April 4th
Russian espionage continues apace.
Exclusive: Berlin is to extradite a man accused of espionage for Russia to the United Kingdom @derspiegel
0d in an AV solution used to drop web shells. Not infrequently the security of security products is poor. Not the first, and definitely not the last.
Interesting one for Trend Micro customers - CVE-2022-26871
Exploited in the wild, Trend Micro Apex Central (on-premise and SaaS), being used for webshell deployment.
They don't mention but I've heard it was a zero day used for weeks to access customers.
An interesting project. The entirety of eBPF is endlessly fascinating for security. It can be used for root kits, back doors, novel intrusion detection (and prevention) systems, plus whatever it is supposed to actually be used for.
A research project to demonstrate remote code injection over TCP with a malicious eBPF probe.
Octal with an insightful point.
Cryptocurrency has done more for computer security than I'd ever expected (basically, instant bug bounty for lots of tech, and an actual market demand for real security vs. compliance-focused games.)
Potentially interesting: a collection of all things Enigma.
I have released publicly a NSA report entitled "Catalog of Enigma Cipher Machine Wirings" that I obtained through a FOIA request in 2007. The full report or in chapters is available here:
Don't miss what's next. Subscribe to the grugq's newsletter:
Start the conversation: