Collaborate Disseminate
There’s a dreaded disease that’s plagued Internet Service Providers for years. OK, there’s probably several diseases, but today we’re talking about bufferbloat. What it is, how to test for it, …read more Continue reading Bufferbloat, the Internet, and How to Fix It
So you may have gotten a Slack password reset prompt. Something like half a percent of Slack’s userbase had their password hash potentially exposed due to an odd bug. When …read more Continue reading This Week in Security: Breaches, ÆPIC, SQUIP, and Symbols
Last week we covered the Symbiote Rootkit, based on the excellent work by Blackberry, Intezer, and Cyber Geeks. This particular piece of malware takes some particularly clever and devious steps …read more Continue reading This Week in Security: Symbiote Research and Detection, Routing Hijacks, Bruggling, and More
Symbiote is a particularly nasty Linux rootkit, and we have the interesting case of two separate analysis releasing this week. Up first is [CyberMasterV] taking apart a very early sample …read more Continue reading This Week in Security: Symbiote, Smart Locks, and CosmicStrand
There’s an ongoing campaign that’s compromising FreePBX systems around the world. It seems to be aimed specifically at Elastix systems, using CVE-2021-45461, a really nasty Remote Code Execution (RCE) from …read more Continue reading This Week in Security: Asterisk, TikTok, Gitlab, And Finally a Spam Solution
Yet another entry in the “why we can’t have nice things” category, Retbleed was announced this week, as yet another speculative execution vulnerability. This one is mitigated in hardware for …read more Continue reading This Week in Security: Retbleed, Post-Quantum, Python-atomicwrites, and the Mysterious Cuteboi
To start with, Microsoft’s June Security Patch has a fix for CVE-2022-26925, a Man-In-The-Middle attack against NTLM. According to NIST, this attack is actively being exploited in the wild, so …read more Continue reading This Week in Security:Breaking CACs to Fix NTLM, The Biggest Leak Ever, and Fixing Firefox by Breaking It
There’s a problem in the unrar utility, and as a result, the Zimbra mail server was vulnerable to Remote Code Execution by simply sending an email. So first, unrar is …read more Continue reading This Week in Security: Zimbra RCE, Routers Under Attack, and Old Tricks in WebAssembly
[Eaton Zveare] purchased a Jacuzzi hot tub, and splurged for the SmartTub add-on, which connects the whirlpool to the internet so you can control temperature, lights, etc from afar. He …read more Continue reading This Week in Security: IoT In the Hot Tub, App Double Fail, and FreeBSD BadBeacon
There’s not one, but two side-channel attacks to talk about this week. Up first is Pacman, a bypass for ARM’s Pointer Authentication Code. PAC is a protection built into certain …read more Continue reading This Week in Security: Pacman, Hetzbleed, and The Death of Internet Explorer