April 13, 2024

                April 13, 2024

            April 13, 2024

            April 13, 2024

Those who don't read https://t.co/DWIfxzByU0 (which turned 11 last month) are doomed to whatever people shocked about /sys/kernel/notes are doing right now
— Brad Spengler (@spendergrsec) April 12, 2024

                   Home | CIPHERLEAKs
Cipherleaks is the first demonstrated attack against AMD SEV-SNP. It exploits a vulnerable design feature of SEV’s memory encryption and uses the ciphertext of the encrypted VM Save Area (VMSA) as side channels to breach constant-time RSA and ECDSA implementation of the latest OpenSSL library.            

Technically a Caesar cipher is military grade encryption. They don’t mention *which* military
— Ian Coldwater 📦💥 (@IanColdwater) April 12, 2024

Our latest blog post details @Volexity's identification & incident response associated with the Palo Alto Networks GlobalProtect #0day vuln, assigned CVE-2024-3400, that the team found being exploited in the wild.

Read more here: https://t.co/cA7OctkRJW#DFIR #ThreatIntel
— Volexity (@Volexity) April 12, 2024

"An ex-career diplomat who once served as US ambassador to Bolivia has been sentenced to 15 years in prison for working as an agent for Cuba".https://t.co/w5Ti66xB6r
— Dr. Dan Lomas (@Sandbagger_01) April 13, 2024

Redis will probably be the case study on why it’s a terrible idea for a VC-funded company (Redis Labs) to take over a permissive open source project they did not start (Redis), become the de facto owners, and then “rug pull” (change the license).

Valkey is the “new” Redis. https://t.co/P4AbyypxUX
— Gergely Orosz (@GergelyOrosz) April 12, 2024

Good morning to everyone except the thieves at Redis. You didn't build it; you stole it from the community. 

If you want it from the ones who built it, it's called Valkey. pic.twitter.com/yol3WWwEfj
— Corey Quinn (@QuinnyPig) April 11, 2024

Interesting blog post with an overview of SIM card-related security aspects
Credits @senseposthttps://t.co/zBTBraoYNv#sim #cybersecurity pic.twitter.com/7ZA6BpQtCe
— 0xor0ne (@0xor0ne) April 13, 2024

I have a few public playlists if you're interested in my hand-picked selections. Rust:  https://t.co/rFdfGbGj6M HaxTrax: https://t.co/TMR0NikoEt InfoSec: https://t.co/RlS2iu1ENq and shamelessly My Presos: https://t.co/rT8kEWq6OY
— Joshua J. Drake (@jduck) April 12, 2024

Cybersecurity Startup Idea:

A firewall that increases security!
— LiveOverflow 🔴 (@LiveOverflow) April 12, 2024

pic.twitter.com/OaJh53izti
— Tom Cardy (@Tomycardy) April 12, 2024

Don't miss what's next. Subscribe to the grugq's newsletter:

Start the conversation: