Google Security: Retrofitting Spatial Safety to hundreds of millions of lines of C++
Google is retrofitting secure-by-design principles to their existing C++ codebase wherever possible, including bringing spatial memory safety into as many codebases. It has already made a noticeable impact, from preventing exploits, reducing crashes and improving code reliability/easier debugging.

#google #security #securebydesign #memorysafety #vulnerability #memory #infosec #cybersecurity

Missed out on the action at #r2con2024 in Barcelona? #NowSecure researcher and #radare2 co-creator @pancake put together a recap of all three days, including all the recordings, slides, and GitHub repositories. Check it out here: https://www.nowsecure.com/blog/2024/11/15/nowsecure-at-r2con2024-top-takeaways-and-mobile-security-highlights/?utm_source=mastodon

A huge thanks to everyone who joined us and made this comeback event a success after a 5-year break! #r2con #radare #frida

Pandoc compiled to Wasm (WebAssembly), which enables live conversions in the browser.

• Live demo: https://tweag.github.io/pandoc-wasm/

• Repository: https://github.com/tweag/pandoc-wasm

Amazing work by @terrorjack and the ghc-meta-wasm folks!

#pandoc #Wasm #ghc

Yet another memory corruption bug caught thanks to -Wflex-array-member-not-at-end! 🐛🪲🐧

https://lore.kernel.org/linux-hardening/ZzZ-cd_EFXs6qFaH@kspp/

The maintainer has already taken this patch, and it will soon land in mainline and a couple of stable trees. 😃🐧

If you'd like to learn more about this work, feel free to check out this presentation:

https://embeddedor.com/blog/presentations/#Enhancing_spatial_safety_Fixing_thousands_of_-Wflex-array-member-not-at-end_warnings_LPCEU

This work aims to eradicate these types of memory corruption vulnerabilities from the kernel once and for all. 😀🙌🏽

Kernel Self-Protection Project ⚔️🛡️🐧

@m @cR0w Would it be possible to make more historical data available (vs. latest only)?

@m @cR0w This is exactly what I looked for the other day thanks!

@cR0w

For your amusement: https://dotdotslash.ing/

Unpatched 0day in an enterprise firewall management interface? Must be Friday https://www.rapid7.com/blog/post/2024/11/15/etr-zero-day-exploitation-targeting-palo-alto-networks-firewall-management-interfaces/

Reproducing CVE-2024-10979: A Step-by-Step Guide https://redrays.io/blog/reproducing-cve-2024-10979-a-step-by-step-guide/

R.I.P. :(

https://en.wikipedia.org/wiki/Istv%C3%A1n_Nemere

@sassdawe @kaaswe I prefer downloading warez from web-exposed directories thank you very much ;)

See the latest iOS inactivity reboot in action! 🔒

iOS 18 comes with improved anti-theft measures. Three days w/o unlock, the iPhone will reboot, preventing thieves from getting your data.

Inactivity reboot puts your iPhone into "Before First Unlock" state, effectively locking encryption keys in the Secure Enclave Processor. Even if thieves leave your iPhone powered on for a long time, they won't be able to unlock it with cheaper, outdated forensic tooling. (1/2)

While inactivity reboot makes it more challenging for law enforcement to get data from devices of criminals, this won't lock them out completely. Three days is still plenty of time when coordinating steps with professional analysts.

On iOS 18.2 setup, users are now asked if they'd like to enable Stolen Device Protection, a feature previously hidden deep in the Settings menu. It prevents thieves from getting access to your phone&accounts with only the PIN by prompting for biometrics more often.

Bluesky is the Microsoft Word of social media, which I mean in the derogatory sense, as the fediverse is the LaTeX of social media, which I also mean in the derogatory sense

I didn't know #EU started to regulate political ads ( #TTPA ) :O I'm not familiar with the details (the devil is usually in there, see cookie banners...), but I think it was long due to attack propaganda from this angle, and it already seems to have some nice effects:

https://blog.google/around-the-globe/google-europe/political-advertising-in-eu/

Nice job, EU!

[RSS] The Definitive Guide to Linux Process Injection

https://www.akamai.com/blog/security-research/the-definitive-guide-to-linux-process-injection

[RSS] Hop-Skip-FortiJump-FortiJump-Higher - Fortinet FortiManager CVE-2024-47575

https://labs.watchtowr.com/hop-skip-fortijump-fortijumphigher-cve-2024-23113-cve-2024-47575/

Microsoft Releases Windows 11 ISOs for Arm64-based PCs https://tech.slashdot.org/story/24/11/14/189216/microsoft-releases-windows-11-isos-for-arm64-based-pcs?utm_source=rss1.0mainlinkanon

Broadcom no longer license vmware workstation, it has become free.

However, to download it you need to register an account that is impossible.

But

Their website security is questionable.... so here is a download link *lol*

https://softwareupdate.vmware.com/cds/vmw-desktop/ws/

#vmware #free #download

In December 2023, KrebsOnSecurity revealed the real-life identity of Rescator, the nickname used by a Russian cybercriminal who sold more than 100 million payment cards stolen from Target and Home Depot between 2013 and 2014. Moscow resident Mikhail Shefel, who confirmed using the Rescator identity in a recent interview, also admitted reaching out because he is broke and seeking publicity for several new money making schemes.

https://krebsonsecurity.com/2024/11/an-interview-with-the-target-home-depot-hacker/