[RSS] A Dual Game Boy Chiptune Keytar

https://blog.adafruit.com/2024/11/25/a-dual-game-boy-chiptune-keytar-musicmonday-2/

"Your scientists were so preoccupied with whether they could, they didn't stop to think if they should."

Since it's almost been a year and OBTSv7 is around the corner, I published the long overdue writeup for badmalloc:
https://gergelykalman.com/badmalloc-CVE-2023-32428-a-macos-lpe.html

[RSS] Windows - DPAPI Revisited for Chromium App-Bound encryption recent changes

https://tierzerosecurity.co.nz/2024/11/26/data-protection-windows-api-revisited.html

Slides & video from our @grehackconf talk "Attacking Hypervisors - A Practical Case" are online! Learn how we exploited vulnerabilities to escape VirtualBox during Pwn2Own Vancouver 2024: https://www.reversetactics.com/publications/2024_conf_grehack_virtualbox/

Reversing virtualized binaries is no easy task. Our intern Jack took on exploring automated devirtualization techniques, and presents in our latest blog post an efficient, modular, taint-based approach that leverages LLVM IR: https://blog.thalium.re/posts/llvm-powered-devirtualization/

Channeling @Viss

"Go to the cloud, it'll be great"

Microsoft has been reporting an issue since 8:54pm yesterday. The basic summary of the issue is "Teams,. Exchange, Purview, SharePoint, and Universal Print are all broken". So you know - everything you need to use in Office365 to operate on a day to day basis in a Microsoft world.

Copilot is also broken apparently, but we don't like that anyway, right?!

A lot of people don’t know this one weird trick — much like JavaScript, C also lets you perform arithmetic with mixed types:

[RSS] Arbitrary web root file read in Sitecore before v10.4.0 rev. 010422

https://blog.scrt.ch/2024/11/25/arbitrary-web-root-file-read-in-sitecore-before-v10-4-0-rev-010422/

[RSS] Finding vulnerabilities in ClipSp, the driver at the core of Windows' Client License Platform

https://blog.talosintelligence.com/finding-vulnerabilities-in-clipsp-the-driver-at-the-core-of-windows-client-license-platform/

Dear everyone who owns domains that are *not used for e-mail*, particularly ones that are potential targets for phishing (banks, high-profile names): Could you please configure SPF+DMARC, ideally with p=reject? You may wonder: Why should I configure anything email for a host that isn't used for email? Well... it helps others to identify spam sent with your domain as the sender.

@0xabad1dea they could have gone the crowdstrike route and just bricked the laptop when processing the unsigned update.

Good news: The Dell firmware update utility definitely checks whether update executables are signed.

Bad news: Dell is posting unsigned update executables to their website labeled “critical” which then fail to install due to the good news

[RSS] How JWT Libraries Block Algorithm Confusion: Key Lessons for Code Review

https://pentesterlab.com/blog/jwt-algorithm-confusion-code-review-lessons

[RSS] Ruby 3.4 Universal RCE Deserialization Gadget Chain

https://nastystereo.com/security/ruby-3.4-deserialization.html

bsky.app/profile/mrme.bsky.social/post/3lbql2z2uas2f

Trust me, the Chinese hack Spring apps harder than you: https://juejin.cn/post/6972564484720328718

Revisiting unresolved JetBrains TeamCity issues: https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=teamcity

• TeamCity 2024.07.3
  • Release/Blog Publish Date: 01 October 2024
    CVE assigned/publicly available: 08 October 2024 (8 days)
  • "5 security problems have been fixed."
    5 CVEs assigned
• TeamCity 2024.07.2
  • Release/Blog Publish date: 29 August 2024
    CVEs: N/A
  • "3 security problems have been fixed."
    0 CVEs assigned
• TeamCity 2024.07.1
  • Release/Blog Publish date: 06 August 2024
    CVE assigned/publicly available: 16 August 2024 (11 days)
  • "6 security problems have been fixed."
    5 CVEs assigned
• TeamCity 2024.07
  • Release/Blog Publish Date: 18 July 2024
    CVE assigned/publicly available: 22 July 2024 (5 days)
  • "19 security problems have been fixed."
    6 CVEs assigned

I may be a hater but I'm not lying and to my customers and hiding security issues.

#jetbrains #teamcity #vulnerability #cve

@screaminggoat @dreadpir8robots @h4sh @todb Full Disclosure

@screaminggoat @dreadpir8robots @todb @h4sh IME CVE issuance is the easiest part: if vendor is a CNA, they will take care of it, most of the process is coordinating technical details and disclosure. If it's MITRE you can get a CVE basically instantly with their online form.

I have to note that AFAIK MITRE is *not* a fallback (they will redirect you to the CNA you just visited), and H1 is *definitely* not a fallback (for a multitude of reasons). FD is a fallback, and so is CERT-CC in some cases.

social media platform users are going to link offsite. the only question is how obnoxious the platform will make it for them and everyone else.

(For context: Instagram prohibits links in post text. This, plus the incentive to inflate comments, has led to the proliferation of tools where creators instruct their followers to comment with a specific word to receive a link in their DMs— in this case, to a pie crust recipe)

@wdormann Is this the feature implemented by ai.exe, aka. "Artificial Intelligence Host"? That thing caused problems for me before by trying to chat with the mothership:

https://www.reddit.com/r/Office365/comments/ylkip5/comment/j3vjm8w/