To paraphrase PL 🤘🦇🤘, we've entered the next phase of our character ARC >:)

"If a target is vulnerable, it doesn’t matter whether the vulnerability is unknown or has been known for decades. A bad actor can still use it for nefarious purposes." - Charles McFarland, Trellix Advanced Research Center (@TrellixLabs) go.trellix.com/3QVFFcN

Siblings

Which vuln is giving red teams and malware groups alike a taste of their own medicine? Which bugs received a CVSS score of 9.8? Find out in the Trellix Advanced Research Center September Bug Report, from Charles McFarland: go.trellix.com/3ecMMjv

I want to live in a city where the pigeons are too fat to fly

Senior Principal Security Researcher Richard Johnson (Richard Johnson) will be at Cybersecurity Outlook 2023 presenting his research on #eBPF for Windows. Be sure to catch his keynote on Tuesday, 12/13 @ 2:30pm EST!

Demonstrating CVE-2022-37958 RCE Vuln. Reachable via any Windows application protocol that authenticates. Yes, that means RDP, SMB and many more. Please patch this one, it's serious! securityintelligence.com/posts/critical…

Easily defeating dictionary attacks against my passwords by having no idea how to spell words

Make 2023 the year you consistently update your software. In the January Bug Report, Jesse Chick explores three CVEs we spotted in the wild, who is impacted and what to do about it. bit.ly/3jo0aUH

Just how severe is "Severity: High"? John Dunlap and I take a stab at assessing the actual threat CVE-2023-0286, a type confusion in OpenSSL, poses to organizations

so it turns out nearly every XPC service on macOS and iOS used expressionType to check if a received NSPredicate was safe. The problem was the sender could set this value to whatever they want. This has been fixed in Foundation in iOS 16.3 and macOS 13.2 support.apple.com/en-us/HT213606

Our latest blog explores CVE-2023-23397, an Outlook security vuln observed in the wild which allows bad actors to leak NTLMv2 hashes. Mark Bereza 🇺🇦 and John Dunlap explain how to detect if your organization is affected and how to mitigate harm. bit.ly/3Ft9s9N

The wait is finally over! Our new SANS Offensive Operations class on Combating #SupplyChainAttacks with Product Security Testing is now open for registration! Join me and Ismael Valenzuela in June to learn how to analyze risk of using new hardware and software! sans.org/cyber-security…

Holy based

Had the pleasure of writing this month's Bug Report, so I made sure to pack it tight with artisan-crafted memes. Oh, and information on May's top vulnerabilities, too, I guess.

are you under the age of 26? do you like mips?

happy to see gen z gets its own "penguin of doom" girl

Join me and Ismael Valenzuela on Friday for a technical conversation on how to make sure you are ahead of the curve in protecting your organizations from current threats!

You'd be remiss not to check this out if you're at the CTI Summit. I got to demo this tool and it genuinely covers a notable hole in the threat intel product space: N-day prioritization that isn't just port-forwarding Mitre/NVD. R³ is classic "I didn't know I needed this til now"