Paul’s Security Weekly (Video)
Technology
Sonar Vulnerability Researchers Thomas Chauchefoin and Paul Gerste conducted research on the security of Visual Studio Code — the most popular code editor out there — which was presented at DEF CON 31 in August. The pair uncovered a few ways for attackers to gain code execution on a victim's computer if they clicked on a specially crafted link or opened a malicious folder in Visual Studio Code, bypassing existing mitigations like Workspace Trust. Developers tend to trust their IDEs and do not expect such security issues to exist. As developers have access to source code and production systems, they make for very interesting targets for threat actors. Important to note is that the security concepts that the two are able to demonstrate apply not just to Visual Studio Code, but to most other code editors. This is also the story of how the researchers got an unexpected $30,000 bounty from Microsoft for these bugs, by mistake!
Segment Resources:
BLOG POSTS Securing Developer Tools: Argument Injection in Visual Studio Code (https://www.sonarsource.com/blog/securing-developer-tools-argument-injection-in-vscode/) Securing Developer Tools: Git Integrations (https://www.sonarsource.com/blog/securing-developer-tools-git-integrations/)
CVEs CVE-2023-36742 (https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36742) CVE-2022-30129 (https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2022-30129) CVE-2021-43891 (https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2021-43891)
Show Notes: https://securityweekly.com/psw-804
Incident Response Readiness - Gerard Johansen - PSW #794
Super Admins, Ancient Language Codes, Great Leakage, & Mirai Vs. Tomcat - PSW #793
Incident Response Stories - Bill Swearingen - PSW #793
Flipper Zeroes, The "Kia Boys", RFID Tags for Amazon, & PCI Wizardry - PSW #792
Post-Breach: The Hardening Continues - Sean Metcalf - PSW #792
Security Certification - Rohit Misuriya, Sumit Siddharth - PSW #791
Lost Keys, LOL Drivers, Nintendo Helps FBI, Mali Mail, & Our Rap Names - PSW #791
It's Alive!, Slow Migrations, Hiding on the Net, BlackLotus Source, & Gaslighting - PSW #790
Getting Control Of Your Security Data Pipeline - JP Bourget - PSW #790
Thoughts From A Security Legend - Dan Geer - PSW Vault
Melting Neighbors, SBOMs, DIY 2FA - PSW #789
Pen Testing & Adversary Emulation - Carlos Perez - PSW #789
Cyber Directors (& Tsars!), Replace Your Hardware, Drink For PCI, & Handheld Gaming - PSW #788
Penetration Testing - Emilie St-Pierre - PSW #788
Interview with Bill Cheswick - PSW VAULT
L0pht Heavy Industries Panel - PSW Vault
Plain Text Keystrokes, WPBT, One Packet Exploits, & Sock Puppets! - PSW #787
Spotlight on Penetration Testers - Vlad Gostomelsky - PSW #787
Post-Exploit, Vocal Passports, Will it Run DOOM!?!, & Coldplay Lyrics in Firmware - PSW #786
Generative AI Security Implications, Protecting Web Applications - Liam Mayron - PSW #786
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Acquired