Experimental News Clipping Site

Tag: binaries

  • Unit 42: Squidoor: Suspected Chinese Threat Actor’s Backdoor Targets Global Organizations

    by

    Kurt Seifried
    in

    Source URL: https://unit42.paloaltonetworks.com/?p=138415 Source: Unit 42 Title: Squidoor: Suspected Chinese Threat Actor’s Backdoor Targets Global Organizations Feedly Summary: We analyze the backdoor Squidoor, used by a suspected Chinese threat actor to steal sensitive information. This multi-platform backdoor is built for stealth. The post Squidoor: Suspected Chinese Threat Actor’s Backdoor Targets Global Organizations appeared first on…

  • Unit 42: RustDoor and Koi Stealer for macOS Used by North Korea-Linked Threat Actor to Target the Cryptocurrency Sector

    by

    Kurt Seifried
    in

    Source URL: https://unit42.paloaltonetworks.com/?p=138378 Source: Unit 42 Title: RustDoor and Koi Stealer for macOS Used by North Korea-Linked Threat Actor to Target the Cryptocurrency Sector Feedly Summary: Koi Stealer and RustDoor malware were used in a campaign linked to North Korea. This activity targeted crypto wallet owners. The post RustDoor and Koi Stealer for macOS Used…

  • Anchore: How Syft Scans Software to Generate SBOMs

    by

    Kurt Seifried
    in

    Source URL: https://anchore.com/blog/how-syft-scans-software-to-generate-sboms/ Source: Anchore Title: How Syft Scans Software to Generate SBOMs Feedly Summary: Syft is an open source CLI tool and Go library that generates a Software Bill of Materials (SBOM) from source code, container images and packaged binaries. It is a foundational building block for various use-cases: from vulnerability scanning with tools…

  • Bulletins: Vulnerability Summary for the Week of January 27, 2025

    by

    Kurt Seifried
    in

    Source URL: https://www.cisa.gov/news-events/bulletins/sb25-034 Source: Bulletins Title: Vulnerability Summary for the Week of January 27, 2025 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info 0xPolygonZero–plonky2  Plonky2 is a SNARK implementation based on techniques from PLONK and FRI. Lookup tables, whose length is not divisible by 26 = floor(num_routed_wires / 3) always…

  • Hacker News: ScatterBrain: Unmasking the Shadow of PoisonPlug’s Obfuscator

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/scatterbrain-unmasking-poisonplug-obfuscator Source: Hacker News Title: ScatterBrain: Unmasking the Shadow of PoisonPlug’s Obfuscator Feedly Summary: Comments AI Summary and Description: Yes **Summary**: The text provides a comprehensive analysis of the ScatterBrain obfuscating compiler, a sophisticated tool used in cyber espionage by China-nexus actors, particularly with the POISONPLUG.SHADOW malware. It highlights the advanced obfuscation techniques…

  • Cloud Blog: ScatterBrain: Unmasking the Shadow of PoisonPlug’s Obfuscator

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/scatterbrain-unmasking-poisonplug-obfuscator/ Source: Cloud Blog Title: ScatterBrain: Unmasking the Shadow of PoisonPlug’s Obfuscator Feedly Summary: Written by: Nino Isakovic Introduction Since 2022, Google Threat Intelligence Group (GTIG) has been tracking multiple cyber espionage operations conducted by China-nexus actors utilizing POISONPLUG.SHADOW. These operations employ a custom obfuscating compiler that we refer to as “ScatterBrain," facilitating…

  • Slashdot: Google Upgrades Open Source Vulnerability Scanning Tool with SCA Scanning Library

    by

    Kurt Seifried
    in

    Source URL: https://news.slashdot.org/story/25/01/19/0547233/google-upgrades-open-source-vulnerability-scanning-tool-with-sca-scanning-library Source: Slashdot Title: Google Upgrades Open Source Vulnerability Scanning Tool with SCA Scanning Library Feedly Summary: AI Summary and Description: Yes Summary: Google has enhanced its vulnerability scanning capabilities through the introduction of OSV-Scanner and OSV-SCALIBR. These tools not only facilitate comprehensive scanning across various programming languages and environments but also integrate…

  • Google Online Security Blog: OSV-SCALIBR: A library for Software Composition Analysis

    by

    Kurt Seifried
    in

    Source URL: https://security.googleblog.com/2025/01/osv-scalibr-library-for-software.html Source: Google Online Security Blog Title: OSV-SCALIBR: A library for Software Composition Analysis Feedly Summary: AI Summary and Description: Yes Summary: The article discusses the launch of OSV-SCALIBR, an extensible library for software composition analysis (SCA) and file system scanning. It highlights its capabilities, including vulnerability scanning and Software Bill of Materials…

  • Hacker News: Why it’s hard to trust software, but you mostly have to anyway

    by

    system automation
    in

    Source URL: https://educatedguesswork.org/posts/ensuring-software-provenance/ Source: Hacker News Title: Why it’s hard to trust software, but you mostly have to anyway Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the inherent challenges of trusting software, particularly in the context of software supply chains, vendor trust, and the complexities involved in verifying the integrity…