Reverse engineering Mortal Kombat GRA file format by @rwfpl
http://blog.rewolf.pl/blog/?p=1837
http://blog.rewolf.pl/blog/?p=1982#more-1982
If we discover a wireless bug over-the-air, can't we always reproduce it by replaying the attack traffic? Can we create a minimal traffic to reproduce the same attack? All answers in #AirBugCatcher @acsac_conf #Fuzzing #wireless #CyberSecurity
#Fuzz Every(5G)thing Everywhere All at Once : unleashed #5Ghoul (https://5ghoul.com) - a family of 10+ 5G implementation vulnerabilities in @qualcomm
and @mediatek cellular baseband modems. Exploits as well as fuzzer is open source.
#5G #Fuzzing #Wireless #CyberSecurity
UPDATE: #ESETresearch was contacted by one of the possible authors of the Bootkitty bootkit, claiming the bootkit is a part of project created by cybersecurity students participating in Korea's Best of the Best (BoB) training program. 1/2
https://www.welivesecurity.com/en/eset-research/bootkitty-analyzing-first-uefi-bootkit-linux/
Perl interpreter patch to issue runtime warnings against suspicious two-argument open() calls https://www.openwall.com/lists/oss-security/2024/12/04/1
SonicWall security advisory 03 December 2024: SonicWall SMA100 SSL-VPN Affected By Multiple Vulnerabilities
There is no evidence that these vulnerabilities are being exploited in the wild
#sonicwall #sma #sslvpn #vulnerability #CVE #infosec #cybersecurity
Team member @sigabrt describes a fuzzing methodology he used to find a heap overflow in a public @yeswehack bug bounty program for Gnome: https://offsec.almond.consulting/using-aflplusplus-on-bug-bounty-programs-an-example-with-gnome-libsoup.html
Here is a new #NameThatWare challenge.
Please don't just guess into the blue, try to deduct what it is, write down your observations and thoughts.
Hide your answer behind a CW to not spoil it for other participants.
As @daringfireball writes, Google is lying through its corporate teeth about its claims to be encrypting messages.
https://daringfireball.net/linked/2024/12/04/shame-on-google-messages
What a slimy company Google has become, so far distant from its early days when it was so admirable.
‼️ New vulnerabilities have been disclosed in the Veeam Service Provider Console.
CVE-2024-42448 is critical, potentially allowing remote code execution. CVE-2024-42449 is rated high, potentially leaking the NTLM hash of a service account & allowing file deletion.
Learn more and see how to find potentially impacted systems:
I updated the diagram representing the different Point and Print configurations and their exploitation on my blog.
Hopefully, this should provide a better understanding of the whole "PrintNightmare" situation to both defenders and red teamers. 🤞
New blog: Risk talk at JPL
Before Thanksgiving, I was in Southern California, and I was honored to be able to give a talk at the Jet Propulsion Lab. The talk is titled “Threat Modeling: Engineering and Science.” The first part of the talk puts threat modeling in context for engineering secure systems, while the second part considers why we do what we do and asks some questions about how we think about risk.
Cisco security advisory 04 December 2024: Cisco NX-OS Software Image Verification Bypass Vulnerability
CVE-2024-20397 (5.2 medium severity but Cisco wrote high impact) A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification. No mention of exploitation/public disclosure.
#cisco #vulnerability #cve #CVE_2024_20397 #cisconxos #infosec #cybersecurity