Lightnews — Scholar-powered news

4Dgifts @4dgifts.bsky.social · 4d

Reflective loading of an unsigned Windows driver.
This may be useful for red teaming and game cheating, but also to reclaim ownership of your computering device.
Yay, you don't need a cloud services account to do it!

Quarkslab @quarkslab.bsky.social · 4d

Finding a buggy driver is one thing, abusing it is another🧠
In his latest blog post, Luis Casvella shows you how BYOVD can be used as a Reflective Rootkit Loader ! 🚀

➡️ blog.quarkslab.com/exploiting-l...

1

Reposted by 4Dgifts

Quarkslab @quarkslab.bsky.social · 20d

BYOVD is a well-known technique commonly used by threat actors to kill EDR 🔪
However, with the right primitives, you can do much more.
Find out how Luis Casvella found and exploited 4 vulns (CVE-2025-8061) in a signed Lenovo driver.
👇
blog.quarkslab.com/exploiting-l...

RW physical memory pages with a side of LSTAR MSR overwrite? YOLO!

1 1

Reposted by 4Dgifts

TechCrunch @techcrunch.com · Sep 7

It's not clear who cut the cables or why.

Microsoft says Azure affected after cables cut in the Red Sea | TechCrunch

It's not clear who cut the cables or why.

techcrunch.com

12 35

4Dgifts @4dgifts.bsky.social · Sep 5

Reverse engineering of the patch for a (remote?) code execution vuln recently fixed by Apple, allegedly used in attacks ITW.
They "improved bounds checking" at an infinite rate, from 0 to actually checking.
This is the kind of simple bug that a fuzzer would catch so it is puzzling that it wasn't.

Quarkslab @quarkslab.bsky.social · Sep 4

The two bytes that make size matter:
Reverse engineering Apple's iOS 0-click CVE-2025-43300 improved bounds checking fix, by Madimodi Diawara

blog.quarkslab.com/patch-analys...

Yo dawg, I heard you like Improved Bounds Checking
So I improved the bound checks of the bound checks

2 4

4Dgifts @4dgifts.bsky.social · Aug 5

What kind of advise is "We don't know what is going on, disable your VPN server" ?
Also a 0day is not "a security bug that was discovered and exploited before the vendor could patch the issue".
0day is a vuln that is not publicly known.
A known vuln that the vendor did not care to patch isn't 0day.

Zack Whittaker @zackwhittaker.com · Aug 5

New: SonicWall is urging customers to disable SSLVPN as researchers report ransomware attacks targeting SonicWall firewalls. Particularly problematic for big companies that rely on these devices. Arctic Wolf and Huntress say it's likely a zero-day under attack but SonicWall is still investigating.

SonicWall urges customers to disable SSLVPN amid reports of ransomware attacks | TechCrunch

Security researchers say they have evidence that ransomware gangs are hacking into large companies that rely on fully-patched SonicWall firewalls. The researchers say it's likely the flaw is a "zero-d...

techcrunch.com

1 6 7

4Dgifts @4dgifts.bsky.social · Jun 6

30+ years in cybersecurity and I still see these vendor-supported private 0day sharing clubs.
Vendors that tilt the patch and later demand fair play.
We have not learned anything from MAPP have we?

Kim Zetter @kimzetter.bsky.social · Jun 6

"some vendors...ship...their new phones to Cellebrite 3 months before they’re released, giving Cellebrite...a head start in cracking the devices. It’s a practice that dates back to the company’s original business, selling gear to...carriers that helped their customers migrate contacts" to new phones

1 2

Reposted by 4Dgifts

Nora Bär @norabar.bsky.social · May 28

😍Un equipo de la UBA se ubicó entre los 5 mejores (de más de 100) en el mundial de “satélites enlatados”👇en la final del proyecto CanSat, organizado por la Universidad Nacional de México, con un satélite del tamaño de una lata que ellos mismos diseñaron y fabricaron 👇

3 32 72

4Dgifts @4dgifts.bsky.social · May 28

tambien acá 👋

2

4Dgifts @4dgifts.bsky.social · May 28

last I checked immigrant expenditures are not tax free either

2

Reposted by 4Dgifts

Mariano Absatz @el.baby · May 17

"(...) esa línea de crédito es extorsiva, y mientras la mantengan siempre China va a poder extorsionar"

En cambio, el crédito que el FMI por recomendación de los Estados Unidos le otorga a la Argentina... ¡Caramba! ¡qué coincidencia!

1 2

Reposted by 4Dgifts

Mariano Absatz @el.baby · May 17

Estados Unidos en el rol del novio violento y golpeador recomendándole a la novia liberarse de las amigas que la bancan cada vez que la faja

www.infobae.com/economia/202...

La recomendación a Milei de un funcionario de Trump: “Mientras tenga el swap con China, Argentina no será libre”

Mauricio Claver-Carone, enviado especial de Estado Unidos para América Latina, fue entrevistado en exclusiva por Infobae

www.infobae.com

2 1

4Dgifts @4dgifts.bsky.social · May 10

This is *significantly* better than Johnny Mnemonic and yet much less known.
Recommended!

C. Robert Cargill @crobertcargill.bsky.social · May 9

🚨HOLY SHIT! THIS IS NOT A DRILL!🚨

STRANGE DAYS is streaming on Criterion Channel as part of their 3 By Bigalow collection. This movie is ALMOST NEVER available and slaps so hard it'll hurt your mama. A must see for any Sci-fi/Cyberpunk/Neo-Noir fan. Such a great fucking movie.

LET'S FUCKING GOOOO!

3

Reposted by 4Dgifts

Jorge Aliaga @jorgeluisaliaga.bsky.social · May 6

OJO con esta nota.
El fondo fiduciario eliminado NO es el FONCYT, que no es un fondo fiduciario.
El eliminado es el FONDOTEC, creado por la Ley N° 23.877, de 1990.
El FONCYT se creó en 1996 con la @agenciaidiar

www.pagina12.com.ar/823318-motos...

Motosierra sin fin: el Gobierno eliminó definitivamente el FISU y el Fondo Fiduciario para la Promoción Científica | Luego de subejecutarlos

En una nueva muestra de su desprecio por las políticas públicas, el Gobierno de Javier Milei eliminó dos fondos fiduciarios clave: uno destinado a la ciencia y tecnología, y otro a la vivienda. Esta d...

www.pagina12.com.ar

2 4

Reposted by 4Dgifts

Eric Geller @ericjgeller.com · Apr 30

Strange times: CISA employees this morning received a "workforce accountability survey" email requiring them to say whether they were on-site, teleworking, on leave, on travel, or no longer employed at CISA.

Then a few hours later, they got another email saying "no response is needed."

3 13 38

Reposted by 4Dgifts

Quarkslab @quarkslab.bsky.social · Apr 8

There is a small bug in the signature verification of OTA packages in the Android Open Source Framework.
Official builds doing normal double verification of packages are not vulnerable but OEMs and third party apps may be.
Jérémy Jourdois explains it here:
blog.quarkslab.com/aosp_ota_sig...

A small bug in the signature verification of AOSP OTA packages

A signature verification bypass in a function that verifies the integrity of ZIP archives in the AOSP framework

blog.quarkslab.com

5 5

4Dgifts @4dgifts.bsky.social · Mar 28

PARA PARA PARA VOS ME ESTAS DICIENDO DE QUE PATRISSIA BULLREICH ES UNA ZURDA?

1

4Dgifts @4dgifts.bsky.social · Mar 27

beware of how this plays out..
as in "we cannot do it unless a backdoor is installed..." etc

The Associated Press @apnews.com · Mar 27

BREAKING: A federal judge says he will order government agencies to preserve Signal messages about a U.S. military strike against Yemen's Houthi rebels.

Judge says he will order government to preserve Signal messages about Houthi military strike

A federal judge says he will order the Trump administration to preserve records of a text message chat in which senior national security officials discussed sensitive details of plans for a U.S. military strike against Yemen’s Houthis.

bit.ly

4Dgifts @4dgifts.bsky.social · Mar 26

Agrego que cerraron estaciones d ela línea D durante 3 meses no de sabe para qué carajos. La frecuencia de trenes sigue siendo una mierda, esta llenos todo el tiempo y cada dos por tres se quedan parados varios minutos en los túneles.
Solo hicieron boludeces cosméticas

1

Reposted by 4Dgifts

Chrononaut @chrononaut.bsky.social · Mar 23

Pope Francis made a brief statement from the hospital balcony:

75 1.1K 8.1K

4Dgifts @4dgifts.bsky.social · Mar 17

Saw this on the other site but I should comment here:
Can't remember his hacker handle but I think Pad & Gandalf of 8lgm were arrested the same day in 1991.
You may not know it but the entire infosec & software industries owe 8lgm immense gratitude for making vendors accountable for their vulns

6 9

4Dgifts @4dgifts.bsky.social · Mar 17

ZOMG

4Dgifts @4dgifts.bsky.social · Mar 17

This is the new diplomacy?

Aaron Rupar @atrupar.com · Mar 17

Leavitt: "It's only because of the United States of America that the French aren't speaking German right now."

1

4Dgifts @4dgifts.bsky.social · Mar 17

Es una saga que lleva años. Previamente le cancelaron un subsidio por casi $900M USD por no cumplir con los requerimientos técnicos prometidos
www.fcc.gov/document/fcc...

FCC Reaffirms Decision to Reject Starlink Application for Nearly $900 Million in Subsidies

FCC reaffirmed WCB's prior decision to reject the long-form application of Starlink to receive public support through the RDOF program, based on the applicant's failure to meet the program requirement...

www.fcc.gov

1

Reposted by 4Dgifts

Katie Moussouris (she/her/she-hulk/she-ra)🌻 @k8em0.bsky.social · Mar 17

Excellent Zoolander reference by @wdormann.bsky.social in his video.

You know where to find us if you need help @msftsecresponse.bsky.social

🌺 @lutasecurity.bsky.social 🌺

The Register @theregister.com · Mar 17

Microsoft wouldn't look at a bug report without a video. Researcher maliciously complied

Maddening techno loop, Zoolander reference, and 14 minutes of time wasted A vulnerability analyst and prominent member of the infosec industry has blasted Microsoft for refusing to look at a bug report unless he submitted a video alongside a written…

dlvr.it

2 7 20