After releasing his PoC for CVE-2024-49138, @ale98 is back with two new articles that provide background on #Windows #CLFS, analyze two distinct #vulnerabilities patched by Microsoft’s KB5048685, and describe how to #exploit them.

https://security.humanativaspa.it/cve-2024-49138-windows-clfs-heap-based-buffer-overflow-analysis-part-1

https://security.humanativaspa.it/cve-2024-49138-windows-clfs-heap-based-buffer-overflow-analysis-part-2

Well, here's the cyberpunk part of the dystopia. Congrats Linux users, you're all criminals now.

Starting on January 19, 2025 Facebook's internal policy makers decided that Linux is malware and labelled groups associated with Linux as being "cybersecurity threats". Any posts mentioning DistroWatch and multiple groups associated with Linux and Linux discussions have either been shut down or had many of their posts removed.

https://distrowatch.com/weekly-mobile.php?issue=20250127#sitenews

I accidentally clicked a fucking YT short and it WON'T STOP PLAYING IF I START ANOTHER VIDEO!!

Via another "crazy security scanner" report, I learn that #libcurl is installed in a #Microsoft Office and/or Teams install on Windows? According to the reddit post, in a normal install.

Does anyone know more?

The reddit page mentioning this: https://www.reddit.com/r/sysadmin/comments/1hx9eib/libcurl_vulnerability_in_office_and_teams/?sort=new

The libcurl mailing list post:

https://curl.se/mail/lib-2025-01/0086.html

David Sacks and OAI complaining about distillation is extremely rich considering OAI trained in all of Libgen. :-(

Everyone is r*tarded.

OpenAI says it has evidence China’s DeepSeek used its model to train competitor - https://www.ft.com/content/a0dfedd1-5255-4fa9-8ccc-1fe01de87ea6?shareType=nongift via @ft

[RSS] My electric toothbrush was acting up, so I tried to reboot it

https://devblogs.microsoft.com/oldnewthing/20250128-00/?p=110815

Life is an adventure!

Evolving the Windows User Model – Introducing Administrator Protection

https://techcommunity.microsoft.com/blog/microsoft-security-blog/evolving-the-windows-user-model-%E2%80%93-introducing-administrator-protection/4370453

Sent by Charles Adams from Inyokern, California, U.S.A. on May 20, 1996. https://postcardware.net/?id=43-13

GhidraDbg - A Python script that creates a bridge between #Ghidra and #WinDbg for dynamic driver analysis, allowing real-time synchronization of debugging states.

https://github.com/philsajdak/GhidraDbg

"The built-in Ghidra-WinDbg sync can be challenging to configure and maintain, often requiring specific connection settings and troubleshooting. This script aims to provide a more straightforward, feature-rich alternative."

Tour of #Rust's Standard Library Traits

https://github.com/pretzelhammer/rust-blog/blob/master/posts/tour-of-rusts-standard-library-traits.md

jesus, Google Maps is going to change the names of the Gulf of Mexico and Denali. https://www.theverge.com/2025/1/27/24353450/google-maps-rename-gulf-of-mexico-america-mt-mckinley

It’s Tuesday. How’s everyone holding up?

Sitting in bed and using my portable data terminal to read about USA billionaire vs China military backed battling AI systems suspected of stealing our data and spying on us is exactly the cyberpunk future I was promised.

A detailed, well-written, and hilarious breakdown of the details of CVE-2024-55591, one of the latest Fortinet fiascos:

#ThreatIntel #ThreatIntelligence #CVE

https://labs.watchtowr.com/get-fortirekt-i-am-the-super_admin-now-fortios-authentication-bypass-cve-2024-55591/

You know the drill.
Update your fruit.
At least one of these (CVE-2025-24085) is being used by attackers in the wild.
https://support.apple.com/en-us/100100

What if the human brain can be deceived much cheaper?

Auschwitz was at the end of a long process. We must remember that it did not start from gas chambers.

This hatred was gradually developed by humans. From ideas, words, stereotypes & prejudice through legal exclusion, dehumanization & escalating violence... to systematic and industrial murder.

Auschwitz took time.

Last Thursday, I gave a webinar on anti-reverse engineering techniques like obfuscation, anti-debug, anti-tamper etc, including practical examples. Recording, slides and examples are now available.

Recording: https://www.youtube.com/watch?v=Ie1eZSiMEJ8

Slides, code & samples: https://github.com/emproof-com/webinars/tree/main/2025-01-software_protection

[RSS] Clone2Leak: Your Git Credentials Belong To Us

https://flatt.tech/research/posts/clone2leak-your-git-credentials-belong-to-us/

I’ve been thinking about what it would look like if Oracle bought TikTok, but I am not sure if they will go with a per device or per core licensing model