Paul’s Security Weekly (Video)
Technology
Sonar Vulnerability Researchers Thomas Chauchefoin and Paul Gerste conducted research on the security of Visual Studio Code — the most popular code editor out there — which was presented at DEF CON 31 in August. The pair uncovered a few ways for attackers to gain code execution on a victim's computer if they clicked on a specially crafted link or opened a malicious folder in Visual Studio Code, bypassing existing mitigations like Workspace Trust. Developers tend to trust their IDEs and do not expect such security issues to exist. As developers have access to source code and production systems, they make for very interesting targets for threat actors. Important to note is that the security concepts that the two are able to demonstrate apply not just to Visual Studio Code, but to most other code editors. This is also the story of how the researchers got an unexpected $30,000 bounty from Microsoft for these bugs, by mistake!
Segment Resources:
BLOG POSTS Securing Developer Tools: Argument Injection in Visual Studio Code (https://www.sonarsource.com/blog/securing-developer-tools-argument-injection-in-vscode/) Securing Developer Tools: Git Integrations (https://www.sonarsource.com/blog/securing-developer-tools-git-integrations/)
CVEs CVE-2023-36742 (https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36742) CVE-2022-30129 (https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2022-30129) CVE-2021-43891 (https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2021-43891)
Show Notes: https://securityweekly.com/psw-804
No Pr0nHub 4 U, HTTP Lock Status, Selling Hacking Tools, & Chrome Drops HTTP Lock - PSW #783
Pen Testing Techniques and Jurassic Malware - Rob Fuller - PSW #783
Hack All The Things With Flipper Zero - Kaitlyn Handelman - PSW #782
SSD AI/ML, Salsa for your Software, Hacking Smart TVs with IR, & Getting Papercuts - PSW #782
Under the Weather (Taxonomy?), Beating Roulette, Monitoring Macs, & XBMC Glory Days - PSW #781
Supply Chain Security - Ivan Arce - PSW #781
Stolen Cred Bizarre, US CyberSec, Stealing Cars With Headlights, & AI Censorship - PSW #780
Social Engineering & Conquering Impostor Syndrome - Billy Boatright - PSW #780
Rorschach, QNAP, We Got Hacked, SystemD, UTF-8, & Grub2 Music - PSW #779
Cybersecurity Workforce Development - Sin Ming Loo - PSW #779
The RESTRICT Act, Intel's Attack Surface, & Stop Developing AI (For 6 Months) - PSW #778
Firmware Hacking! Reversing and Exploitation - Philippe Laulheret - PSW #778
7" Laptop, Trojans in Chips, Samsung's Faux Moon, & The 4 C's - PSW #777
Vulnerability Research (& Other "Things") - Nico Waisman - PSW #777
How to Steal a Tesla, AI On Your Pi, Linux Desktop: Future, & SOCKS5 Your Burp - PSW #776
Everything's Valid in Code & War: Attacks on the Software Supply Chain - Santiago Torres Arias - PSW #776
Hidden Buttons, Dumb Password Rules, BLE Relay Attack, & Stealthy UEFI - PSW #775
Ask Our PSW Hosts Anything! - PSW #775
ChatGPT Articles, What the Zimbra, Burp Plugins, & Vocal Passports - PSW #774
Phishing Attack & Defense - Asaf Cidon - PSW #774
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Darknet Diaries