Paul’s Security Weekly (Video)
Technology
Sonar Vulnerability Researchers Thomas Chauchefoin and Paul Gerste conducted research on the security of Visual Studio Code — the most popular code editor out there — which was presented at DEF CON 31 in August. The pair uncovered a few ways for attackers to gain code execution on a victim's computer if they clicked on a specially crafted link or opened a malicious folder in Visual Studio Code, bypassing existing mitigations like Workspace Trust. Developers tend to trust their IDEs and do not expect such security issues to exist. As developers have access to source code and production systems, they make for very interesting targets for threat actors. Important to note is that the security concepts that the two are able to demonstrate apply not just to Visual Studio Code, but to most other code editors. This is also the story of how the researchers got an unexpected $30,000 bounty from Microsoft for these bugs, by mistake!
Segment Resources:
BLOG POSTS Securing Developer Tools: Argument Injection in Visual Studio Code (https://www.sonarsource.com/blog/securing-developer-tools-argument-injection-in-vscode/) Securing Developer Tools: Git Integrations (https://www.sonarsource.com/blog/securing-developer-tools-git-integrations/)
CVEs CVE-2023-36742 (https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36742) CVE-2022-30129 (https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2022-30129) CVE-2021-43891 (https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2021-43891)
Show Notes: https://securityweekly.com/psw-804
Cracks in the Castle - Jimmy Sanders - PSW #725
REvil Gang Arrested, 5G & Airplanes, Zoom Zero-Click, & Stolen Brownies - PSW #724
Using WPScan To Find WordPress Vulnerabilities - PSW #724
Cyber Resilience - Cybersecurity Mental Health - Neal O'Farrell - PSW #724
Mailing USBs, DoS in DoorLock, Moxie Resigns, QR Code Mystery, & Jarring Revelations - PSW #723
CanSecWest, PacSec, & PWN2OWN - Dragos Ruiu - PSW #723
Log4j Exploit Step-By-Step - PSW #723
Zip Tie Pick, Wifi/Bluetooth Bugs, Domain Controllers, & Beetle Behavior - PSW #722
The State Of Internet Exposed Services - John Matherly - PSW #722
Lock Picking & Physical Security - Deviant Ollam - PSW #722
Printing Shellz, Block Chain For C2, Wordpress Theft, & Log4j Who? - PSW #721
What to Expect in 2022 - Sinan Eren - PSW #721
All Your Holiday Hack Challenge Belong To Us - Ed Skoudis - PSW #721
The 2021 Security Landscape & What Lies Ahead - Shailesh Athalye - PSW #720
Authentication Vulnerabilities - PSW #720
Bypassing Biometrics, Hiding in Plain Sight, Hacker Cinema, & High Aspirations - PSW #720
Suing Satoshi, Trojans in IDA, FBI Spam, Beg Bounties, & UPNP Strikes Again - PSW #719
Skill Building: CTFs & Computer Fundamentals - Derek Rook - PSW #719
Building Vulnerable Docker Containers (On Purpose) - PSW #719
TIPC Kernel Vulns, SBDCs, Truckloads of GPUs, & Hardcoded SSH Keys - PSW #718
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Acquired