Alex Ionescu
@ionescu.bsky.social
Windows Internals Author, Developer, Reverse Engineer, Security Researcher, Speaker, Trainer, and most recently Nation State Hacker.
Core OS Platform Developer at Apple, Hyper-V Vendor at Microsoft, Chief Architect at CrowdStrike and now Director at CSE.
Core OS Platform Developer at Apple, Hyper-V Vendor at Microsoft, Chief Architect at CrowdStrike and now Director at CSE.
Reposted by Alex Ionescu
Why North Korea Is Planning a Second Korean War and How to Stop It
My deep-dive with @andreilankov and @DrRadchenko into North Korean regime, foreign policy, daily life, surveillance state, hackers and much more!
youtu.be/hqTbLkdysBo
My deep-dive with @andreilankov and @DrRadchenko into North Korean regime, foreign policy, daily life, surveillance state, hackers and much more!
youtu.be/hqTbLkdysBo
Why North Korea Is Planning a Second Korean War and How to Stop It
YouTube video by Dmitri Alperovitch
youtu.be
January 29, 2025 at 3:37 PM
Why North Korea Is Planning a Second Korean War and How to Stop It
My deep-dive with @andreilankov and @DrRadchenko into North Korean regime, foreign policy, daily life, surveillance state, hackers and much more!
youtu.be/hqTbLkdysBo
My deep-dive with @andreilankov and @DrRadchenko into North Korean regime, foreign policy, daily life, surveillance state, hackers and much more!
youtu.be/hqTbLkdysBo
Reposted by Alex Ionescu
www.gofundme.com/f/support-ma...
CJ is an old friend and a longtime cDc NSF member. He suffered a fall and broke his neck -- his insurance refused to pay for an MRI, which led to the break going undiagnosed for a couple of weeks, until his vertebrae had degraded to the point of quadriplegia.
CJ is an old friend and a longtime cDc NSF member. He suffered a fall and broke his neck -- his insurance refused to pay for an MRI, which led to the break going undiagnosed for a couple of weeks, until his vertebrae had degraded to the point of quadriplegia.
Donate to Support Marc Rogers' Road to Recovery, organized by Katie Vogel
cjunkie (Marc Rogers) is an invaluable and beloved member of our hacker community: a… Katie Vogel needs your support for Support Marc Rogers' Road to Recovery
www.gofundme.com
January 6, 2025 at 6:47 PM
www.gofundme.com/f/support-ma...
CJ is an old friend and a longtime cDc NSF member. He suffered a fall and broke his neck -- his insurance refused to pay for an MRI, which led to the break going undiagnosed for a couple of weeks, until his vertebrae had degraded to the point of quadriplegia.
CJ is an old friend and a longtime cDc NSF member. He suffered a fall and broke his neck -- his insurance refused to pay for an MRI, which led to the break going undiagnosed for a couple of weeks, until his vertebrae had degraded to the point of quadriplegia.
Reposted by Alex Ionescu
The One Factor That Could Crash the Russian Economy
A new Geopolitics Decanted episode with a deep-dive into the Russian economy and how it's faring in 2025 and what leverage Ukraine might get to negotiate an acceptable peace deal with Putin
www.youtube.com/watch?v=VOYl...
A new Geopolitics Decanted episode with a deep-dive into the Russian economy and how it's faring in 2025 and what leverage Ukraine might get to negotiate an acceptable peace deal with Putin
www.youtube.com/watch?v=VOYl...
The One Factor That Could Crash the Russian Economy
YouTube video by Dmitri Alperovitch
www.youtube.com
January 3, 2025 at 1:59 AM
The One Factor That Could Crash the Russian Economy
A new Geopolitics Decanted episode with a deep-dive into the Russian economy and how it's faring in 2025 and what leverage Ukraine might get to negotiate an acceptable peace deal with Putin
www.youtube.com/watch?v=VOYl...
A new Geopolitics Decanted episode with a deep-dive into the Russian economy and how it's faring in 2025 and what leverage Ukraine might get to negotiate an acceptable peace deal with Putin
www.youtube.com/watch?v=VOYl...
Reposted by Alex Ionescu
Positive Technologies has developed a new attack that exploits the SD Express standard to gain access to a device's memory through its SD card reader
The DaMAgeCard attack exploits the fact that the new SD Express standard can operate in both SDIO and NVMe
swarm.ptsecurity.com/new-dog-old-...
The DaMAgeCard attack exploits the fact that the new SD Express standard can operate in both SDIO and NVMe
swarm.ptsecurity.com/new-dog-old-...
December 8, 2024 at 11:11 AM
Positive Technologies has developed a new attack that exploits the SD Express standard to gain access to a device's memory through its SD card reader
The DaMAgeCard attack exploits the fact that the new SD Express standard can operate in both SDIO and NVMe
swarm.ptsecurity.com/new-dog-old-...
The DaMAgeCard attack exploits the fact that the new SD Express standard can operate in both SDIO and NVMe
swarm.ptsecurity.com/new-dog-old-...
Reposted by Alex Ionescu
ost2.fyi/Sponsorship....
Gold Sponsors & Windows Security Track sponsor Winsider Seminars & Solutions (@yardenshafir.bsky.social & @ionescu.bsky.social)
👇
Gold Sponsors & Windows Security Track sponsor Winsider Seminars & Solutions (@yardenshafir.bsky.social & @ionescu.bsky.social)
👇
December 6, 2024 at 12:53 PM
ost2.fyi/Sponsorship....
Gold Sponsors & Windows Security Track sponsor Winsider Seminars & Solutions (@yardenshafir.bsky.social & @ionescu.bsky.social)
👇
Gold Sponsors & Windows Security Track sponsor Winsider Seminars & Solutions (@yardenshafir.bsky.social & @ionescu.bsky.social)
👇
Reposted by Alex Ionescu
Long time coming and a cast of hundreds (and a very deep tech stack) but CONGRATS to the team - it's the FIRST ARM64 for Windows build of Git!
Say hi to the first ever Git for Windows version that adds native support for Windows/ARM64! github.com/git-for-wind...
Releases · git-for-windows/git
A fork of Git containing Windows-specific patches. - git-for-windows/git
github.com
November 25, 2024 at 10:25 PM
Long time coming and a cast of hundreds (and a very deep tech stack) but CONGRATS to the team - it's the FIRST ARM64 for Windows build of Git!
Reposted by Alex Ionescu
There is glory in the unexpressed thought.
November 22, 2024 at 10:00 PM
There is glory in the unexpressed thought.
Reposted by Alex Ionescu
November 23, 2024 at 5:15 PM
I have a legitimate question — given the incredible progress made by Windows on ARM64, it baffles the mind that this is running on an Intel SoC. Especially if it’s meant to be cheap and sustainable. Seriously — why?
Microsoft CEO Satya Nadella on stage at Ignite announcing the company’s new Windows 365 Link mini cloud PC www.theverge.com/2024/11/19/2...
November 19, 2024 at 9:56 PM
I have a legitimate question — given the incredible progress made by Windows on ARM64, it baffles the mind that this is running on an Intel SoC. Especially if it’s meant to be cheap and sustainable. Seriously — why?
As far as intelligence scandals come, and what’s coming… I’d take this scandal over any other, any time.
France's former domestic spy chief on trial for allegedly collecting classified info for Luis Vuitton owner Bernard Arnault. Bernard Squarcini allegedly spied on a former journalist and current MP who made a documentary critical of Arnault and on Hermès, a competitor of Arnault. (archive.ph/VAocp)
France’s former intelligence chief accused of spying for Louis Vuitton billionaire
Bernard ‘The Shark’ Squarcini denies charges including compromising national security and misuse of public funds
www.telegraph.co.uk
November 15, 2024 at 3:56 PM
As far as intelligence scandals come, and what’s coming… I’d take this scandal over any other, any time.
Reposted by Alex Ionescu
This awesome fuzzing blog post by @r00tkitsmm.bsky.social covers a super reliable macOS kernel binary rewriting to instrument any KEXT or XNU at BB or edge level. Mandatory reading for anyone interested in fuzzing whether you use MacOS or not. So many good system internals and fuzzing references!
Pishi: Coverage guided macOS KEXT fuzzing.
This blog post is the result of some weekend research, where I delved into Pishi, a static macOS kernel binary rewriting tool. During the weekdays, I focus on Linux kernel security at my job and would...
r00tkitsmm.github.io
November 10, 2024 at 2:21 AM
This awesome fuzzing blog post by @r00tkitsmm.bsky.social covers a super reliable macOS kernel binary rewriting to instrument any KEXT or XNU at BB or edge level. Mandatory reading for anyone interested in fuzzing whether you use MacOS or not. So many good system internals and fuzzing references!
Very excited to finally see this live! An incredible shift in cloud computing.
Congrats for the release of Hyperlight! I'm really happy to see what the original ideas in our PoC at Cloudbase contributed to! Let's also not forget also to equally credit @ionescu.bsky.social and his team at the time for being a core part of that effort!
November 8, 2024 at 7:28 PM
Very excited to finally see this live! An incredible shift in cloud computing.
Reposted by Alex Ionescu
May 15, 2023 at 8:44 PM
So first MSI has been found to ship their Secure Boot policy in “AlwaysExecute” mode on 300+ motherboards, and now they had their BootGuard private key leaked from their source repo (WHY is in their repo? 🤦🏻♂️🤦🏻♂️🤦🏻♂️).
Between this and the DBX running out of space, UEFI firmware security needs a reboot.
Between this and the DBX running out of space, UEFI firmware security needs a reboot.
May 8, 2023 at 11:01 AM
So first MSI has been found to ship their Secure Boot policy in “AlwaysExecute” mode on 300+ motherboards, and now they had their BootGuard private key leaked from their source repo (WHY is in their repo? 🤦🏻♂️🤦🏻♂️🤦🏻♂️).
Between this and the DBX running out of space, UEFI firmware security needs a reboot.
Between this and the DBX running out of space, UEFI firmware security needs a reboot.
Windows now has VBS/TPM protected token binding and you can finally now store private keys in hardware and make them truly non-exportable even by a privileged kernel attacker.
Great stuff from Dwizzzle: https://gist.github.com/dwizzzle/a1c4cf4b669053dbeda4a4b24a9aca0f
Great stuff from Dwizzzle: https://gist.github.com/dwizzzle/a1c4cf4b669053dbeda4a4b24a9aca0f
May 4, 2023 at 6:27 PM
Windows now has VBS/TPM protected token binding and you can finally now store private keys in hardware and make them truly non-exportable even by a privileged kernel attacker.
Great stuff from Dwizzzle: https://gist.github.com/dwizzzle/a1c4cf4b669053dbeda4a4b24a9aca0f
Great stuff from Dwizzzle: https://gist.github.com/dwizzzle/a1c4cf4b669053dbeda4a4b24a9aca0f
Reposted by Alex Ionescu
@ washingtonpost dot com you read that right
May 3, 2023 at 4:23 PM
@ washingtonpost dot com you read that right
Reposted by Alex Ionescu
Probably one of the best pieces of reporting on the Solarwinds supply-chain attack. Excellent piece by Kim Zetter.
Highly recommended reading.
Highly recommended reading.
SolarWinds: The Untold Story of the Boldest Supply-Chain Hack | WIRED
www-wired-com.cdn.ampproject.org
May 3, 2023 at 1:48 AM
Probably one of the best pieces of reporting on the Solarwinds supply-chain attack. Excellent piece by Kim Zetter.
Highly recommended reading.
Highly recommended reading.
Binge-watched BEEF last night on Netflix and everything from the soundtrack to the experience of being a first generation millennial immigrant from a similar cultural background was cathartic. I cried for hours. I can only imagine how much more this speaks to Asian Americans/Canadians.
May 2, 2023 at 11:19 AM
Binge-watched BEEF last night on Netflix and everything from the soundtrack to the experience of being a first generation millennial immigrant from a similar cultural background was cathartic. I cried for hours. I can only imagine how much more this speaks to Asian Americans/Canadians.
Reposted by Alex Ionescu
Reposted by Alex Ionescu
I just followed so many people from this list. Thank you @ichthyos.com!
May 1, 2023 at 10:39 AM
I just followed so many people from this list. Thank you @ichthyos.com!
I feel like I’m back on IRC but with a Twitter UI front end 🥰
May 1, 2023 at 5:13 AM
I feel like I’m back on IRC but with a Twitter UI front end 🥰
Excited to be on a healthy new platform and share anything from InfoSec knowledge to OS Internals tidbits to startup/VC war stories and more!
April 30, 2023 at 2:58 AM
Excited to be on a healthy new platform and share anything from InfoSec knowledge to OS Internals tidbits to startup/VC war stories and more!