"Honest Achmed’s Used Cars and Certificates welcomes Sectigo’s interpretation of uniqueness. As such, Achmed intends on rebranding as 'Sectigo'."

https://bugzilla.mozilla.org/show_bug.cgi?id=1917405#c15

Now this is interesting, Windows 11 24H2 allows you to connect to an SMB server with an arbitrary TCP port. Could come in handy ;-)
https://techcommunity.microsoft.com/t5/storage-at-microsoft/smb-alternative-ports-now-supported-in-windows-insider/ba-p/3974509

[RSS] Misunderstanding the "Prevent access to registry editing tools" policy

https://devblogs.microsoft.com/oldnewthing/20241001-22/?p=110330

[RSS] Java Ring: One Wearable to Rule All Authentications

https://hackaday.com/2024/10/01/java-ring-one-wearable-to-rule-all-authentications/

[RSS] NSO Group indicates rare agreement with Apple over dismissal of lawsuit

https://cyberscoop.com/nso-group-court-filing-apple-lawsuit/

@dcoderlt disobedient animals become glue y'know...

This was a fun podcast with @aionescu discussing all things kernel: https://podcasts.apple.com/us/podcast/adversary-universe-podcast/id1694819239?i=1000671431945

if ($animal1 == $animal2 ){
if ($animal1 !== $animal2){
echo "you are not equal enough, sry";
}
}

#orwell #php

@bert_hubert some pigs are more equal

I love this part also. The #CSAM regulation proposal is full of how it is all great for privacy, and then it hits you with this. Apparently this is scanning of all OUR photos, not of theirs: https://www.patrick-breyer.de/wp-content/uploads/2024/10/2024-10-01-conseil-hu-csam-proposition-approche-generale-24-septembre.pdf

The second article in our new series on #Windows #kernel #driver #vulnerability research and #exploitation is out!

Exploiting #AMD atdcm64a.sys arbitrary pointer dereference - Part 2:
https://security.humanativaspa.it/exploiting-amd-atdcm64a-sys-arbitrary-pointer-dereference-part-2/

This time, @ale98 covers how to craft PoCs for the arbitrary MSR read and arbitrary pointer dereference vulnerabilities described in his previous article, with step-by-step advice for debugging with #IDAPro.

Enjoy... and stay tuned for the third and last article next week.

My TamaGo talk at the recent @osfc_io is now online, if you are interested check it out!

https://www.osfc.io/2024/talks/tamago-bare-metal-go-for-arm-risc-v-socs/

@LilahTovMoon @xyhhx amazing!

dedicated to the brave reverse engineers

I'll end this on a more positive note by saying that https://github.com/google/binexport/pull/133 at least enables the same workflow for IDA 9.0 as the one we use for Binary Ninja and Ghidra (export first, then invoke #BinDiff manually). 6/N

If you're using @zimbra, mass-exploitation of CVE-2024-45519 has begun. Patch yesterday.

Malicious emails are coming from 79.124.49[.]86 and attempting to curl a file from that IP.

[RSS] OpenTelemetry: AWS Firehose Receiver Vulnerability

https://github.com/google/security-research/security/advisories/GHSA-q9wq-xc9h-xrw9

[RSS] Zimbra - Remote Command Execution (CVE-2024-45519)

https://blog.projectdiscovery.io/zimbra-remote-code-execution/

[RSS] Plugin Spotlight: CoolSigMaker

https://binary.ninja/2024/10/01/plugin-spotlight-coolsigmaker.html

A friend of mine (@GabrielGonzalez) has written a book about "Attacking and Securing U-Boot".
https://www.amazon.com/Attacking-Securing-U-Boot-Gabriel-Gonzalez/dp/B0DJ7M2JNN