January 16, 2025

                January 16, 2025

            January 16, 2025

            January 16, 2025

#DOOM is now playable in a PDF file 🎮 pic.twitter.com/gzOxuheAId
— Culture Crave 🍿 (@CultureCrave) January 15, 2025

Made by Github user ading2210https://t.co/LITpILa4yn
— Culture Crave 🍿 (@CultureCrave) January 15, 2025

Dyana

Dyana is a sandbox environment using Docker and _Tracee for loading, running and profiling a wide range of files, including machine learning models, ELF executables, Pickle serialized files, Javascripts and more. It provides detailed insights into GPU memory usage, filesystem interactions, network requests, and security related events.

                  GitHub - dreadnode/dyana: A sandbox environment designed for loading, running and profiling a wide range of files, including machine learning models, ELFs, Pickle, Javascript and more
A sandbox environment designed for loading, running and profiling a wide range of files, including machine learning models, ELFs, Pickle, Javascript and more - dreadnode/dyana            

oh god pic.twitter.com/5nH3JvgGJt
— Benjamin (@bschne) January 15, 2025

For those unable to get their hands on EDR software for reversing, TrendMicro kindly publishes their resources at https://t.co/j0gP066RMO. 

It's possible to download and extract the on-prem appliance and explore to understand how EDRs (if you can even call it that) work. pic.twitter.com/bIMVIoKJr6
— Rad (@rad9800) January 15, 2025

[1day1line] CVE-2024-49415: Zero-Click RCE via OOB Write on Samsung Smartphones  https://t.co/dxCzcYMWsb 

A Zero-Click RCE vulnerability has been discovered in Samsung Android 12, 13, and 14. It occurs in the decoder of Monkey’s Audio files and can be exploited without user…
— hackyboiz (@hackyboiz) January 15, 2025

There was some silly Twitter drama this week about an Ethernet adapter that installed a driver in a really sloppy and shady way. My addition to the discourse was then picked up by Google and treated as legitimate. 

Not to alarm anyone, but I’ve noticed that Vapid Typhoon (also tracked as Wonky Willow, Protracted Panda, APT8888) has been using malware to deploy RJ45 adapters. 

If you discover an RJ45 connection to your devices, disconnect immediately! 

Known IOCs: pic.twitter.com/XYaWZZ4DWf
— thaddeus e. grugq (@thegrugq) January 15, 2025

 pic.twitter.com/BJL2cQlB7K
— Dizzy (@oppsonski) January 15, 2025

                Don't miss what's next. Subscribe to the grugq's newsletter: