December 11, 2024 at 01:33PM Multiple vulnerabilities were identified in macOS Sonoma 14.7.2, impacting user data access, kernel privileges, and sandbox security. Updates addressing various issues, including logic, path handling, memory management, and permissions, have been released to mitigate risks. Users are encouraged to install the latest security updates. ### Meeting Takeaways on macOS Sonoma … Read more
October 28, 2024 at 12:06PM Apple released an update for tvOS 18.1 addressing multiple security vulnerabilities, including path handling, symlink issues, memory corruption, and information disclosure. These vulnerabilities could allow unauthorized access to sensitive data, cause unexpected crashes, or manipulate protected system files. Updates are available for Apple TV HD and Apple TV 4K models. … Read more
October 15, 2024 at 02:21PM Apple released updates for macOS Ventura 13.6.7 on May 13, 2024, addressing various security vulnerabilities, including arbitrary code execution, privilege escalation, and sensitive data access issues through improved checks and validations. Multiple CVEs are listed, highlighting the importance of system updates to mitigate potential threats. ### Meeting Notes Summary **Apple … Read more
July 4, 2024 at 09:10AM Conceptworld Corporation, an India-based software company, was found to be distributing information-stealing malware with its software products. Researchers from Rapid7 discovered that the installation packages of their tools, Notezilla, RecentX, and Copywhiz, had been Trojanized. Despite replacing the malicious installers, users were unknowingly exposed to the dllFake malware, capable of … Read more
June 13, 2024 at 10:25AM The discovery of a new attack method called Sleepy Pickle poses a significant security risk to machine learning (ML) models. The attack targets ML models by corrupting the Pickle format, allowing for the insertion of payloads to modify model behavior and output. It is recommended to load models from trusted … Read more
May 24, 2024 at 04:31PM Researchers at security firm Rapid7 discovered a backdoor in Justice AV Solutions (JAVS) audio-visual software used in over 10,000 courtrooms. The backdoor, suspected to be part of a supply chain attack, enabled attackers full system access. Rapid7 urges affected users to reinstall, reset credentials, and upgrade to a secure version … Read more
April 29, 2024 at 05:15PM A high-severity vulnerability (CVE-2024-27322) in R programming language’s deserialization process poses a threat to organizations using the language. Attackers could execute arbitrary code through specially crafted RDS files or packages, affecting sectors such as finance, healthcare, and AI. The issue has been addressed in R version 4.4.0, but organizations are … Read more
April 24, 2024 at 05:27PM Attacks like those experienced by SolarWinds and CodeCov show that adversaries can employ social engineering to execute supply chain attacks, as demonstrated by the backdoor introduction in the XZ Utils open source utility. This incident, along with warnings from the Open Source Security Foundation, highlights the need for vigilance in … Read more
April 6, 2024 at 12:18PM A recently discovered sophisticated backdoor in the xz software library raised concerns about the security of open-source code. The backdoor could allow remote control over infected systems, highlighting the risks of widely used code. Experts debate whether large corporations should contribute to securing such code. Join the Kettle series for … Read more
April 1, 2024 at 05:20PM A backdoor was discovered in the open-source compression library xz, posing a significant security threat. Luckily caught in time, the incident has raised concerns about future safeguards. The complex and stealthy attack on the software has sparked speculation about the motives and sophistication of the perpetrator. The hunt for the … Read more