banner
threatc.at
Rick Valenzuela
@threatc.at
230 followers 620 following 80 posts
threat detection. distant past: journalist. 🍜 Slurp with gusto http://infosec.exchange/@rv TnFxIHpyIHNiZSBndXIgb3JmZyBpcnRyZ25ldm5hIFRyYXJlbnkgR2ZiJ2YgZXJwdmNyIHZhIGd1ciBoYXZpcmVmcg==
infosec.exchange
Posts Media Videos Starter Packs
threatc.at
Rick Valenzuela @threatc.at · Aug 19
This is also more than just travel or other personal situations, but also for private networks like hospitals and warehouses (think of industrial IoT deployments). These things are convenient, but there's no guardrails yet.

link to paper: www.usenix.org/system/files...
www.usenix.org
threatc.at
Rick Valenzuela @threatc.at · Aug 19
Alongside possibility of data interception and location tracking and opaque ownership hierarchy of what are essentially white-label resellers, it also looks at the workflow of deploying eSIMs and weak points attackers could hit
Screenshot from paper: This system is analogous to new car dealerships that purchase cars directly from the manufacturer and sell to consumers. In the case of a car dealership, the car manufacturer has a serious stake in ensuring that dealerships operate according to strict policies and procedures to avoid tarnishing the brand reputation. In the case of eSIM reselling, users are unlikely to give any consideration to who is managing and operating the eSIM profile they have just downloaded to their mobile device. MNOs and MVNOs appear to be willing to allow any party the opportunity to re-sell access to their networks. The opportunity exists for virtually anyone to establish their own online presence, selling cellular data plans to anyone with an internet connection. This scenario has serious implications for user data privacy.
1
threatc.at
Rick Valenzuela @threatc.at · Aug 19
The paper itself is not that China heavy, but it lists a lot of observed traffic routed to different, unexpected countries, including "proactive communication", the phoning-home aspect (tho it also links to a 2021 article discussing this with physical SIMs).
1
threatc.at
Rick Valenzuela @threatc.at · Aug 19
The article goes hard on the China angle, and for sure: who knew Irish eSIM brand Holafly is actually a subsidiary of the state-owned enterprise China Mobile? The installer runs from their servers, and wherever the phone is, it even has a public IP address in China.
1
threatc.at
Rick Valenzuela @threatc.at · Aug 19
New security risk unlocked, eSIMs edition, and especially the kind you pick up prepping for an international trip

www.itnews.com.au/news/travel-...
Travel eSIMs secretly route traffic over Chinese and undisclosed networks: study
Convenient tech brings big bundle of security and privacy risks.
www.itnews.com.au
1 2
threatc.at
Rick Valenzuela @threatc.at · Jul 15
Photo- and videojournalists now have until Aug 8 to brush up on Filezilla or Cyberduck, or ask an old head

wetransfer.com/explore/lega...
ramiismail.com
Rami Ismail (رامي) @ramiismail.com · Jul 14
Bye forever, WeTransfer.
WeTransfer TOS says they can use all your uploaded content for genAI
1
threatc.at
Rick Valenzuela @threatc.at · May 16
Rewrite the quote “Do not cite the Deep Magic to me, Witch. I was there when it was written” in the voice of Pauly Shore’s character Stoney in Encino Man saying, “If you're edged 'cause I'm weazin all your grindage, just chill. 'Cause if I had the whole brady bunch thing happenin' at my pad, I'd go grind over there, so dont tax my gig so hard-core cruster.” ChatGPT said: Sure! Here’s that quote reimagined in the voice and style of Pauly Shore’s Stoney from Encino Man: "Yo, don’t be throwin' down the Deep Magic vibes at me, buuuddy. I was totally chillin’ when they laid it down, saw the whole scroll sesh go down, major OG incantation action, ya know? So don’t harsh my mystical mellow, crusty sorceress." Let me know if you want it even more surfer-stoner or pulled back a bit!
1 1
threatc.at
Rick Valenzuela @threatc.at · May 16
Continue nudging the feed
1 4
threatc.at
Rick Valenzuela @threatc.at · May 16
And plug: I mentioned Lockdown Mode and Advanced Protection Program in a tip sheet I cowrote with @bostonjoan.bsky.social for @criticalinternet.bsky.social. If you fit the profile, these are really good and really easy things to switch on to be safer
1 1
threatc.at
Rick Valenzuela @threatc.at · May 16
For a comprehensive and straightforward explanation of all the things that Advanced Protection does on mobiles, @androidauthority.com has an excellent overview
Android 16's Advanced Protection security mode: What it does and who should enable it
If you value security, you'll want to turn on the new Advanced Protection mode in Android 16. Here's what it does and how to enable it.
www.androidauthority.com
1 2 2
threatc.at
Rick Valenzuela @threatc.at · May 16
Android users now have an analog to iPhone's Lockdown Mode, so now basically everyone can opt in to a more secure phone/tablet. It's part of Google's Advanced Protection Program, which if you use Gmail and work/move in a space where you're more likely to be targeted, is a great thing to enroll in
Advanced Protection: Google’s Strongest Security for Mobile Devices
Posted by Il-Sung Lee, Group Product Manager, Android Security Protecting users who need heightened security has been a long-standing com...
security.googleblog.com
1 3 6
threatc.at
Rick Valenzuela @threatc.at · May 5
Please next Peep-flavored prawn crackers
1 1
Reposted by Rick Valenzuela
kevincollier.bsky.social
Kevin Collier @kevincollier.bsky.social · May 3
I've been traveling so forgive me for not posting this yesterday, but: That Signal clone app for archiving messages that Mike Waltz has been using, TeleMessage? It's unlicensed. Signal was unaware of its existence until they saw it in that Reuters photo. There's no known security vetting.
Photo appears to show Mike Waltz using Signal-like app that can archive messages
More than a month after he drew criticism for using Signal to discuss an impending military attack, Waltz was seen using what appears to be a different messaging app to message others in the Trump adm...
www.nbcnews.com
90 1.3K 3.4K
threatc.at
Rick Valenzuela @threatc.at · May 3
Ugh. If this is pattern behavior (or policy?), then maybe links to CBS News stories should be to free archive link versions instead
1 8
Reposted by Rick Valenzuela
stevierea.bsky.social
Stephen C. Rea @stevierea.bsky.social · May 2
Great account of what networked incitement looks like in the year 2025. Kudos to @nedmparker1.bsky.social, @mikespector.bsky.social, @bypetereisler.bsky.social, @lindasoreports.bsky.social & @nateraymond.bsky.social
These judges ruled against Trump. Then their families came under attack.
As federal judges rule against the Trump administration in dozens of politically charged cases, the families of at least 11 of the jurists have been targeted with threats and harassment. The intimidation campaign has strained judges and their relatives – and legal scholars fear it could have a chilling effect on the judiciary.
www.reuters.com
1 4 9
threatc.at
Rick Valenzuela @threatc.at · Apr 24
I did this in Shanghai circa 2018, when the AQI was horrendous (second pic). Above 100 was common, and an occasional spike above 400. Airnow.gov has Barnegat at 63 and forecast for 100
Chart describing Air Quality Index (AQI) values. Read the whole thing at https://www.lung.org/clean-air/outdoors/air-quality-index Heat map chart of AQI in Shanghai, showing 19 days at 100 or more in January 2018.
2
threatc.at
Rick Valenzuela @threatc.at · Apr 24
For my NJ people who would want to know this, really good air filters don't have to be expensive. Literally talking ~$30. In front of a strong fan, stack an activated carbon filter on top of a HEPA filter and that will screen out both the things you want, volatile organic compounds (VOCs) and PM2.5
How to Make a DIY Air Purifier for Your Home – Smart AirFacebook social iconTwitter social iconInstagram social iconLinkedIn social iconYouTube social icon
5 Simple Steps to make a homemade DIY air purifier to reduce air pollution and viruses in your home--plus actual test data showing the DIY filter works.
smartairfilters.com
1 2
threatc.at
Rick Valenzuela @threatc.at · Apr 24
a bundle of leeks 💀

Also a possible new unit of measurement. Would be nice if it's a round number, too; he's currently 1 Truss, 4 Scaramuccis in
threatc.at
Rick Valenzuela @threatc.at · Apr 23
you guys watching Office Space?
threatc.at
Rick Valenzuela @threatc.at · Apr 21
a woman in a car with the words i see you seeing me see you on the bottom
ALT: a woman in a car with the words i see you seeing me see you on the bottom
media.tenor.com
1
threatc.at
Rick Valenzuela @threatc.at · Apr 21
a black and white photo of a man with a stethoscope around his neck screaming .
ALT: a black and white photo of a man with a stethoscope around his neck screaming .
media.tenor.com
1
threatc.at
Rick Valenzuela @threatc.at · Apr 21
test II
3 2
threatc.at
Rick Valenzuela @threatc.at · Apr 21
Awww. But credit goes to an unnamed group chat (not that one but also that one)
2
threatc.at
Rick Valenzuela @threatc.at · Apr 2
Snitches gets kittehs
Reposted by Rick Valenzuela
stevierea.bsky.social
Stephen C. Rea @stevierea.bsky.social · Apr 1
The U.S. IC (at least the leadership)
The Drake Hotline Bling meme template (the rapper Drake wearing a bright orange puffy coat against a yellow background, turning away and holding up his hand in the top photo, smiling and pointing “yes” in the bottom photo): the top text reads “OPSEC” and the bottom text reads “OOPSEC”
1 14 52