Election hacking, Kernel Security, MDS Attacks and Github's Security Lab
Day[0] - Un pódcast de dayzerosec
Categorías:
Watch the DAY[0] podcast live on Twitch (@dayzerosec) every Monday afternoon at 12:00pm PST (3:00pm EST)
Or the video archive on Youtube (@DAY[0])
- [00:02:09] Thousands of hacked Disney+ accounts are already for sale
- [00:06:33] Faking an iVote decryption proof
- [00:16:20] "robot deployed at the famous Robot Hotels in Japan can be converted to offer anyone remote camera/mic access to all future guests."
- [00:30:13] "A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file"
- [00:35:42] HHVM Security Update
- [00:38:18] Symantec Endpoint Protection - Self-Defense Bypass - CVE-2019-12758
- [00:38:27] McAfee - All Editions - Self-Defense Bypass - CVE-2019-3648
- [00:43:26] Imperceptible Adversarial Attacks on Tabular Data
- [00:48:48] 5GReasoner: A Property-Directed Security and Privacy AnalysisFramework for 5G Cellular Network Protocol
- [00:55:26] Fuzzing Qualcomm Secure Execution Environment and CVE-2019-10574
- [01:00:32] TPM-Fail
- [01:08:54] Mitigations for Jump Conditional Code Erratum
- [01:14:35] More MDS Attacks
- [01:22:55] Tianfu Cup
- [01:27:48] Protecting against code reuse in the Linux kernel with Shadow Call Stack
- [01:34:04] Security things in Linux v5.3
- [01:50:36] A Security Perspective on Unikernels
- [01:54:26] Announcing GitHub Security Lab: securing the world's code, together
- [02:09:32] Huawei introduces new invite-only bug bounty program
- [02:12:37] Interpol plans to condemn encryption spread, citing predators, sources say
- https://www.youtube.com/watch?v=VPBH1eW28mo
- [02:17:33] How a turf war and a botched contract