers incognitopress.wordpress.com/2020/02/02/the…
Read 18 tweets
In non-impeachment news, @ewarren just put out a plan to fight white nationalist violence. Thread on why it's really pretty good. elizabethwarren.com/plans/confront…
It focuses on white nationalist VIOLENCE, rather than speech or ideology thus avoiding slippage between speech and action that we have seen in other contexts (e.g., targeting Muslims for terrorism based on their religious beliefs rather than their actions).
It correctly notes that the problem is that FBI hasn't traditionally given priority to white nationalist violence & this has to change.
Read 9 tweets
You can always count on politicians to go after the low hanging fruit, full well knowing those proposed initiatives-if ever enacted-will have very little impact on public safety.

Instead, they should focusing on combating the ideology that drives action.

#CVE
“Lone offenders or small groups may radicalize to commit violence at home or attempt to travel overseas to become foreign fighters, while targeted violence has struck schools, workplaces and large public gatherings.”

dhs.gov/tvtp
What is CVE?

The term “countering violent extremism,” or CVE, refers to proactive actions to counter efforts by extremists to recruit, radicalize, and mobilize followers to violence.

dhs.gov/cve/what-is-cve
Read 15 tweets
Recent @UN Security Council report @UN_CTED the current state of ISIL, Al-Qaeda, and associated individuals and entities. un.org/securitycounci… Grab a fresh cup of coffee and follow along as I highlight some key points that stood out to me......
@UN @UN_CTED 1. “ISIL, however, remains much stronger than AQ in terms of finances, media profile and current combat experience and terrorist expertise and remains the more immediate threat to global security.” There there's the death of Hamza bin Ladin. brookings.edu/blog/order-fro… @dbyman
@UN @UN_CTED @dbyman 2. @azelin‘s has documented how AQ has “survived drones, uprisings, and the Islamic State.” Read more about the group’s survival mechanisms in this @WashInstitute Policy Focus. washingtoninstitute.org/policy-analysi…
Read 35 tweets
THREAD: here is some expansion on what I discussed on @MSNBC @KasieDC RE: what could be done yesterday to elevate our Federal #DomesticTerrorism prevention efforts, h/t to @tribelaw for the thread prompt and @SeamusHughes for his insight 1/
My former office, @DHSgov Ofc of Targeted Violence and Terrorism Prevention once had a budget of $22 mil now $2.7-3 mil and once 40 FTEs now 7-10 FTEs, the #Trump Admin actively atrophied the office w/ specific focus on #DomesticTerrorism prevention programming 2/
This systematic atrophy included the pulling back of announced grant funding for programs specific to #DomesticTerrorism (DT) prevention, grant award were pulled back from #LifeAfterHate bc the org was critical of #Trump for example (evidence in FOIA req) 3/
Read 14 tweets
ICCT Project Manager/Research Fellow @reinierbergema kicks off Day Two of #ICCTConf by introducing this morning’s panelists, @clairevandyck, @DrDPrabhat, and @lauravanwaas! @TMCAsser Image
@BristolUni’s @DrDPrabhat uses the recent case of #ShamimaBegum to illustrate how statelessness is the foremost concern when the deprivation of citizenship is used for #counterterrorism purposes #ICCTConf Image
Next up @lauravanwaas, cofounder of @institute_si, explains how denial of nationality is used as a way to strip people or communities of rights - and how it is one of the most challenging human rights issues we face today. #ICCTConf Image
Read 13 tweets
@DrRumyanavanArk is opening the conference with a welcoming remark @TMCAsser @ICCT_TheHague #ICCTConf Image
@IDuyvesteyn is giving a keynote speech on ‘What is Terrorism? What is Extremism? - Lessons from the Past’. She argues that there is no clear cut answer for what is an effective #CT strategy @TMCAsser #ICCTConf Image
@IDuyvesteyn explains about the theory and effectiveness of three models in #CT: criminal justice model, war model and intelligence model @TMCAsser #ICCTConf
Read 9 tweets
1. What can we learn about ISIS supporters based on the many different subtitled language translations that have appeared online since the emergence of a new video showing Abu Bakr Al Baghdadi? Some insights to follow, would welcome other thoughts (Image- Portuguese translation)
2. Ever since the video release on April 29, supporters of ISIS have rallied around their Emir, the caliph of the now caliphateless caliphate to strengthen their resolve and reaffirm their online resilience- something they refer to as 'media jihad' in 'Wilayat Internet'
3. Online, ISIS created a "sense of virtual community to which those who otherwise felt adrift and detached from their real communities were drawn" writes @jgeltzer in an excellent piece for @TheAtlantic theatlantic.com/ideas/archive/…
Read 12 tweets
#Breaking: At least 160 killed and hundreds more injured in coordinated #Islamic suicide bomb attacks. Six serial explosions rocked Catholic Churches, 5 stars hotels in #SriLanka as Christians began Easter Sunday celebrations. #lka #CVE
1/1 Thowheed Jamaath is already a cancer in #TamilNadu. They have strong influence in Vellore, Ambur, Vaniyambadi & Gudiyatham; Keezhakarai, Nagapattinam, Ramanathapuram areas. Their branches in UAE, Qatar, Saudi Arabia, Kuwait, Malaysia, UK, France, USA, and Australia #CVE
1/2 #UPDATE The seventh attack hit a hotel in the southern Colombo suburb of Dehiwala, after a string of explosions at churches and hotels in #SriLanka's capital. #lka #CVE
Read 37 tweets
Maar ook als biopsychosociaal kamp, kan je vinden dat in #CVE interveniëren obv leertheoretisch simplisme terwijl je niet doorgrondt waarin je intervenieert en patienten-feedback niet gebruikt om je hypotheses te falsifieren, een heilloze weg is, hoor>
blogs.plos.org/absolutely-may…
> Ik moet tenminste de eerste biopsychosociaal denker die meent dat je in de lamheid van griep moet interveniëren met stevig oefenen, nog tegenkomen. En is het in zijn algemeenheid gesproken niet zo dat ook degene die bewegen als medicijn ziet, zich ook bezig moet houden met >>
>> dosering en therapeutische breedte, zo hij al het juiste medicijn voor de kwaal voorschrijft?

En in een dynamiek-analogie: Het moge waar zijn dat je de kwaliteit van stilstaand water omhoog kunt brengen door het in beweging te brengen, maar kan je je daarbij permitteren >>>
Read 4 tweets
Thread. I recently tweeted about the link between #Interfaith & CVE/PVE funding, citing the excellent report by @ArunKundnani & #BenHayes. tni.org/en/publication… #Prevent 1/
Yesterday I saw this article entitled "A Sobering Time For Interfaith" by Charlotte Littlewood. (Odd title as Allah s.w.t. Commanded Muslims to be sober at all times) blogs.timesofisrael.com/a-sobering-tim… 2/
Right at the end of the article it says that Littlewood was involved in Countering Violent Extremism Projects. #CVE It is beyond any doubt to me that Interfaith is an attempt to normalise Muslim relationships with #zionists. 3/
Read 4 tweets
HAPPENING NOW: LA City Council to vote on whether to take $$ from Dept. of Homeland Security for “countering violent extremism.” Civil liberties groups say program, started under Obama, has largely targeted — and stigmatized —Muslims…
…This concern was only heightened when the Trump administration last year rescinded a CVE grant for fighting extremism among white supremacists
Council expected to accept #CVE grant. Dozens here to convince it otherwise with signs that read “CVE is Islamophobia” & “CVE criminalizes black and brown youth” Image
Read 10 tweets
1/ The City Council votes tomorrow on accepting over $425,000 in funds related to the Department of Homeland Security’s “Countering Violent Extremism” (CVE) program.

Here's why we are talking about CVE and demanding that the City Council keep #CVA out of Los Angeles!
About #CVE

2/ “Countering Violent Extremism” or CVE is an Islamophobic program created by the Department of Homeland Security to justify increased surveillance of Muslim communities, and therefore increase criminalization.
3/ CVE infiltrates Muslim communities disguised as “mental health support” and “social services” through K-12 school programs and partnerships with universities, organizations, and mosques/religious institutions.

CVE often takes the shape of grant money.
Read 23 tweets
Windows Defender ATP can surface attacks against your #Linux machines, thanks to our sensor partners. Here's a cool video from our partner @ZiftenInc about the recent #DynoRoot exploit #CVE-2018-1111:
Use Windows Defender ATP #AdvancedHunting to find attacks involving #DynoRoot DHCP exploit, which uses CVE-2018-1111 to remotely run arbitrary commands as root on #RedHat Enterprise Linux 6 or 7. Visit our GitHub repo for the query. github.com/Microsoft/Wind… Image
Here’s the Windows Defender ATP #AdvancedHunting query that finds attacks that use the #DynoRoot DHCP exploit CVE-2018-1111: github.com/Microsoft/Wind…
Read 3 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!