kalieaire

An anonymous researcher known as Nightmare-Eclipse, who has already leaked several Windows zero-days this year, has disclosed two more: YellowKey and GreenPlasma. The Register reports: Nightmare-Eclipse described YellowKey as "one of the most insane discoveries I ever found." They provided the files, which have to be loaded onto a USB drive, and if the attacker completes the key sequence correctly, they are granted unrestricted shell access to a BitLocker-protected machine. When it comes to claims like these, we usually exercise some caution, as this bug requires physical access to a Windows PC. However, seeing that BitLocker acts as Windows' last line of defense for stolen devices, bypassing the technology grants thieves the ability to access encrypted files. Rik Ferguson, VP of security intelligence at Forescout, said: "If [the researcher's claim] holds up, a stolen laptop stops being a hardware problem and becomes a breach notification." Despite the physical access requirement, Gavin Knapp, cyber threat intelligence principal lead at Bridewell, told The Register that YellowKey remains "a huge security problem for organizations using BitLocker." Citing information shared in cyber threat intelligence circles, he added that YellowKey can be mitigated by implementing a BitLocker PIN and a BIOS password lock. Nightmare-Eclipse hinted at YellowKey also acting as a backdoor, allegedly injected by Microsoft, although the people we spoke to said this was impossible to verify based on the information available. The researcher also published partial exploit code for GreenPlasma, rather than a fully formed proof of concept exploit (PoC). Ferguson noted attackers need to take the code provided by the researcher and figure out how to weaponize it themselves, which is no small task: in its current state it triggers a UAC consent prompt in default Windows configurations, meaning a silent exploit remains a work in progress. Knapp warned that these kinds of privilege escalation flaws are often used by attackers after they gain an initial foothold in a victim's system. "These elevation of privilege vulnerabilities are often weaponized during post-exploitation to enable threat actors to discover and harvest credentials and data, before moving laterally to other systems, prior to end goals such as data theft and/or ransomware deployment," he said. "Currently, there is no known mitigation for GreenPlasma. It will be important to patch when Microsoft addresses the issue." The other zero-days leaked include RedSun, a Windows Defender privilege escalation flaw; UnDefend, a Windows Defender denial-of-service bug; and BlueHammer, a separate Microsoft vulnerability tracked as CVE-2026-32201 that was patched in April. According to The Register, RedSun and UnDefend remained unfixed at the time of publication, and proof-of-concept code for the flaws was reportedly picked up quickly and abused in real-world attacks.

Read more of this story at Slashdot.

California's DMV has digitized 42 million car titles using blockchain technology to detect fraud and streamline the title transfer process, enabling residents to claim vehicle titles through a mobile app -- the first such initiative in the U.S. The project is a collaboration with tech company Oxhead Alpha on Ava Labs' Avalanche blockchain. Reuters reports: Digitizing car titles will reduce the need for in-person DMV visits and the blockchain technology will also function as a deterrent against lien fraud. Blockchain technology can help detect lien fraud by creating a transparent and unalterable record of property ownership, making it difficult for fraudulent activity to go unnoticed. California residents will be able to access their digital car titles starting early next year as the DMV builds out the app and infrastructure for consumer access.

Read more of this story at Slashdot.

Avaddon ransomware is the latest cybercrime operation to launch a data leak site that will be used to publish the stolen data of victims who do not pay a ransom demand. [...]

This past weekend, I drove from Minneapolis, Minnesota to Fayetteville, Arkansas, where I spotted the most “Texas” truck I’ve ever laid eyes upon. Sitting in the parking lot of the most Texas fast-food joint I know of, Whataburger, was a red Ram 3500 diesel armored with what I assume are standard automobile…

Read more...

SpaceX will now be attempting to land and reuse all of the rockets it launches. Over the weekend, SpaceX launched and successfully landed its second Falcon 9 Block 5 rocket in Cape Canaveral, Florida. An anonymous reader writes: The landing of this vehicle, designed with reusability in mind, marks the beginning of a completely recyclable era of rockets for the company. The Block 5 can be used hundreds of times if recovered successfully. Now that the company has transitioned to this more reusable model, recovery will be an even more crucial part of the launch. In a two week period, it's planning five recoveries. Mashable: The landing marks one of the first landings and launches of the company's newest, upgraded Falcon 9 rockets, called Block 5. Before this launch, SpaceX got rid of a backlog of their Block 4 rockets by launching without landing them back on Earth. That type of launch without landing is the traditional way of getting things to orbit, but SpaceX managed to change that. The whole point in the company's rocket landings hinge on the fact that it could reduce the cost of flying to orbit. By reusing rocket stages for multiple launches, it could drive down the exorbitant cost of flying to space for companies and nations around the world. SpaceX has been killing it the past couple years. The company -- founded by Elon Musk -- launched 18 times in 2017.

Read more of this story at Slashdot.

Update 9/22: Now down to just $139 with promo code GARDEN30.

Read more...