Resettlement would mean destruction of the Boer Identity and an acceleration of ethnic cleansing of White S. Africans, in order to relocate them to a country also facilitating White Genocide.
https://x.com/StrydomJoost/status/1892958975840174089
https://x.com/StrydomJoost/status/1892958975840174089
Forwarded from The Cradle
❗️Iran to sue Google over “Persian Gulf” distortion
Iran’s National Virtual Space Center announced plans to pursue legal action against Google and other platforms for replacing the term “Persian Gulf” with fabricated alternatives. The center’s spokesman, Hossein Dalirian, condemned the move as a deliberate falsification of a historically recognized name and a violation of Iran’s national identity.
Dalirian cited international recognition of the term, including by the UN Group of Experts on Geographical Names, and warned that tampering with such nomenclature breaches international law, including Article 19(3) of the ICCPR. Legal consultations are underway.
Iran’s National Virtual Space Center announced plans to pursue legal action against Google and other platforms for replacing the term “Persian Gulf” with fabricated alternatives. The center’s spokesman, Hossein Dalirian, condemned the move as a deliberate falsification of a historically recognized name and a violation of Iran’s national identity.
Dalirian cited international recognition of the term, including by the UN Group of Experts on Geographical Names, and warned that tampering with such nomenclature breaches international law, including Article 19(3) of the ICCPR. Legal consultations are underway.
This media is not supported in your browser
VIEW IN TELEGRAM
TRUMP: “Gaza’s leader take delight in raping, murdering and torturing innocent people. Can’t have it.”
It was all an act. Trump is still scum. 05/14
#fdt
It was all an act. Trump is still scum. 05/14
#fdt
This media is not supported in your browser
VIEW IN TELEGRAM
“Here's the problem…SV40 is used by scientists around the world to induce tumors in rats and guinea pigs in labs…but it was in that vaccine…and 98 MILLION people got that vaccine…” -HHS RFK Jr.
The #Pfizer jab is full of SV40: https://drtenpenny.substack.com/p/tenpenny-monday-minute
I've been writing about SV40 for years...here are just a few...
https://drtenpenny.substack.com/p/polio-fears-part-2-the-shots
https://drtenpenny.substack.com/p/flu-shots-whats-coming-pt-2
https://drtenpenny.substack.com/p/the-ongoing-polio-vaccine-fiasco
Here's my talk about it with Dr. Makis: https://drtenpenny.substack.com/p/this-week-with-dr-t-with-special-80e
#polio #cancer #safe #effective
The #Pfizer jab is full of SV40: https://drtenpenny.substack.com/p/tenpenny-monday-minute
I've been writing about SV40 for years...here are just a few...
https://drtenpenny.substack.com/p/polio-fears-part-2-the-shots
https://drtenpenny.substack.com/p/flu-shots-whats-coming-pt-2
https://drtenpenny.substack.com/p/the-ongoing-polio-vaccine-fiasco
Here's my talk about it with Dr. Makis: https://drtenpenny.substack.com/p/this-week-with-dr-t-with-special-80e
#polio #cancer #safe #effective
Media is too big
VIEW IN TELEGRAM
Archaic #History & #Religion
Know More News w/ Adam Green feat. #Archaix
https://odysee.com/@KnowMoreNews:1/archaix-history:8
#kikebooks
Know More News w/ Adam Green feat. #Archaix
https://odysee.com/@KnowMoreNews:1/archaix-history:8
#kikebooks
■■■■□ Seven things we learned from #WhatsApp vs. #NSO Group #pegasus spyware lawsuit.
https://techcrunch.com/2025/05/13/seven-things-we-learned-from-whatsapp-vs-nso-group-spyware-lawsuit/
https://techcrunch.com/2025/05/13/seven-things-we-learned-from-whatsapp-vs-nso-group-spyware-lawsuit/
TechCrunch
Eight things we learned from WhatsApp vs. NSO Group spyware lawsuit | TechCrunch
The landmark trial between WhatsApp and NSO Group unearthed several new revelations.
NoGoolag
■■■■□ Seven things we learned from #WhatsApp vs. #NSO Group #pegasus spyware lawsuit. https://techcrunch.com/2025/05/13/seven-things-we-learned-from-whatsapp-vs-nso-group-spyware-lawsuit/
■■■■□ Jewish NSO group Fallout.
NSO Group developed a specialized system called the WhatsApp Installation Server (WIS) to deploy its Pegasus spyware. This server sent malformed messages through WhatsApp's infrastructure, mimicking legitimate traffic. These messages exploited vulnerabilities in WhatsApp's code, causing target devices to reach out to NSO-controlled servers and install the spyware—all without user interaction.
To achieve this, NSO reverse-engineered WhatsApp, extracting and decompiling its code to craft messages that a standard client couldn't send. These techniques violated WhatsApp's Terms of Service and applicable laws.
NSO admitted to developing multiple exploit vectors, including Eden and Erised, which were part of a suite called Hummingbird. Notably, Erised was developed and used even after WhatsApp filed its lawsuit in 2019, continuing until WhatsApp implemented server-side patches in May 2020.
Additionally, NSO leased infrastructure from Amazon Web Services (AWS) starting in December 2018 to support its operations. AWS terminated these services in 2021 after being alerted to their misuse.
This case underscores the sophisticated methods employed by NSO to exploit communication platforms and the challenges in defending against such advanced threats.
NoGoolag
■■■■□ Jewish NSO group Fallout. NSO Group developed a specialized system called the WhatsApp Installation Server (WIS) to deploy its Pegasus spyware. This server sent malformed messages through WhatsApp's infrastructure, mimicking legitimate traffic. These…
■■■■□ NSO Fallout
Between April and May 2019, NSO Group's Pegasus spyware targeted 1,223 WhatsApp users across 51 countries. The distribution of victims by country is as follows:
Country Number of Victims
Mexico 456
India 100
Bahrain 82
Morocco 69
Pakistan 58
Indonesia 54
Israel 51
Spain 12
Netherlands 11
Hungary 8
France 7
United Kingdom 2
United States 1
The majority of these victims were journalists, human rights defenders, and members of civil society. Notably, 456 victims were in Mexico, highlighting the extensive reach of the spyware.
A visual map detailing the global distribution of these victims was published by Amnesty International and other research groups.
This data underscores the widespread misuse of Pegasus spyware against individuals in numerous countries.
NoGoolag
■■■■□ NSO Fallout Between April and May 2019, NSO Group's Pegasus spyware targeted 1,223 WhatsApp users across 51 countries. The distribution of victims by country is as follows: Country Number of Victims Mexico 456 India 100 Bahrain 82 Morocco 69 Pakistan…
■■■■■ Here's a full technical rewrite of the WhatsApp vs. NSO Group spyware case, focusing on CVE-2019-3568, its exploitation logic, and WhatsApp’s patch implementation:
➿➿
Remote, via malformed RTCP (Real-time Transport Control Protocol) packets sent during a WhatsApp voice call
Remote Code Execution (RCE) in WhatsApp process without user interaction (zero-click)
Android and iOS WhatsApp clients
➿➿
1. Target Surface
Exploit leverages the libSRTP-based VoIP stack, which handles RTCP packets used for session feedback and control in encrypted voice calls.
RTCP parsing logic failed to sanitize certain control fields, especially those related to extended report block lengths and payload types.
2. Exploit Algorithm Flow
1. Attacker initiates WhatsApp voice call to target (call never needs to be answered).
2. During SIP/VoIP session setup, attacker injects a malformed RTCP packet:
- Payload includes an extended report (XR) with a length field that causes heap corruption.
- The data pointer is shifted to point into a controlled heap region.
3. Heap spray is used prior to the call to fill memory with ROP gadgets or shellcode.
4. WhatsApp’s VoIP thread parses the corrupted RTCP payload:
- Triggers a buffer overflow
- Hijacks return address via overwritten heap metadata
5. Final stage loader downloads and injects the Pegasus spyware binary into user space.
➿➿
A lack of proper bounds checking in srtp_unprotect() when handling compound RTCP packet lengths.
Specifically, incorrect handling of:
block_length in XR headers
packet size mismatch vs actual read buffer
ASLR and DEP were bypassed using dynamic heap shaping and ROP chains tailored to the victim’s device/OS version.
➿➿
Patch Details (May 2019)
WhatsApp Patch Analysis
Introduced stricter validation in the VoIP media engine:
Validated block_length and total_length fields in RTCP/XR headers
Rejected malformed RTCP packets that exceeded expected control sizes
Recompiled the VoIP library with stack canaries, PIE, RELRO, and hardened malloc on Android and iOS
Moved critical parsing logic out of untrusted network threads into a sandboxed process (in newer versions)
Net Result
Fully blocked the RTCP overflow path
Rendered Pegasus’s existing payload delivery channel ineffective
Led NSO to shift to other attack chains (like the “Heaven” WhatsApp impersonation method)
➿➿
Tool Purpose
🤍WIS WhatsApp impersonator client (Heaven)
🤍Q&Q Toolset RTCP generator and packet modifier
🤍Pegasus Final payload with device takeover
🤍TraceStitch Heap layout prediction & ROP generator
➿➿
➿➿
CVE-2019-3568 – WhatsApp VoIP Stack RCEExploit Summary
CVE-ID: CVE-2019-3568
Vulnerability Type: Memory corruption – heap-based buffer overflow
Attack Vector:
Remote, via malformed RTCP (Real-time Transport Control Protocol) packets sent during a WhatsApp voice call
Impact:
Remote Code Execution (RCE) in WhatsApp process without user interaction (zero-click)
Platform:
Android and iOS WhatsApp clients
Patched:WhatsApp v2.19.134 (Android) and v2.19.51 (iOS), May 2019.
➿➿
Exploitation Logic
1. Target Surface
Exploit leverages the libSRTP-based VoIP stack, which handles RTCP packets used for session feedback and control in encrypted voice calls.
RTCP parsing logic failed to sanitize certain control fields, especially those related to extended report block lengths and payload types.
2. Exploit Algorithm Flow
1. Attacker initiates WhatsApp voice call to target (call never needs to be answered).
2. During SIP/VoIP session setup, attacker injects a malformed RTCP packet:
- Payload includes an extended report (XR) with a length field that causes heap corruption.
- The data pointer is shifted to point into a controlled heap region.
3. Heap spray is used prior to the call to fill memory with ROP gadgets or shellcode.
4. WhatsApp’s VoIP thread parses the corrupted RTCP payload:
- Triggers a buffer overflow
- Hijacks return address via overwritten heap metadata
5. Final stage loader downloads and injects the Pegasus spyware binary into user space.
➿➿
Vulnerability Root Cause
A lack of proper bounds checking in srtp_unprotect() when handling compound RTCP packet lengths.
Specifically, incorrect handling of:
block_length in XR headers
packet size mismatch vs actual read buffer
ASLR and DEP were bypassed using dynamic heap shaping and ROP chains tailored to the victim’s device/OS version.
➿➿
Patch Details (May 2019)
WhatsApp Patch Analysis
Introduced stricter validation in the VoIP media engine:
Validated block_length and total_length fields in RTCP/XR headers
Rejected malformed RTCP packets that exceeded expected control sizes
Recompiled the VoIP library with stack canaries, PIE, RELRO, and hardened malloc on Android and iOS
Moved critical parsing logic out of untrusted network threads into a sandboxed process (in newer versions)
Net Result
Fully blocked the RTCP overflow path
Rendered Pegasus’s existing payload delivery channel ineffective
Led NSO to shift to other attack chains (like the “Heaven” WhatsApp impersonation method)
➿➿
Notable Tools Used by NSO Group
Tool Purpose
🤍WIS WhatsApp impersonator client (Heaven)
🤍Q&Q Toolset RTCP generator and packet modifier
🤍Pegasus Final payload with device takeover
🤍TraceStitch Heap layout prediction & ROP generator
➿➿
Forensics Indicators
Malformed rtcp packets seen in logs: unusual XR block types and lengths.WhatsApp crash logs showing access violation in libwhatsapp.so VoIP thread.Outbound connections to AWS/Vultr endpoints post-exploitation.Forwarded from The Cradle
Israel to use facial recognition tech to 'screen' Palestinians in need of aid
The threat of total famine looms over the entirety of Gaza as a result of a months-long blockade imposed by Israel
The threat of total famine looms over the entirety of Gaza as a result of a months-long blockade imposed by Israel
Introducing oniux: Kernel-level Tor isolation for any Linux app
https://blog.torproject.org/introducing-oniux-tor-isolation-using-linux-namespaces/
https://blog.torproject.org/introducing-oniux-tor-isolation-using-linux-namespaces/
blog.torproject.org
Introducing oniux: Kernel-level Tor isolation for any Linux app | Tor Project
Introducing oniux: Kernel-level Tor isolation for any Linux app. This torsocks alternative uses namespaces to isolate Linux applications over the Tor network and eliminate data leaks.