SocksEscort utilized malware, identified as AVrecon, to infect home and small business routers, including devices from brands like Cisco, D-Link, and Netgear.
In the security news this week: The XZ backdoor documentary, Zero days - the clock isn't ticking, Vulnerability Mis-Management, Reversing traffic light controllers, Reversing with Claude, Don't curl to bash!, Reading CVEs makes my head hurt, Dumping browser secrets, I open-sourced a new(ish) tool, D-LINK exploits, There is no password, I control th...
KadNap operates as a peer-to-peer network, utilizing a custom version of the Kademlia Distributed Hash Table (DHT) protocol to communicate with its command-and-control (C2) infrastructure.
Medical devices are a special segment of the IoT world where availability and patient safety are paramount. Tamil Mathi explains why many devices need to fail open -- the opposite of what traditional appsec approaches might initially think -- and what makes threat modeling these devices interesting and unique. He also covers how to get started in t...
