World's first #CPU-level #ransomware can "bypass every freaking traditional technology we have out there" — new #firmware-based attacks could usher in new era of unavoidable ransomware
Beek, #Rapid7's senior director of threat analytics, revealed AMD Zen chip bug gave him idea that highly skilled attacker could in theory "allow those intruders to load unapproved #microcode into the processors, breaking encryption at the hardware level and modifying CPU behavior at will."
https://www.tomshardware.com/pc-components/cpus/worlds-first-cpu-level-ransomware-can-bypass-every-freaking-traditional-technology-we-have-out-there-new-firmware-based-attacks-could-usher-in-new-era-of-unavoidable-ransomware

New #Rapid7 vuln disclosure c/o @stephenfewer: CVE-2025-1094 is a SQL injection flaw in PostgreSQL's psql interactive tool that was discovered while analyzing BeyondTrust RS CVE-2024-12356. The bug is interesting — on its relation to BeyondTrust exploitation https://www.rapid7.com/blog/post/2025/02/13/cve-2025-1094-postgresql-psql-sql-injection-fixed/

CUPS vulnerabilities affecting Linux, Unix systems can lead to RCE https://www.helpnetsecurity.com/2024/09/27/cups-vulnerabilities/ #vulnerability #Don'tmiss #Hotstuff #Tenable #Rapid7 #RedHat #Linux #News #CVE #PoC

Rapid7 to lay off 18% of its workforce

Cuts come despite 14% revenue rise

https://www.computing.co.uk/news/4121970/rapid7-lay-workforce

We lost a bunch of really great folks at #Rapid7 today — but our loss can and absolutely SHOULD be your gain. If you are hiring, hire these people. They are smart, they are dedicated, they are with very few exceptions unfailingly kind and always working to make the industry better. They don't talk shit, they get shit done. That's pretty rare in this industry.

The snide comments I've seen here and there do a disservice to a lot of supremely talented, genuinely good-hearted people in a tough spot. Please don't listen to folks who are intent on spreading negativity — help good folks who are in need, and not-so-incidentally will be great for your business! <3

Latest issue of my curated #cybersecurity and #infosec list of resources for week #31/2023 is out! It includes the following and much more:

➝ Researchers Uncover New High-Severity #Vulnerability in #PaperCut Software
➝ #Israel cybersecurity agency says no breach after senior official self-infects home PC with #malware
➝ CISA’s strategic plan adheres to overall Biden administration direction on cybersecurity
➝ Top 12 vulnerabilities list highlights troubling reality: many organizations still aren’t #patching
➝ Hacking tool #FlipperZero tracked by intelligence agencies, which fear white nationalists may deploy it against power grid
➝ Hundreds of #Citrix NetScaler ADC and Gateway Servers Hacked in Major Cyber Attack
➝ ️ Researchers jailbreak a #Tesla to get free in-car feature upgrades
➝ Industrial Control Systems Vulnerabilities Soar: Over One-Third Unpatched in 2023
➝ Russian hackers target govt orgs in #Microsoft Teams #phishing attacks
➝ #Rapid7 found a bypass for the recently patched actively exploited #Ivanti EPMM bug
➝ #Tenable CEO accuses Microsoft of negligence in addressing security flaw
➝ Hackers exploited #Salesforce zero-day in #Facebook phishing attack
➝ US internet hosting company appears to facilitate global #cybercrime, researchers say
➝ #China's #APT31 Suspected in Attacks on Air-Gapped Systems in Eastern Europe
➝ Schools Are Now the Leading Target for Cyber Gangs as Ransom Payments Encourage Attacks
➝ Possible Chinese Malware in US Systems - a ‘Ticking Time Bomb’
➝ Cybercriminals Renting #WikiLoader to Target Italian Organizations with Banking Trojan
➝ Microsoft downplays damaging report on Chinese hacking its own engineers vetted
➝ #Jordan adopts cybercrime law seen as threat to #freespeech
➝ Hacker Claims to Have Stolen Sensitive Medical Records from #Egypt's Ministry of Health
➝ #BankCard USA surrenders and pays #ransom

This week's recommended reading is: "Art of Software Security Assessment, The: Identifying and Preventing Software Vulnerabilities" by Mark Dowd, John McDonald, and Justin Schuh

Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end

https://infosec-mashup.santolaria.net/p/infosec-mashup-week-312023

We just published our detailed analysis of CVE-2023-2868 (#cve20232868 / #cve_2023_2868), a shell command injection vulnerability in the #Barracuda Secure Email Gateway appliance, including a proof of concept. Big props to @cfield for putting all this together!

#infosec #vulnerability #exploit #PoC #rapid7

https://attackerkb.com/topics/2Z0CWopGPX/cve-2023-2868/rapid7-analysis

Haven't tried putting out the #hiring bat signal (mammoth signal?) on the fediverse yet, so here goes!

I'm #HiringNow for a Senior #ContentDesigner or #UXWriter for our Security Orchestration, Automation & Response (#SOAR) at #Rapid7 in Boston, MA.

Bring together our customers' needs with expert guidance and confident point of view to help stitch our products and platform together with words.

And find joy in the process with a wonderful, kind, and supportive team.

https://careers.rapid7.com/jobs/senior-content-designer-boston-ma-united-states

#Twitter #whistleblower #PeiterZatko lands new gig at #Rapid7
#Mudge is long way from password crackers for Windows NT for former #L0pht legend https://bit.ly/3ZebYJ3