Aggregator
Akamai’s Perspective on September’s Patch Tuesday 2024
Announcing the 11th Annual Flare-On Challenge
Written by: Nick Harbour
When it's pumpkin spice season, that means it's also Flare-On Challenge season. The Flare-On Challenge is a reverse engineering contest held every year by the FLARE team, and this marks its eleventh year running. It draws thousands of players from around the world every year, and is the foremost single-player CTF-style challenge for current and aspiring reverse engineers. It provides individual players with a gauntlet of increasingly challenging puzzles to test their ability, and earn a position in our hall of fame. Veteran competitors who have been following the live countdown over at flare-on.com may have already marked their calendar for the contest launch at 8:00pm ET on Sept. 27th, 2024. It will run for six weeks, ending at 8:00pm ET on Nov. 8th, 2024.
The Flare-On contest always features a diverse array of architectures, but with a strong representation of Windows binaries. This year’s contest may be the most diverse ever, with 10 challenges covering architectures including Windows, Linux, JavaScript, .NET, YARA, UEFI, Verilog, and Web3. Yes, you read that correctly, there is a YARA challenge this year. The challenges are often designed to represent Reverse Engineering challenges the FLARE team has encountered on the frontlines of cybersecurity.
If you successfully crush all 10 challenges you will be eligible to receive a prize, which will be revealed later. This crucial bit of gear will distinguish you from your colleagues who have not mastered the arcane art of Reverse Engineering, and will thus be an object of their envy. Your name or handle, should you choose to be included, will be permanently etched into the Hall of Fame on the Flare-On website.
Please check the Flare-On website for the live countdown and, upon launch, the link to the game server. Early account registration will open approximately two days before launch. While you’re there, check out last year’s challenges and official solutions to prepare yourself. For official news and information, we will be using the Twitter/X hashtag #flareon11.
Malicious Actors Spreading False US Voter Registration Breach Claims
Hardware Supply Chain Threats Can Undermine Endpoint Infrastructure
CVE-2024-46049 | Tenda O6 1.0.0.7(2054) /goform/exeCommand formexeCommand cmdinput stack-based overflow
CVE-2024-46045 | Tenda CH22 1.0.0.6(468) /goform/frmL7ProtForm frmL7PlotForm page stack-based overflow
CVE-2024-46044 | Tenda CH22 1.0.0.6(468) /goform/fromqossetting qos stack-based overflow
Kali Linux 2024.3 Released With New Hacking Tools
Kali Linux 2024.3, the most recent iteration of Offensive Security’s highly regarded Debian-based distribution designed for ethical hacking and penetration testing, has been released. This new release is a major update that includes 11 new hacking tools and focuses on behind-the-scenes updates and optimizations. According to the Kali Linux team, there have been a few […]
The post Kali Linux 2024.3 Released With New Hacking Tools appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
CVE-2017-0386 | Google Android up to 7.1 libnl access control (Nessus ID 96672 / ID 276385)
Apple Vision Pro Vulnerability Exposed Virtual Keyboard Inputs to Attackers
SolarWinds security advisory (AV24-520)
Меморандум ICO и NCA: секретный план защиты королевства от хакеров
CVE-2018-9422 | Google Android futex.c get_futex_key use after free (DLA 1422-1 / Nessus ID 111082)
Microsoft Edge security advisory (AV24-519)
CVE-2007-2609 | gnuedu web/login.php LIBSDIR code injection (EDB-3876 / XFDB-34174)
17-Year-Old Arrested in Connection with Cyber Attack Affecting Transport for London
CVE-2017-18270 | Linux Kernel up to 4.13.4 Keyring credentials management (RHSA-2018:1062 / Nessus ID 109380)
Top 5 Vulnerability Management Mistakes Companies Make (Plus a Bonus Mistake to Avoid)
Are you confident your vulnerability management is doing its job, or do you sometimes feel like it’s falling short? Many companies invest time and resources into managing vulnerabilities, yet still...
The post Top 5 Vulnerability Management Mistakes Companies Make (Plus a Bonus Mistake to Avoid) appeared first on Strobes Security.
The post Top 5 Vulnerability Management Mistakes Companies Make (Plus a Bonus Mistake to Avoid) appeared first on Security Boulevard.