Rambo and Pixhell anti-airgap attacks. Big update for the Flipper Zero. Fortinet breached.  

News

Hi friends,

I hope you're all doing well. I'm on another round of courses, so busy-busy, fortunately it's all wonderfully interesting. Still, that weekend sure looks good on the horizon ;-) Enjoy your own weekend, and enjoy the read. Cheers!

Dieter

New RAMBO attack steals data using RAM in air-gapped computers

As with all side-channel attacks like this, I highly doubt it's practical to use in real situations. But it is always interesting to see what people have come up with :-) This attack, dubbed "RAMBO", for "Radiation of Air-gapped Memory Bus for Offense", sends out information by switching parts of the RAM on and off in a sort of binary pattern, which causes spikes in the radio frequency range that someone else can receive, hence jumping the air gap.

bleepingcomputer.com

New PIXHELL acoustic attack leaks secrets from LCD screen noise

And staying on the topic of airgap jumping attacks, this attack introduces noise in LCD screen pixels that transmit data in the 0-22kHz range.

bleepingcomputer.com

Flipper Zero releases Firmware 1.0 after three years of development

There's a whole range of impressive improvements, like an app catalog where you can install community-developed apps and an increase in stand-by time from one week to one month. I should really, finally, get me one of these.

bleepingcomputer.com

Bypassing Microsoft Store licenses with Keyhole

Well written write-up of how someone bypassed the whole Windows and Microsoft Store DRM mechanism.

massgrave.dev

Quick stories

  • Microsoft to start force-upgrading Windows 22H2 systems next month: link.
  • WordPress.org to require 2FA for plugin developers by October: link.
  • Poland dismantles cyber sabotage group linked to Russia, Belarus: link.
  • UK National Crime Agency, responsible for fighting cybercrime, ‘on its knees,’ warns report: link.
  • FBI: Reported cryptocurrency losses reached $5.6 billion in 2023: link.

Breaches and leaks

  • Fortinet confirms data breach after hacker claims to steal 440GB of files: link.
  • Hospital system to pay $65 million for data leak, including images of nude patients: link.
  • Car rental giant Avis data breach impacts over 299,000 customers: link.
  • Transport for London staff faces systems disruptions after cyberattack: link.
  • Payment gateway data breach affects 1.7 million credit card owners: link.
  • Highline Public Schools closes schools following cyberattack: link.
  • Popular French retailers confirm hackers stole customer data: link.
  • Japanese media giant Kadokawa investigating another reported data leak by BlackSuit hackers: link.
  • Washington state school district closed for second day after cyberattack: link.

Issues and fixes

  • Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws: link.
  • Ivanti fixes maximum severity RCE bug in Endpoint Management software: link.
  • Adobe fixes Acrobat Reader zero-day with public PoC exploit: link.
  • GitLab warns of critical pipeline execution vulnerability: link.
  • SonicWall SSLVPN access control flaw is now exploited in attacks: link.
  • Progress LoadMaster vulnerable to 10/10 severity RCE flaw: link.
  • Meta fixes easily bypassed WhatsApp ‘View Once’ privacy feature: link.

What 1Password can do for developers

If you're an engineer, it's really worth checking out 1Password's developer tools. It can manage secrets for your infrastructure and CI/CD pipeline, manage SSH keys, and inject tokens into CLI scripts. Play around with it and see how it can fit in your development flow. (Sponsored)

1password.com

No spam, ever. We'll never share your email address and you can opt out at any time.