April 14, 2025

                April 14, 2025

            April 14, 2025

            April 14, 2025
Happy Songkran!
It’s Thai new year over here (it’s a week long party, apparently right beneath my window) so expected reduced output. 

North Korea has ceremonially opened its first computer club — with Kim Jong Un himself attending the event.

Now, North Korean hackers will be able to comfortably steal billions of dollars from “Western capitalists” for their leader. pic.twitter.com/cCMB1vzgqm
— NEXTA (@nexta_tv) April 7, 2025

                  PHP Core Security Audit Results — The PHP Foundation — Supporting, Advancing, and Developing the PHP Language
The PHP Foundation — Supporting, Advancing, and Developing the PHP Language            

New video covering some recent (2024) swag that the German Foreign Intelligence Service (BND) started using for a major recruitment campaign.https://t.co/ISaFVnoPoY#BND #Germany #espionage
— Spy Collection (@SpyCollection1) April 13, 2025

InlineWhispers3: Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion https://t.co/dfrGbtRrUd
— Panos Gkatziroulis 🦄 (@netbiosX) April 13, 2025

   You read this headline and immediately think it must be some sort of technical error or complex algorithm beating the odds, but no: The tickets were too cheap and the jackpot too big so they just bought every possible ticket
             — Josh Billinson (@jbillinson.bsky.social)            2025-04-13T12:50:06.079Z 

Getting code execution in a process that cannot be located using traditional kernel APIs and is untouchable from usermode? All while staying PatchGuard-friendly?

Sign me up: https://t.co/cbwQzuzrv9
— Archie (@Archie_1997) April 13, 2025

CVE-2024-56406: Perl 5.34, 5.36, 5.38 and 5.40 are vulnerable to a heap buffer overflow when transliterating non-ASCII bytes https://t.co/M5wHss8z8t
$ perl -e '$_ = "\x{FF}" x 1000000; tr/\xFF/\x{100}/;'
Segmentation fault
First included in tag v5.33.1, fixed in 5.40.2 and 5.38.4
— Open Source Security mailing list (@oss_security) April 13, 2025

                  GitHub - cisagov/ScubaGear: Automation to assess the state of your M365 tenant against CISA's baselines
Automation to assess the state of your M365 tenant against CISA's baselines - cisagov/ScubaGear            

WW2 code-breaking & post-war maths: "the successful use of Bayesian statistics at [Bletchley Park] increased its use by postwar statisticians, supplanting the classical frequentist interpretation prevalent in the UK before the war" https://t.co/jS9U7ViPiW
— Shashank Joshi (@shashj) April 14, 2025

Don't miss what's next. Subscribe to the grugq's newsletter: