director of infosec at @theintercept | tweets are @semiphemeral | he/him | tor dropbox nitter.net/micahflee/status…

.onion
Joined October 2009
Micah retweeted
Seems insanely bad and way worse affront to personal liberties than “canceled” kids books or whatever, but that’s just me
NEW: Republicans in 34 states have introduced legislation to crack down on protestors. They'd bar people from student loans & state aid, boost penalties for unlawful assembly and immunize drivers who strike protesters in the streets. w/@PatriciaMazzei nytimes.com/2021/04/21/us/po…
11
187
1
862
Micah retweeted
Our latest blog post explores vulnerabilities and possible Apple copyright violations in Cellebrite's software: "Exploiting vulnerabilities in Cellebrite UFED and Physical Analyzer from an app's perspective" signal.org/blog/cellebrite-v…
140
1,561
573
4,367
137,996
Micah retweeted
Truly unbelievable. (this is an incredible post from Signal) signal.org/blog/cellebrite-v…
12
250
74
817
Show this thread
Micah retweeted
Dylan Roof killed multiple people and they found a way to arrest him without killing him. I don’t wanna hear any excuses
244
2,142
117
6,150
They took Dylan Roof to Burger King after he murdered 9 Black people. BURGER KING. But you can't apprehend someone with a knife when you don't even know what the fucking situation is? Just get out of your car and start shooting. Fuck you.
372
4,354
177
15,714
Show this thread
This is 🔥🔥🔥. Cellebrite makes software used by repressive governments and police to search smartphones. Here's a brief summary 👇
A few months ago Cellebrite announced that they would begin parsing data from Signal in their extraction tools. It seems they're not doing that very carefully. Exploiting vulnerabilities in Cellebrite's software, from an app's perspective: signal.org/blog/cellebrite-v…
1
28
3
47
"By a truly unbelievable coincidence, [Moxie] was recently out for a walk when [he] saw a small package fall off a truck ahead of me" It contained Cellebrite's UFED software, used to extract data from seized smartphones. Turns out, it's full of security vulnerabilities
1
6
1
15
All you need to do is place a special file on a smartphone, and if someone uses UFED to extract data from that phone you can completely hack the computer they're using. Here's a still from the demo video in Moxie's blog post, exploiting the Windows box running UFED
3
1
0
9
Since Cellebrite's software is FULL of vulns, the reports it generates can't be trusted: Any phone that gets scanned using its software can modify any data in the reports in any way it wants. Cellebrite's only solution is fixing all these security bugs
1
11
0
15
"We are of course willing to responsibly disclose the specific vulnerabilities we know about to Cellebrite if they do the same for all the vulnerabilities they use in their physical extraction and other services to their respective vendors, now and in the future." 🔥🔥🔥
1
2
1
18
Moxie noticed that Cellebrite appears to be violating Apple's copyright by redistributing its software to its customers And, Signal might start periodically dropping some files in the app storage on a small number of randomly selected phones, you know, for no apparent reason
2
3
1
23
Micah retweeted
A few months ago Cellebrite announced that they would begin parsing data from Signal in their extraction tools. It seems they're not doing that very carefully. Exploiting vulnerabilities in Cellebrite's software, from an app's perspective: signal.org/blog/cellebrite-v…
116
2,180
817
5,580
In the last 16 years about 0.05% of police killings have lead to a cop convicted of murder
Chauvin is the 7th on-duty cop to be convicted of murder since 2005, out of around 15,000 police killings in that time.
Show this thread
0
10
0
26
Kyle Rittenhouse like 😬
7
22
0
208
Micah retweeted
How was the officer involved?
BREAKING: Police on scene near Legion Road with an officer involved shooting. We’re working to get more information from police. @wsyx6
Show this thread
37
183
5
1,505
Show this thread
Micah retweeted
This is but a minuscule step on the path to justice. Next stops: * Independent agency to investigate police misuse of force * Criminalize violence against protesters * Demilitarize police departments * Disband and deconstruct failed police departments
381
2,222
134
13,012
Show this thread