A serious vulnerability in VMware has been discovered: VMSA-2021-0029 (vmware.com) As the article on The Register says “ignore this at your peril”. Over Log4j? VMware has another critical flaw for you to fix • The Register
The future of society is smart contracts on a blockchain
The future of cyber crime is smart contracts on a blockchain with software bugs! Dan Goodin has an article explaining how a bug (flaw) in the code for drafting a blockchain smart contract, by MonoX Finance, allowed a hacker to steal $31million from them. Really stupid “smart contract” bug let …
Continue reading “The future of society is smart contracts on a blockchain”
Recommended Reading – Your digital life
Bruce Schneier is recommending these articles, by Sean Gallagher, on securing your digital life. Securing your digital life, part one: The basics | Ars Technica Securing your digital life, part two: The bigger picture—and special circumstances | Ars Technica
Patch Tuesday – Microsoft
He is a round-up of the Microsoft updates from SANS Internet Strom. As always get these done! Microsoft November 2021 Patch Tuesday (sans.edu)
Hiding the threat in plain sight
Attackers are always looking for new way to get their illicit packages through defences and this research paper outlines how by exploiting Unicode, malicious code can be written into software so that human code reviewers cannot recognise that it is there. Trojan Source: Invisible Vulnerabilities “This work has been under …
