"CSS data exfiltration via a single injection point"
Nice example of why we should never trust user input:
"... a remote attacker within proximity can silently execute arbitrary code with the privileges of the Bluetooth daemon as long as Bluetooth is enabled. No user interaction is required ..."
CDPwn – 5 zero-day vulnerabilities in Cisco Discovery Protocol (CDP):
– Different Cisco products are vulnerable to denial of service attacks and remote code execution.
– See also https://kb.cert.org/vuls/id/261385/.
– CVE-2020-3110, CVE-2020-3111, CVE-2020-3118, CVE-2020-3119, CVE-2020-3120.
"Security Flaw Found in WhatsApp Desktop Platform Allowing Cybercriminals Read From The File System Access"
> Did you consider removing the installation and Google-specific tracking headers (x-client-data) that Google Chrome is sending to Google properties ?
> It's a unique ID to track a specific Chrome instance across all Google properties.
TeamViewer stores user passwords encrypted, not hashed:
– The key and IV are publicly known and identical for all users.
– Privilege escalation is possible in certain cases (CVE-2019-18988).
Security Flaw in Trezor Hardware Wallets
"Does Your Domain Have a Registry Lock?"
"Stop using ridiculously low DNS TTLs"
"When an application uses the GPU, some private data inevitably get stored in GPU. We find the graphics driver fails to wipe them after the application finishes, so the data preserve in the GPU. Therefore, an attacker can run a GPU spyware to steal these private data."
Nice description of the "pledge()" and "unveil()" mechanisms, now available on 2 operating systems.
Explanation of how bash history works and how to change its behavior:
How Google Groups can be used to sign in into certain services as a member of given company:
"Why API responses should be signed"
"Banning Facial Recognition Isn’t Enough"