Breaking barriers, one byte at a time. [Research Saturday]
CyberWire Daily29 Mar 2025

Breaking barriers, one byte at a time. [Research Saturday]

This week, we are joined by Jon Williams, Vulnerability Researcher from Bishop Fox, discussing "Tearing Down (Sonic)Walls: Decrypting SonicOSX Firmware." Bishop Fox researchers reverse-engineered the encryption protecting SonicWall SonicOSX firmware, enabling them to access its underlying file system for security research. They presented their process and findings at DistrictCon Year 0 and released a tool called Sonicrack to extract keys from VMware virtual machine bundles, facilitating the decryption of VMware NSv firmware images. This research builds upon previous work, including techniques to decrypt static NSv images and reverse-engineer other encryption formats used by SonicWall. The research can be found here: Tearing Down (Sonic)Walls: Decrypting SonicOSX Firmware Learn more about your ad choices. Visit megaphone.fm/adchoices

Denne episoden er hentet fra en åpen RSS-feed og er ikke publisert av Podme. Den kan derfor inneholde annonser.

Episoder(3661)

The fable ends before it begins.

The fable ends before it begins.

Anthropic pulls Fable 5. OpenAI faces a multistate probe. Handala targets a California water utility. ShinyHunters claims another victim. The FBI and Google take down a major phishing platform. The la...

15 Jun 29min

Securing satellites already in space, with journalist Shaun Waterman. [T-Minus: Space-Cyber Briefing]

Securing satellites already in space, with journalist Shaun Waterman. [T-Minus: Space-Cyber Briefing]

For years, space cybersecurity has been a long sought after goal, but due to operational constraints, it was largely unfeasible. In this week’s episode, host Maria Varmazis sits down with journalist ...

14 Jun 22min

Vulnerability management at AI speed. [CyberWire-X]

Vulnerability management at AI speed. [CyberWire-X]

In large enterprise software companies, vulnerability management teams are facing unprecedented speed and scale as AI accelerates both discovery and exploitation of security issues. In this episode of...

14 Jun 24min

This Sparrow doesn't migrate. [Research Saturday]

This Sparrow doesn't migrate. [Research Saturday]

Martin Zugec, Technical Solutions Director at Bitdefender, discussing their work on "FamousSparrow APT Targets Azerbaijani Oil and Gas Industry." Bitdefender researchers uncovered a sustained cyber e...

13 Jun 22min

Deadline-driven defense.

Deadline-driven defense.

CISA directs agencies to “patch smarter, not harder.” The House fails to extend FISA. Europol pulls over AudiA6. GitHub announces npm security updates. Anthropic rejects Fable 5 jailbreak claims. CISA...

12 Jun 28min

The court calls Google’s bluff.

The court calls Google’s bluff.

Google faces liability for AI-generated claims. Washington pauses public AI model assessments. Anthropic ships a safer AI model. OpenAI disrupts influence operations. Ransomware operators get a powerf...

11 Jun 31min

The patch pile reaches new heights.

The patch pile reaches new heights.

Patch Tuesday goes big. Congress looks to harden critical infrastructure. A new Windows zero-day drops. Mobile AI creates security blind spots. AI agents fall for phishing. Browser extensions expose m...

10 Jun 32min

A checkmark for trust, a payload for theft.

A checkmark for trust, a payload for theft.

Miasma malware meddles with Microsoft. SAP fixes critical flaws, Google patches an exploited Chrome zero-day, CanisterWorm spreads through npm, Mac users face a new malvertising threat, France investi...

9 Jun 26min

Populært innen Politikk og nyheter

giver-og-gjengen-vg
aftenpodden
aftenpodden-usa
fotballpodden-2
forklart
popradet
stopp-verden
det-store-bildet
rss-espen-lee-usensurert
nokon-ma-ga
lydartikler-fra-aftenposten
dine-penger-pengeradet
rss-gukild-johaug
hanna-de-heldige
rss-ness
e24-podden
aftenbla-bla
frokostshowet-pa-p5
rss-utenrikskomiteen-med-bogen-og-grasvik
chit-chat-med-helle