Episode #22

1. Project Zero: A deep dive into an NSO zero-click iMessage exploit: Remote Code Execution (googleprojectzero.blogspot.com)

It turns out that this exploit actually contains their own scripting language built via logical circuit in JBIG2 stream

Related:

• About the security content of iOS 14.8 and iPadOS 14.8 - Apple Support (support.apple.com)

2. The Kerberos Key List Attack: The return of the Read Only Domain Controllers – SecureAuth (www.secureauth.com)

Related:

• Attacking Read-Only Domain Controllers (RODCs) to Own Active Directory – Active Directory Security (adsecurity.org)

3. Blacksmith (comsec.ethz.ch)

Related:

• TRRespass wins the best paper award at S&P – Computer Security Group (comsec.ethz.ch)
• Defeating Software Mitigations against Rowhammer: a Surgical Precision Hammer (comsec.ethz.ch)
• comsec-group/blacksmith: Next-gen Rowhammer fuzzer that uses non-uniform, frequency-based patterns. (github.com)
• CVE - CVE-2021-42114 (cve.mitre.org)

4. GitHub’s commitment to npm ecosystem security | The GitHub Blog (github.blog)

Related:

• Embedded malware in ua-parser-js · GHSA-pjwm-rvh2-c87w · GitHub Advisory Database (github.com)
• Embedded malware in coa · GHSA-73qr-pfmq-6rp8 · GitHub Advisory Database (github.com)
• Embedded malware in rc · GHSA-g2q5-5433-rhrf · GitHub Advisory Database (github.com)

5. Looking for vulnerabilities in MediaTek audio DSP - Check Point Research (research.checkpoint.com)

Related:

• Eavesdropping Bugs in MediaTek Chips Affect 37% of All Smartphones and IoT Globally (thehackernews.com)