Episode #21

1. The Kerberos Key List Attack: The return of the Read Only Domain Controllers – SecureAuth (www.secureauth.com)

Related:

• Attacking Read-Only Domain Controllers (RODCs) to Own Active Directory – Active Directory Security (adsecurity.org)

2. Blacksmith (comsec.ethz.ch)

Related:

• TRRespass wins the best paper award at S&P – Computer Security Group (comsec.ethz.ch)
• Defeating Software Mitigations against Rowhammer: a Surgical Precision Hammer (comsec.ethz.ch)
• comsec-group/blacksmith: Next-gen Rowhammer fuzzer that uses non-uniform, frequency-based patterns. (github.com)
• CVE - CVE-2021-42114 (cve.mitre.org)

3. GitHub’s commitment to npm ecosystem security | The GitHub Blog (github.blog)

Related:

• Embedded malware in ua-parser-js · GHSA-pjwm-rvh2-c87w · GitHub Advisory Database (github.com)
• Embedded malware in coa · GHSA-73qr-pfmq-6rp8 · GitHub Advisory Database (github.com)
• Embedded malware in rc · GHSA-g2q5-5433-rhrf · GitHub Advisory Database (github.com)

4. Looking for vulnerabilities in MediaTek audio DSP - Check Point Research (research.checkpoint.com)

Related:

• Eavesdropping Bugs in MediaTek Chips Affect 37% of All Smartphones and IoT Globally (thehackernews.com)

5. Coin mining, ransomware, APTs target cloud: GCAT report | Google Cloud Blog (cloud.google.com)

Related:

• Threat Horizons - Intel Paper - Nov 2021 (services.google.com)
• Threat Horizons Executive Snapshot - Nov 2021 (services.google.com)