Jonathan Bennett – Page 33 – WindowsTechs.com

This Week in Security: For The Horde, Feature Not a Bug, and Confluence

Posted on June 10, 2022 by Jonathan Bennett

If you roll way back through the history of open source webmail projects, you’ll find Horde, a groupware web application. First released in 1998 on Freshmeat, it gained some notoriety …read more Continue reading This Week in Security: For The Horde, Feature Not a Bug, and Confluence→

This Week In Security: Follina, Open Redirect RCE, and Annoyware

Posted on June 3, 2022 by Jonathan Bennett

Depending on who you ask, there’s either 2 vulnerabilities at play in Follina, only one, or according to Microsoft a week ago, no security problem whatsoever. On the 27th of …read more Continue reading This Week In Security: Follina, Open Redirect RCE, and Annoyware→

This Week in Security: Good Faith, Easy Forgery, and I18N

Posted on May 27, 2022 by Jonathan Bennett

There’s a danger in security research that we’ve discussed a few times before. If you discover a security vulnerability on a production system, and there’s no bug bounty, you’ve likely …read more Continue reading This Week in Security: Good Faith, Easy Forgery, and I18N→

This Week in Security: iPhone Unpowered, Python Unsandboxed, and Wizard Spider Unmasked

Posted on May 20, 2022 by Jonathan Bennett

As conspiracy theories go, one of the more plausible is that a cell phone could be running malicious firmware on its baseband processor, and be listening and transmitting data even …read more Continue reading This Week in Security: iPhone Unpowered, Python Unsandboxed, and Wizard Spider Unmasked→

Things Are Getting Rusty in Kernel Land

Posted on May 17, 2022 by Jonathan Bennett

There is gathering momentum around the idea of adding Rust to the Linux kernel. Why exactly is that a big deal, and what does this mean for the rest of …read more Continue reading Things Are Getting Rusty in Kernel Land→

Asahi GPU Hacking

Posted on May 16, 2022 by Jonathan Bennett

[Alyssa Rosenzweig] has been tirelessly working on reverse engineering the GPU built into Apple’s M1 architecture as part of the Asahi Linux effort. If you’re not familiar, that’s the project …read more Continue reading Asahi GPU Hacking→

This Week in Security: F5 Twitter PoC, Certifried, and Cloudflare Pages Pwned

Posted on May 13, 2022 by Jonathan Bennett

F5’s BIG-IP platform has a Remote Code Execution (RCE) vulnerability: CVE-2022-1388. This one is interesting, because a Proof of Concept (PoC) was quickly reverse engineered from the patch and released …read more Continue reading This Week in Security: F5 Twitter PoC, Certifried, and Cloudflare Pages Pwned→

This Week in Security: uClibc and DNS Poisoning, Encryption is Hard, and the Goat

Posted on May 6, 2022 by Jonathan Bennett

DNS spoofing/poisoning is the attack discovered by [Dan Kaminski] back in 2008 that simply refuses to go away. This week a vulnerability was announced in the uClibc and uClibc-ng standard …read more Continue reading This Week in Security: uClibc and DNS Poisoning, Encryption is Hard, and the Goat→

This Week in Security: Android and Linux, VirusTotal, More Psychic Signatures

Posted on April 29, 2022 by Jonathan Bennett

To start our week of vulnerabilities in everything, there’s a potentially big vulnerability in Android handsets, but it’s Apple’s fault. OK, maybe that’s a little harsh — Apple released the …read more Continue reading This Week in Security: Android and Linux, VirusTotal, More Psychic Signatures→

A Real GPU on the Raspberry Pi — Barely.

Posted on April 29, 2022 by Jonathan Bennett

[Jeff Geerling] saw the Raspberry Pi Compute Module 4 and its exposed PCI-Express 1x connection, and just naturally wondered whether he could plug a GPU into that slot and get …read more Continue reading A Real GPU on the Raspberry Pi — Barely.→