Episode #16

Posted on Sep 22, 2021

facebook whatsapp e2e encryption haproxy azure azurescape forcedentry nso group spook.js spectre

End-to-end encryption. HAProxy. Azurescape. NSO Group Exploit. Spook.JS

1. How Facebook Undermines Privacy Protections for Its 2 Billion WhatsApp Users (propublica.org)

Related:

WhatsApp “end-to-end encrypted” messages aren’t that private after all (arstechnica.com)

2. Critical Vulnerability in HAProxy (CVE-2021-40346): Integer Overflow Enables HTTP Smuggling (jfrog.com)

Related:

CVE-2021-40346 Detail (nist.gov)

September/2021 – CVE-2021-40346: Duplicate ‘Content-Length’ Header Fixed (haproxy.com)

[ANNOUNCE] HTX vulnerability from 2.0 to 2.5-dev (mail-archive.com/haproxy)[/sites/mail-archive_haproxy])

HAProxy vulnerability enables HTTP request smuggling attacks (portswigger.net))

3. Finding Azurescape – Cross-Account Container Takeover in Azure Container Instances (paloaltonetworks.com)

Related:

Coordinated disclosure of vulnerability in Azure Container Instances Service (microsoft.com)

4. FORCEDENTRY. NSO Group iMessage Zero-Click Exploit Captured in the Wild (citizenlab.ca)

Related:

About the security content of iOS 14.8 and iPadOS 14.8 (apple.com)

Apple Issues Emergency Security Updates to Close a Spyware Flaw (nytimes.com)

5. Spook.js. Attacking Google Chrome’s Strict Site Isolation via Speculative Execution and Type Confusion (spookjs.com)

Related:

Proof-of-concept for Spook.js (github.com/spookjs)

Spook.js – New side-channel attack can bypass Google Chrome’s protections against Spectre-style exploits (portswigger.net)