🛑 WARNING: CVE-2025-20393 is rated 10.0, with no patch available.
Cisco confirmed active exploitation of an AsyncOS zero-day by a China-linked APT.
The flaw allows root-level command execution on affected email security appliances and enables attackers to establish persistence.
🔗 Details and mitigations → https://t.co/vHajVFkm5T
You know what's satisfying? Knowing you received the early 🐦bird🐦 rate for FIRSTCON25. This rate expires on Monday, Feb 10th...HURRY! 🔗 https://t.co/kVYtx1DDJg
We’re now accepting poster proposals on a rolling basis! Submit to DFRWS for the chance to receive feedback during a dedicated poster session. You have until 28 February. Learn more: https://t.co/eLHT5jBCQr
#dfrws#conference#digitalforensics#eu#Brno#cybersecurity#dfir
How does the new iOS inactivity reboot work? What does it protect from?
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
https://t.co/VbdxhueXtL
Frida 16.5.0 is out! 🎉
https://t.co/axPMqB1YPF
Check out the release notes for a fun walkthrough of how to use the new watchpoint support to work out how to run your own code when bullets are fired in @idSoftware's amazing @DOOM 2024 re-release 🥳
Empire v5.11.4 was just released with updates and bug fixes!
- Updated Rubeus to v2.3.2
- Added nameserver check for linux hosts
- Fixed Rubeus only using first arg
- Fixed Rubeus killing agent when using System.Environment.Exit
- And more
Red Teamer Idan Ron built tldfinder with @pdiscoveryio to uncover TLDs, associated subdomains, and related domain names.
Read about the tool, and how it can be used to identify new attack surfaces! Learn more: https://t.co/S65NVfXSH8
Remember "EventLogCrasher", the 0day that allows any domain user to stop Windows Event Logging on all domain computers? (https://t.co/z7Oq3ujVxH)
Well, it's still working.
With the #GhostWrite CPU vulnerability, all isolation boundaries are broken - sandbox/container/VM can't prevent GhostWrite from writing and reading arbitrary physical memory on affected RISC-V CPUs. Deterministic, fast, and reliable - no side channels. https://t.co/qtmosPvuYl
If your website uses https://t.co/0V2y6VHu8n, remove it immediately.
In Feb, a Chinese company bought the domain & Github account. Since then, this domain was caught injecting malware on mobile devices via any site that embeds https://t.co/SmvnQ0E0nS
https://t.co/hrkaPYA80j
The biggest problem in #infosec isnt less skilled people or cost of security, its the ego of leadership or top level managers who value their pride so much more over productivity and results, that they are ready to take down the company with them just to bolster their ego.
So the news is, both Russian and Chinese threat actors broke into Microsoft Exchange servers and read emails of senior leaders. This is really awful.
One question... WHY DOESN'T MICROSOFT DO END TO END ENCRYPTION ON EMAILS!!??
https://t.co/9BLOcAAip9
Call for papers is open for DFRWS-APAC 2024! Submit your title & abstract by May 27, 2024. Accepted authors will be able to join us in Brisbane, Australia in October! Learn more & submit here: https://t.co/B750nfd3Tq
#dfrws#conference#digitalforensics#apac#brisbane
Google Cloud accidentally deleted a company's entire cloud environment (Unisuper, an investment company, which manages $80B). The company had backups in another region, but GCP deleted those too. Luckily, they had yet more backups on another provider.
https://t.co/v5WFxqUtaB
Woah found a new resource for free security training - https://t.co/hHTV85bM62
Looks like they get pretty advanced in their topics too. Love seeing free trainings for folks trying to up their skills.
Ah, we are finally back on the road to reality in automatic vulnerability detection!
"Attempts to improve performance through advanced training techniques and larger models like GPT-3.5 and GPT-4 were unsuccessful, with results akin to random guessing"
https://t.co/xGIMewNvOC
#Datenpanne der "Stay Informed App", die deutschlandweit in 9.500 Kitas genutzt wird. Personenbezogene Daten (auch "besondere") waren über das Internet abrufbar. Auf https://t.co/58cgRGhekx kann man in einer interaktiven OSM-Karte die Einrichtungen sehen, die die App nutzen.