@[email protected]

“So WSUS with HTTPS is secure, you said? 😂” Turns out… not really. According to the excellent research by Alexander Neff and Phil Knüfer in “Using ADCS to Attack HTTPS‑Enabled WSUS Clients,” a misconfigured ADCS environment can completely undermine HTTPS‑protected WSUS. They demonstrate how overly permissive certificate templates—especially those allowing user‑defined subject names and limited to the Server Authentication EKU—let an attacker obtain a trusted certificate and impersonate a WSUS server. Combine that with classic WSUS interception techniques, and suddenly you can push malicious updates that run with full admin privileges on Windows clients, all while the traffic looks perfectly valid and encrypted. From a defender’s point of view, the big question becomes: How do you detect if your WSUS clients have been talking to a hijacked WSUS server? 😅 Good news: it is detectable—and here’s the KQL to help you spot it. #Cyberesecurity #WSUSHiJackAttack

This key takeaways from this report: - Agentic AI lowers the bar for cyber attacks (we knew this) - Dramatically increases scale (we knew this) - without a human in the loop, success rate is low (we knew this) The report itself leaves a lot to be desired from a technical aspect , I caution reporters to not read too deeply into the conclusions. If you’re an org, standard defense in depth still applies here as defense against these AI assisted attacks.

Until now, if you lost or broke your phone, your Signal message history was *gone,* a real challenge for everyone whose most important conversations happen in Signal. So, with careful design and development, we’re rolling out opt-in secure backups. https://t.co/MfpQGe2XSr Secure backups will let you save an archive of your Signal messages remotely in privacy-preserving form, refreshed every day. Now available in the latest Android beta release, rolling out to iOS and Desktop in the near future.