hi everyone

given one #bitlocker #0day is already out there, here's my own bitlocker 0day, I added it to my repo listing bitlocker attacks.

Introducing "ram leak": https://github.com/Wack0/bitlocker-attacks#ram-leak

As we all know, the boot environment allows booting from a ramdisk. This involves loading a file from disk into RAM, as expected.

However, "file" and "disk" can be arbitrarily chosen, and "disk" being a BitLocker encrypted partition is a supported scenario. Using another trick (same one used with bitpixie earlier) it's possible to get the keys derived without going through the legacy integrity validation checks too if relevant.

You can see where this is going. It's possible to leak any file from a bitlocker encrypted OS partition into RAM as long as you can get the keys derived (ie, TPM-only scenario).

The catch is that booting into the NT kernel marks that memory area as free so it could get overwritten there, but there are other ways to dump the memory area, and a PoC is included with my preferred method (it's only a PoC so just displays a hexdump of the first sector of the file)

The video shows successful exploitation in my test VM, it has secure boot enabled (you can tell because VMware shows an efi shell option on the boot menu when secure boot is disabled).

#infosec #windows

GitHub Copilot AI token charges go up 10×–100×

how Enterprise Software as a Service works

https://www.youtube.com/watch?v=-A9FjHGcFWg&list=UU9rJrMVgcXTfa8xuMnbhAEA - video
https://pivottoai.libsyn.com/20260518-github-copilot-ai-token-charges-go-up-10x-100x - podcast

time: 7 min 33 sec

https://pivot-to-ai.com/2026/05/18/github-copilot-ai-token-charges-to-go-up-10x-100x/ - blog post

Clownstrike share price basically tripled since the 2024 fuckup... There is no such thing as long term damage in cyber stocks LOL :PPPPPPPP

🐞 Linus Torvalds says AI-powered bug hunters have made Linux security mailing list ‘almost entirely unmanageable’

“So just to make it really clear: If you found a bug using AI tools, the chances are somebody else found it too. If you actually want to add value, read the documentation, create a patch too, and add some real value on *top* of what the AI did. Don't be the drive-by ‘send a random report with no real understanding’ kind of person. OK?”

https://www.theregister.com/security/2026/05/18/linus-torvalds-says-ai-powered-bug-hunters-have-made-linux-security-mailing-list-almost-entirely-unmanageable/5241633

#ai #linux

RubyGems suspends new Signups after Hundreds of Malicious Packages are Uploaded.

RubyGems, the standard package manager for the Ruby programming language, has temporarily paused account sign ups following what has been described as a "major malicious attack."

"We're dealing with a major malicious attack on Ruby Gems right now," Maciej Mensfeld, senior product manager for software supply chain security at Mend.io, said in a post on X. "Signups are paused for the time being. Hundreds of packages involved – mostly targeting us, but some carrying exploits."

https://x.com/maciejmensfeld/status/2054164602577940619

⁉️Visitors to RubyGems sign up page are now greeted with the message: "New account registration has been temporarily disabled."⁉️

https://rubygems.org/sign_up

#rubygems #security #privacy #media #secure #ruby #programming #developer #infosec #tech #news

so, umm, this is a 16 bytes intro

16 bytes

!!!!!!!!!!!!!!!!

https://www.youtube.com/watch?v=MvycyU-kLjg

#demoscene #intro

@schrotthaufen Glad to hear it's some more widespread thing!

( jk, I feel crushed I'm not worthy of a targeted attack :,( )

@cure53 No, just authn related stuff, pretty sus...

New Project Zero issue:

Adobe DNG SDK: heap corruption via negative pointer in dng_simple_image::Trim due to DefaultCropArea logic error

https://project-zero.issues.chromium.org/issues/479151242

CVE-2026-27259

New Project Zero issue:

Adobe DNG SDK: inconsistency between kMaxColorPlanes and kMaxSamplesPerPixel leads to multiple memory corruption issues

https://project-zero.issues.chromium.org/issues/477557327

CVE-2026-27258

New Project Zero issue:

Adobe DNG SDK: systemic out-of-bounds reads in rendering routines due to lack of NaN validation and missing index lower-bound checks

https://project-zero.issues.chromium.org/issues/480916830

CVE-2026-27260

To whom it may concern:

Would you please stop trying to log in to my G/MS accounts? Not too much to see there anyway...

Peter G. Neumann, renowned computer scientist, ARPANET/Internet pioneer and expert on technology risks, working at SRI International since 1971, has died at age 93. Peace. He has been my friend and colleague for over half a century. He will be greatly missed.

GitHub says it has no problems with security researchers using AI to find bugs in its service, but it has a problem with researchers filing bad reports that haven't been validated, are extra-verbose and long, and don't contain steps to reproduce and a proof-of-concept.

Basically, KISS!

https://github.blog/security/raising-the-bar-quality-shared-responsibility-and-the-future-of-githubs-bug-bounty-program/

There's apparently another Linux LPE.
DirtyDecrypt, also known as DirtyCBC, is a variant of CopyFail / DirtyFrag / Fragnesia.
I suspect it may be CVE-2026-31635.
Patches (change < to >) were committed on April 8, 2026 and also on April 18, 2026 as beee051f259acd286fed64c32c2b31e6f5097eb5 and e2f1a80d8b1ed6a5ae585a399c2b46500bdcc305

I have not been able to get it to actually work on any Linux distro that I've tried.
(Edit: Fedora and mainline Linux repro fine)

Overheard: “I feel more pressure to use AI as an adult than to do drugs as a teenager.”

#ai #llm #drugs

New article on an AppleJPEGXL UaF I found recently.

https://ret2p.lt/2025/05/17/AppleJPEGXL-CVE.html

Enjoy! Constructive criticism is always appreciated.

DOMPurify 3.4.4 is out with again several small in-depth improvements.

These include added stability for IN_PLACE sanitization, improved handling of cross-realm nodes and several newly permitted elements and attributes.

https://github.com/cure53/DOMPurify/releases/tag/3.4.4

TIL that one of the diagnostic clues for autism is "Thinks about their special interests outside of the time when actually engaging with special interests."

And I'm like... what? What else do you think about?...

#neurodivergent #psychology