security hacks – Page 5 – WindowsTechs.com

FLOSS Weekly Episode 784: I’ll Buy You A Poutine

Posted on May 22, 2024 by Jonathan Bennett

This week Jonathan Bennett and Dan Lynch talk with François Proulx about Poutine, the Open Source security scanner for build pipeline vulnerabilities. This class of vulnerability isn’t as well known …read more Continue reading FLOSS Weekly Episode 784: I’ll Buy You A Poutine→

Posted on May 17, 2024 by Jonathan Bennett

Researchers at Eset have published a huge report on the Ebury malware/botnet (pdf), and one of the high profile targets of this campaign was part of the kernel.org infrastructure. So …read more Continue reading This Week in Security: The Time Kernel.org Was Backdoored and Other Stories→

Posted on May 10, 2024 by Jonathan Bennett

There’s a clever “new” attack against VPNs, called TunnelVision, done by researchers at Leviathan Security. To explain why we put “new” in quotation marks, I’ll just share my note-to-self on …read more Continue reading This Week in Security: TunnelVision, Scarecrows, and Poutine→

Posted on May 3, 2024 by Jonathan Bennett

The UK has the answer to all our IoT problems: banning bad default passwords. Additionally, the new UK law requires device makers to provide contact info for vulnerability disclosures, as …read more Continue reading This Week in Security: Default Passwords, Lock Slapping, and Mastodown→

Posted on April 26, 2024 by Jonathan Bennett

There’s a trend recently, of big-name security appliances getting used in state-sponsored attacks. It looks like Cisco is the latest victim, based on a report by their own Talos Intelligence. …read more Continue reading This Week in Security: Cisco, Mitel, and AI False Flags→

Posted on April 24, 2024 by Tom Nardi

The average Hackaday reader hardly needs to be reminded of the incredible potential of the modern microcontroller. While the Arduino was certainly transformative when it hit the scene, those early …read more Continue reading Supercon 2023: Alex Lynd Explores MCUs in Infosec→

Posted on April 19, 2024 by Jonathan Bennett

It may be time to rotate some keys. The venerable PuTTY was updated to 0.81 this week, and the major fix was a change to how ecdsa-sha2-nistp521 signatures are generated. …read more Continue reading This Week in Security: Putty Keys, Libarchive, and Palo Alto→

Posted on April 12, 2024 by Jonathan Bennett

So first up, we have BatBadBut, a pun based on the vulnerability being “about batch files and bad, but not the worst.” It’s a weird interaction between how Windows uses …read more Continue reading This Week in Security: BatBadBut, DLink, and Your TV Too→

Posted on April 4, 2024 by Arya Voronova

You might think you understand the concept of BadUSB attacks and know how to defend it, because all you’ve seen is opening a terminal window. Turns out there’s still more …read more Continue reading USB HID And Run Exposes Yet Another BadUSB Surface→

Posted on April 4, 2024 by Arya Voronova

Modern printers make it all that much more tempting to try and hack them — the hardware generally tends to be decent, but the firmware appears to be designed to …read more Continue reading A Fun Exploit For Canon Printers Brings GDB Gifts→