the grugq's newsletter

Subscribe
Archives
March 13, 2025

March 13, 2025

March 13, 2025

Is this memory safety here in the room with us?@halvarflake posted slides for his keynote talk about the recent trends to resolve the problem of memory corruptions: existing solutions, their limitations, and trade-offs.https://t.co/dZCvFVBYaF pic.twitter.com/upmeOR9jSs

— Linux Kernel Security (@linkersec) March 12, 2025


Apropos: I want to re-post a blog post I wrote about the risks of AI combined with end-to-end encryption systems. https://t.co/dSYBV99wje

— Matthew Green is on BlueSky (@matthew_d_green) March 12, 2025


LitterBox: Your malware's favorite sandbox - where red teamers come to bury their payloads.

A sandbox environment designed specifically for malware development and payload testing.https://t.co/GhglCKlHY2

— Gray Hats (@the_yellow_fall) March 13, 2025


CVE-2025-27363: FreeType: Out of bounds write in FreeType <= 2.13.0 https://t.co/70hfcE1oQQ and https://t.co/Ll4hIswvCG
Facebook claims this "may have been exploited in the wild."

— Open Source Security mailing list (@oss_security) March 13, 2025


The prolonged attack, which lasted 300+ days, is the first known compromise of the US electric grid by the Voltzite subgroup of the Chinese APT | https://t.co/WiwkE2lUDC @DarkReading

— 780th Military Intelligence Brigade (Cyber) (@780thC) March 13, 2025

The Report:

https://www.dragos.com/wp-content/uploads/2025/03/Dragos_Littleton_Electric_Water_CaseStudy.pdf


The fifth article (57 pages) of the Exploiting Reversing Series (ERS) is available on:https://t.co/j7zazrhKN6

I would like to thank Ilfak Guilfanov @ilfak and Hex-Rays SA @HexRaysSA for their constant and uninterrupted support, which have helped me write these articles over… pic.twitter.com/W13E3k0n85

— Alexandre Borges (@ale_sp_brazil) March 12, 2025


Don't miss what's next. Subscribe to the grugq's newsletter:
X