Hijacking .gov backdoors, Ivanti 0days and a Samsung 0-click vuln

11 snips

Jan 10, 2025

The podcast dives into the troubling rise of Ivanti zero-day vulnerabilities, highlighting their constant exploitation. China's unusual reactions to cyber attribution are explored, alongside Japan's concerns over hacking incidents. The hosts discuss a shocking zero-click vulnerability found in Samsung devices, and the intense cyber warfare between Ukrainian hackers and Russian ISPs. They also touch on the implications of advanced technologies like quantum computing and the resilience of the cybersecurity community in facing these challenges.

Ask episode

AI Snips

Chapters

Transcript

Episode notes

ADVICE

Network Appliance Security

Redirect syslogs from network appliances to a central server for analysis.
Use tools like Wazuh to monitor for unusual activity.

INSIGHT

Ivanti's Flawed Integrity Checker

Ivanti's integrity checker tool has a design flaw. Attackers can easily bypass it by recalculating and inserting the hash of modified files.

ANECDOTE

Ivanti's Unfulfilled Promises

Ivanti's CEO released a hostage video nine months ago, promising to improve security. However, there's been little demonstrable change.

Get the Snipd Podcast app to discover more snips from this episode

Get the app