news/recent exploits
hardware
- breaking into a laptop protected by bitlocker
- the hotel room hacker
- rowhammer - hammering hardware with enough operations that the electricity overflows and flips the bit on a nearby row and changes a bit
software
- a dive into the world of dos viruses
- android trojan steals money from paypal accounts
- breaking the virtual memory abstraction with transient out-of-order execution
- buffer overflow in an unmaintained school project that received a cve
- collection of side channel attacks
- dirty sock - linux privilege escalation exploit via snapd (cve-2019-7304)
- how to get root on ubuntu 20.04 by pretending nobody's /home
- magecart - stealing information through card-skimming
- one click rce on telegram
- portsmash
- public ssh keys leaking private infra
- recovering a full pem private key when half is redacted
- roca (return of coppersmith's attack)
- sim exploit
- ssrf against aws interactive tutorial
- trojan source attacks - rather than inserting logical bugs, adversaries can attack the encoding of source code files to inject vulnerabilities.
- virtualbox escape 0-day