New Video from @Seytonic Discusses Recent DDoS Attacks on X, Apple's Legal Battle, and North Korean Hackers Using ChatGPT

The video begins by discussing the recent distributed denial-of-service (DDoS) attacks against the platform X, formerly known as Twitter. Initially, suspicions fell on Ukraine, then on the hacker group Anonymous, and finally on an Egyptian student. However, a deeper analysis revealed that Ukrainian IP addresses were not even among the top 20 countries attacking X. A more credible theory emerged, implicating the hacker group "Dark Storm Team," which claimed responsibility for the attack. This group is known for selling DDoS services and pro-Palestinian hacktivism activities. The attack succeeded by exploiting a security vulnerability in X. Although X uses Cloudflare to mitigate DDoS attacks, some of their servers were not properly protected behind Cloudflare. This allowed the attackers to use a botnet composed of hacked security cameras and DVRs to directly target these servers, causing connectivity issues. The video also addresses the controversy surrounding OSINT (Open Source Intelligence) conducted by a security researcher, Robert Baptiste, who attempted to link Dark Storm Team to an Egyptian student. However, this lead proved incorrect, and the student had nothing to do with the attack. Baptiste received criticism for not issuing a public apology. Next, the video turns to Apple and its legal battle in the UK. The British government used a controversial law to force Apple to disable advanced data protection, a feature that enables end-to-end encryption of iCloud backups. Apple decided to contest this decision by filing a complaint with the investigatory powers tribunal, arguing that the technical capability notice used by the government might be illegal. This case is particularly complex as it will be handled in secret for national security reasons. The video concludes with a discussion on the use of ChatGPT by North Korean hackers. OpenAI revealed that North Korean hacker groups, including Kimsuky and APT38, have used ChatGPT for various malicious activities, including coding assistance, creating phishing campaigns, and writing resumes for remote jobs in the US. These hackers made an OPSEC mistake by leaving links to their own malware in the code they submitted to ChatGPT, allowing OpenAI to identify them. In conclusion, the video offers a fascinating overview of recent hacking activities and legal controversies surrounding cybersecurity. It highlights the complex challenges faced by companies and governments in combating cyber threats.