Apple Chip Flaw Leaks Encryption Keys! (UNPATCHABLE?!) | Technado Ep. 353

Описание к видео Apple Chip Flaw Leaks Encryption Keys! (UNPATCHABLE?!) | Technado Ep. 353

This week on Technado, Daniel and Sophie kick off Rapid Fire with some highlights from Pwn2Own Vancouver. Then, we jump into a novel cred-harvesting phishing campaign, CozyBear's latest attack on German politicos, and a special Pork Chop Sandwiches segment: millions of hotel door locks are impacted by a 36-year-old flaw. We wrap up the Rapid Fire with the Nemesis Market takedown, yet another update on CISA's Ivanti troubles, and the "unpatchable" exploit affecting Apple M-series chips.

In another Python-focused Deep Dive, Daniel takes us through a supply chain cyberattack that's impacting thousands of GitHub users and developers. To close the segment, we take a quick look at a new Loop DoS attack that targets app-layer protocols.

00:00 - Intro
04:36 - Rapid Fire Start
04:48 - Pwn2Own 2024 Results
11:40 - Conversation Overflow Attack
15:27 - Cozy Bear APT Phishing Germans Politicos
19:52 - Flaw Allows Hackers Unlock Hotel Doors
24:48 - Germans Takedown Darknet Market
26:50 - Another Ivanti Critical Flaw
31:15 - Vulnerability In Apple M-Series Chips
36:11 - Deep Dive: PyPi Supply-Chain Attack
58:35 - Deep Dive: LoopDoS
1:05:52 - Extras and Final Thoughts

Want to keep reading? Check out the articles the Technado crew covered this week!

Rapid Fire:

Pwn2Own https://www.zerodayinitiative.com/blo...
Conversation Overflow Attack https://www.darkreading.com/cloud-sec...
CozyBear Phishing for Dinner https://www.theregister.com/2024/03/2...
Unsaflok Flaw https://www.bleepingcomputer.com/news...
Nemesis Takedown https://www.bitdefender.com/blog/hotf...
CISA Ivanti Notice https://www.crn.com/news/security/202...
Apple M-Series Vulnerability https://www.itpro.com/security/a-vuln...

Deep Dive:

GitHub Python Supply Chain Attack https://checkmarx.com/blog/over-170k-...
Loop DoS Summary https://cispa.de/en/loop-dos
Loop DoS Advisory https://cispa.saarland/group/rossow/L...

Комментарии

Информация по комментариям в разработке