Three Buddy Problem

Ep8: Microsoft's zero-days and a wormable Windows TCP/IP flaw known to China

Aug 17, 2024

The discussion dives into Microsoft's troubling zero-day vulnerabilities, including a wormable TCP/IP flaw known to China for months. The hosts reflect on the challenges of Patch Tuesday and the issues surrounding naming conventions for cyber threats. They touch on the increasing cyber aggression from Iran targeting US elections, and dissect conflicting claims from major cybersecurity firms. The conversation also highlights the geopolitical implications of cyber activities and stresses the importance of clarity in vulnerability reporting.

01:17:45

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Microsoft's recent Patch Tuesday revealed multiple zero-day vulnerabilities, including a critical wormable flaw in IPv6 that raises security concerns.

The podcast addressed the exhaustion felt by cybersecurity professionals attending major conferences, highlighting a preference for quieter, more focused environments.

Geopolitical shifts, such as the Balkanization of technology, are affecting global cybersecurity dynamics, impacting how nations develop local alternatives to foreign products.

Deep dives

Reflections on Conference Attendance

After attending major cybersecurity conferences like Black Hat and Defcon, significant insights were gained regarding the overwhelming nature of these events. Both speakers expressed a sense of exhaustion and realization that spending time in their hotel rooms tracking conference activities was preferable to running around the chaotic venues. They noted how such conferences can sometimes feel soul-crushing and even hinted at a reluctance to return in the future. This candidness reveals a recurring sentiment among cybersecurity professionals that these events can often be more exhausting than enlightening.

Intro

2min

Insights from HitCon: Cybersecurity Lessons and Trends

3min

Navigating Cybersecurity Vulnerabilities

19min

Navigating Cybersecurity Complexities

22min

Frustrations with Cyber Threat Naming

10min

Dissecting Vulnerability Claims and Corporate Transparency

4min

Understanding Software Update Failures and Their Consequences

2min

Exploring the CHIHOO 360 Cybersecurity Report

2min

Tech Balkanization and Geopolitical Challenges

14min

Three Buddy Problem - Episode 8: This week’s show digs into Microsoft’s in-the-wild zero-day woes, Patch Tuesday and the absence of IOCs, a wormable Windows TCP/IP flaw that the Chinese government knew about for months, Iran’s aggressive hacking US election targets, CrowdStrike v Qihoo360 and major problems with APT naming conventions.

Hosts: Costin Raiu (Art of Noh), Juan Andres Guerrero-Saade (SentinelLabs), Ryan Naraine (SecurityWeek)

Links:

Episode 8 Transcript
Six Windows Zero-Days Being Actively Exploited
CVE-2024-38063 - Windows Ping of Death
Wormable TCP/IP flaw known to China — Chinese researcher Xiao Wei of Cyber KunLun said he discovered the vulnerability “several months ago.”
Google TAG: Iran steps hacking against Israel, U.S.
Microsoft report on Iran election hacking
Qihoo claims CrowdStrike bug exploitable
CrowdStrike root cause analysis
LABScon - Speakers 2024

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Three Buddy Problem

Ep8: Microsoft's zero-days and a wormable Windows TCP/IP flaw known to China

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Reflections on Conference Attendance

Insights on Upcoming Speaking Engagements

Reactions to LabSCON Speaker List Release

Concerns Over Recent Vulnerabilities

The Balkanization of Technology

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Three Buddy Problem

Ep8: Microsoft's zero-days and a wormable Windows TCP/IP flaw known to China

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Reflections on Conference Attendance

Insights on Upcoming Speaking Engagements

Reactions to LabSCON Speaker List Release

Concerns Over Recent Vulnerabilities

The Balkanization of Technology

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights