Paul’s Security Weekly (Video)
Technology
Sonar Vulnerability Researchers Thomas Chauchefoin and Paul Gerste conducted research on the security of Visual Studio Code — the most popular code editor out there — which was presented at DEF CON 31 in August. The pair uncovered a few ways for attackers to gain code execution on a victim's computer if they clicked on a specially crafted link or opened a malicious folder in Visual Studio Code, bypassing existing mitigations like Workspace Trust. Developers tend to trust their IDEs and do not expect such security issues to exist. As developers have access to source code and production systems, they make for very interesting targets for threat actors. Important to note is that the security concepts that the two are able to demonstrate apply not just to Visual Studio Code, but to most other code editors. This is also the story of how the researchers got an unexpected $30,000 bounty from Microsoft for these bugs, by mistake!
Segment Resources:
BLOG POSTS Securing Developer Tools: Argument Injection in Visual Studio Code (https://www.sonarsource.com/blog/securing-developer-tools-argument-injection-in-vscode/) Securing Developer Tools: Git Integrations (https://www.sonarsource.com/blog/securing-developer-tools-git-integrations/)
CVEs CVE-2023-36742 (https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36742) CVE-2022-30129 (https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2022-30129) CVE-2021-43891 (https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2021-43891)
Show Notes: https://securityweekly.com/psw-804
Cryptography Collecting & Japanese Typewriters - Marcus Sachs - PSW #738
Security Blind Spots: Are You Protected? - Michael Aminov - PSW #738
Grasping Logitech Lift, Lenovo Malware, CISA Warns of Print Spooler, & 0-Day Holes - PSW #737
The Law, War Crimes, & the Foreign Legion - Capt. John Alfred, Thomas Lonardo - PSW #737
The Development of Cyber Crime Fighting Units - Capt. John Alfred - PSW #737
Bullseye OS, Unicode Mystery, 'Bearded Barbie' CatPhishing, & NginxDay - PSW #736
Amanda Berlin - PSW #736
Third Party Risk Research - Mike Wilkes - PSW #736
Teen Hackers, WTF Apple, Finding iPhones, & Getting Wise to Wyze - PSW #735
Hacking Kubernetes - Jay Beale - PSW #735
Identity Security Challenges - Active Directory, Azure AD, & Okta Oh My! - Sean Metcalf - PSW #735
Teenage Masterminds, Hacking Civics, Journalists Sued, UPS Attacks, & Spyware - PSW #734
Training the Next Gen of Cybersecurity Experts to Protect K-12 Schools - Hanine Salem - PSW #734
State of the SOC - Mark Boltz-Robinson - PSW #734
TrevorC2 - David Kennedy - PSW #733
Baby Food, Lapsus$, Anonymous Vs. Printers, UEFI Rabbit Holes, & Browser-In-Browser - PSW #733
Managing Shadow Code & the Blind Side in 3rd Party Risk - Stephen Ward - PSW #733
Ransomware Inc, Cracking Keys With Fermat, Neon Output, & Samsung Source Code - PSW #732
Making Cyber Accessible to Everyone - Lawrence Nunn, Ricky Tan - PSW #732
From Hacker Jeopardy to CISO Tradecraft - G Mark Hardy - PSW #732
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Acquired