nyancrimew/maia.crimew.gay
1
0
Fork 1
Code Issues Pull requests Projects Releases Wiki Activity

journalismus jetzt

Browse source
This commit is contained in:
maia arson crimew 2025-10-03 14:34:59 +02:00
parent cf3bcb2c28
commit ffd71698e6
1 changed files with 408 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

408
src/decks/jjs.md Normal file
View file

@ -0,0 +1,408 @@
---
title: "JJS"
---
<!-- .slide: data-auto-animate data-background-image="/img/decks/surveillance/demo.jpg" data-background-opacity="0.2" -->
<img src="/img/kitten_cropped.png" class="r-stretch"/>
# hacktivismus und journalismus
## [maia arson crimew](https://maia.crimew.gay)
---
<!-- .slide: data-auto-animate data-background-image="/img/decks/surveillance/demo.jpg" data-background-opacity="0.2"-->
<img src="/img/kitten_cropped.png" class="r-stretch"/>
## maia arson crimew
* ist 26 Jahre alt <!-- .element: class="fragment" -->
* braucht es(/sie) Pronomen <!-- .element: class="fragment" -->
* ist (laut den USA) seit 2019 Hacktivistin <!-- .element: class="fragment" -->
* wurde in 2021 von den USA angeklagt ^-^ upsi <!-- .element: class="fragment" -->
* hat in 2023 eine 2019 Kopie der US Flugverbotsliste geleakt <!-- .element: class="fragment" -->
* ist eine Investigativjournalistin und Das Lamm Kolumnistin <!-- .element: class="fragment" -->
---
## Inhalt
* Stalkerware
* OSINT, oder: wie findet man Adrian Dittmann
* Mein Freund, Luís Montenegro \<3
* Die Telemessage Saga
* Conclusions und so
---
<!-- .slide: data-background-image="/img/posts/fuckstalkerware-5/cover.jpg" data-background-opacity="0.2" data-auto-animate data-auto-animate-restart -->
## Stalkerware
<small>*Hintegrund von [Mukky's World](https://mukkysworld.neocities.org/)*</small>
---
<!-- .slide: data-background-image="/img/posts/fuckstalkerware-5/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## Stalkerware
* Kommerziell verfügbare Spyware
* Wird vorallem gegen (Ehe-)Partner und Kinder verwendet <!-- .element: class="fragment" -->
* Ist von der Zielperson versteckt <!-- .element: class="fragment" -->
* Physischer Zugriff auf ein Zielgerät benötigt <!-- .element: class="fragment" -->
* Kosten zwischen 20-200+ Fr./Monat <!-- .element: class="fragment" -->
---
<!-- .slide: data-background-image="/img/posts/fuckstalkerware-5/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## Stalkerware
Fast alles was wir über Stalkerware wissen wissen wir aus Leaks
Note:
Ramble :)
---
<!-- .slide: data-background-image="/img/posts/fuckstalkerware-5/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## Stalkerware
Regierungen lieben Stalkerware auch
Note:
- examples from june 2024 mspy leak
- stalkerware is in legal gray area, presumably much easier to acquire than government grade spyware, even for governments
---
<!-- .slide: data-background-image="/img/posts/fuckstalkerware-5/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## Stalkerware
Regierungen lieben Stalkerware auch
<img src="/img/decks/surveillance/yaniv.jpg"/>
Note:
- email from 2014
- yaniv azani
- cto of national cyber unit of israel police
- attempting to buy whitelabelled mspy for israel
- did not come to fruition
---
<!-- .slide: data-background-image="/img/posts/fuckstalkerware-5/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## stalkerware
Regierungen lieben Stalkerware auch
<img src="/img/decks/surveillance/irgoun.jpg"/>
Note:
- email from 2016
- luc schwab (swiss national)
- ran an israeli security/mercenary company (now runs one in geneva)
- asking for whitelabel mspy for government customers
- presumably for israel, only one named
- mspy turns them down but adds them to a potential list of future whitelabel partners
---
<!-- .slide: data-background-image="/img/posts/fuckstalkerware-5/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## Stalkerware
Andere interessierte Regierungsbehörden sind z.B.:
* weitere private Sicherheitsunternehmen die für Regierungen arbeiten
* Royal Thai Police
* Vietnamesische Verteidigungsministerium
* Nebraska National Guard
* Vereinigte Arabischen Emirate
* Italienische Polizeibehörden
* Tasmanische Polizei
Note:
- i found no sale occuring
- just mspy receiving this manyr equests means others probably receive just as many
- governments may be using others
- flexispy (other big player) for example offers whitelabel solution
---
<!-- .slide: data-background-image="/img/posts/fuckstalkerware-5/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## Stalkerware
* Stalkerware Services werden dauernd Gehackt
* Die meisten geben unter dem Druck irgendwann auf <!-- .element: class="fragment" -->
* Die konstanten Hacks und schlechte Presse machen es schwierig profitabel zu sein <!-- .element: class="fragment" -->
Note:
Stalkerware constantly getting hacked is also a good reason why no one should ever use that kind of software
---
<!-- .slide: data-background-image="/img/posts/adrian-dittmann/cover.jpg" data-background-opacity="0.2" data-auto-animate data-auto-animate-reset -->
## OSINT
### oder, wie findet man Adrian Dittmann
Note:
* OSINT stands for open source intelligence
* its a form of intelligence that relies on publicly available data.
---
<!-- .slide: data-background-image="/img/posts/adrian-dittmann/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## OSINT
### oder, wie findet man Adrian Dittmann
<img src="/img/decks/surveillance/adrian-x.jpg"/>
Note:
* Adrian Dittmann is a twitter influencer
* posts about crypto and AI
* massive fan of elon musk.
* blew up because people believed he was an alt of musks
* he talks somewhat similarly to musk and often praises him
* this did not seem quite right to me
* started invesigating with ryan fae last december
---
<!-- .slide: data-background-image="/img/posts/adrian-dittmann/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## OSINT
### oder, wie findet man Adrian Dittmann
<img src="/img/posts/adrian-dittmann/snusbase.png"/>
Note:
* quick search for his alleged name on paid breach tool
* brings up an email address and a location in fiji
* breached from an ai background removal tool in 2024
</br>
</br>
* fiji would make sense
* dittman previously stated he is german, grew up in gibraltar and morocco and now lives in oceania
* this would also explain his accent
* german guy growing up in english speaking countries and private schools would def sound similar to a south african billionaire
---
<!-- .slide: data-background-image="/img/posts/adrian-dittmann/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## OSINT
### oder, wie findet man Adrian Dittmann
<img src="/img/decks/surveillance/osintindustries.jpg"/>
Note:
* search for his email on osint.industries
* i receive free journalist access to osint industries
* shows number of other accounts
* german and fijian phone number
* google account with a single maps review in fiji
* review talks about steaks, this will be more relevant later
---
<!-- .slide: data-background-image="/img/posts/adrian-dittmann/cover.jpg" data-background-opacity="0.7" data-auto-animate -->
## OSINT
### oder, wie findet man Adrian Dittmann
Note:
* google search for "dittmann fiji" shows a dittmann family in fiji
* they own various companies in germany, switzerland and fiji
</br>
</br>
* family company registrations show they are originally from germany
* they then lived in gibraltar for a while and moved to fiji around 2012
* flags in brothers instagram bio confirm this too
</br>
</br>
* main relevant company is aquam insula (luxury water and yachting supplies company)
* a youtube video on the fiji government channel shows opening of companies "maritime lifestyle warehouse
* footage shows adrian dittmann and his partner in foreground (see slide)
---
<!-- .slide: data-background-image="/img/posts/adrian-dittmann/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## OSINT
### oder, wie findet man Adrian Dittmann
<img src="/img/posts/adrian-dittmann/ring.png"/>
Note:
* in same video we see a ring on fiji adrians finger
* this matches a ring visible in some of twitter adrians steak cooking streams.
* as i said steaks are oddly relevant to this
* there is even more evidence we go over in our article
* for anyone still skeptical after having seen our original reporting:
---
<!-- .slide: data-background-image="/img/posts/adrian-dittmann/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## OSINT
### oder, wie findet man Adrian Dittmann
<img src="/img/decks/surveillance/facereveal.jpg"/>
Note:
* more on the steak streams
* about a month after initial reporting
* post on bluesky from someone archiving all adrian dittmann streams
* reflection of his face is visible in a steak cooking stream
---
<!-- .slide: data-background-image="/img/posts/adrian-dittmann/cover.jpg" data-background-opacity="0.2" data-auto-animate -->
## OSINT
### oder, wie findet man Adrian Dittmann
Note:
- ramble on adrian and musk relationship, why musk played along
- just a quick example of how powerful osint is for journalism and not just for government ingelligence
- ultimately investigative journalism is also just intelligence
</br>
</br>
- but what about the rich and powerful?
---
<!-- .slide: data-background-image="/img/decks/surveillance/montenegro.jpg" data-background-opacity="0.2" -->
## Mein Freund, Luís Montenegro \<3
<img src="/img/decks/surveillance/montenegro.jpg"/>
<small>*Bild: Lukas Gut, [Tiny Kitten vs. The 2nary System](https://www.ensemblefilm.ch/portfolio/tiny-kitten-vs-the-2nary-system-by-marisa-meier/), ensemble film*</small>
Note:
- who is luis montenegro
- corrupt portuguese premier who just got reelected
- number found by googling for the name of the front company he received bribes with
- osint industries confirmed telegram and signal account with his name
- i messaged both numbers to try and get comment on the developing corruption story
- he never replied
- out of curiosity i try calling him one day, he doesnt pick up
- i try to call again later but call does not go through
- conclusion: he saw my messages and decided to block me
- you can just bully these people. its fun and its free
---
<!-- .slide: data-background-image="/img/decks/surveillance/tmsgnl.jpg" data-background-opacity="0.4" data-auto-animate data-auto-animate-reset -->
## Die Telemessage Saga
<small>*Disclaimer: Die folgenden Slides sind auf Öffentlich verfügbare Infos aufgebaut, einige Details blieben dabei unklar*</small>
Note:
- april 30st
- us national security advisor mike waltz
- photographed checking signal on phone during white house meeting by reuters photographer
- previous signal incident with mike waltz
- had invited journalist to secret chat discussing anti houthi war plans
- journalists and hacktivists immediately spring into action
---
<!-- .slide: data-background-image="/img/decks/surveillance/tmsgnl.jpg" data-background-opacity="0.2" data-auto-animate -->
## Die Telemessage Saga
<img src="/img/decks/surveillance/404.jpg"/>
Note:
- may 1st
- news stories pop up about how his signal app is modified
- telemessage (israeli-american company, founded by unit 8200 guys)
- provides archival regulation compliance for govts and financial institutions
- lets employees use their preferred messengers while archiving
---
<!-- .slide: data-background-image="/img/decks/surveillance/tmsgnl.jpg" data-background-opacity="0.2" data-auto-animate -->
## Die Telemessage Saga
<img src="/img/decks/surveillance/telemessage-source.jpg"/>
Note:
By may 3rd the source code of the telemessage signal wrapper including hardcoded credentials leaks
---
<!-- .slide: data-background-image="/img/decks/surveillance/tmsgnl.jpg" data-background-opacity="0.2" data-auto-animate -->
## Die Telemessage Saga
<img src="/img/decks/surveillance/telemessage-hacked.jpg"/>
Note:
- may 4th
- telemessage is hacked
- hackers found trivial vulnerability
</br>
</br>
- archival backend has endpoint allowing server memory dumps
- no auth requires
- over the course of about a day about 400gb of data is collected
</br>
</br>
- contained within are plain text messages and metadata such as contacts and group names
- data is published by ddosecrets by may 19th
---
<!-- .slide: data-background-image="/img/decks/surveillance/tmsgnl.jpg" data-background-opacity="0.2" data-auto-animate -->
## Die Telemessage Saga
Note:
According to reuters (full circle) and Micah Lee who analyzed the dataset it contained around 60 thousand messages from:
- cbp officials
- US diplomatic staffers
- at least one white house staffer
- members of the US secret service
- dc police
- employees of andreesen horowitz
- jp morgan
- others
not only the government can spy on us, we can spy on them too. and its often way easier than you'd think.
---
<!-- .slide: data-background-image="/img/decks/surveillance/snadcat.jpg" data-background-opacity="0.4" -->
## Conclusions und so
Note:
Ramble about the importance of hacktivism for modern journalism, talk about workign with journalists on research and how its often unfortunately unpaid work
---
<!-- .slide: data-background-image="/img/decks/surveillance/snadcat.jpg" data-background-opacity="0.4" -->
## Noch Fragen?
---
<!-- .slide: data-background-image="/img/decks/surveillance/snadcat.jpg" data-background-opacity="0.4" -->
## Danke fürs zuhören
Man findet mich hier:
* twitter: @awawawhoami
* bluesky: @crimew.gay
* instagram: @nyancrimew
* blog: maia.crimew.gay
* das lamm: daslamm.ch/format/kolumnen/cyber_punk
* jetzt dann am apéro