1c:I[5025,["2266","static/chunks/870fdd6f-6bc796c30d2d789b.js","6874","static/chunks/6874-1092c3b716d98184.js","3063","static/chunks/3063-d60ec0b08e19cd33.js","7698","static/chunks/7698-29ba5779557874ff.js","5801","static/chunks/app/podcast/%5BpodcastSlug%5D/%5BpodcastShortId%5D/%5BepisodeSlug%5D/%5BepisodeShortId%5D/page-b8b82ab127fe442b.js"],"default"] 1d:I[5163,["2266","static/chunks/870fdd6f-6bc796c30d2d789b.js","6874","static/chunks/6874-1092c3b716d98184.js","3063","static/chunks/3063-d60ec0b08e19cd33.js","7698","static/chunks/7698-29ba5779557874ff.js","5801","static/chunks/app/podcast/%5BpodcastSlug%5D/%5BpodcastShortId%5D/%5BepisodeSlug%5D/%5BepisodeShortId%5D/page-b8b82ab127fe442b.js"],"default"] 1e:T735,
Reminder: 7-Zip MoW
The MoW must be added to any files extracted from ZIP or other compound file formats. 7-Zip does not do so by default unless you alter the default configuration.
https://isc.sans.edu/diary/Reminder%3A%207-Zip%20%26%20MoW/31668
Apple Fixes 0-Day
Apple released updates to iOS and iPadOS fixing a bypass for USB Restricted Mode. The vulnerability is already being exploited.
https://support.apple.com/en-us/122174
AMD ZEN CPU Microcode Update
An attacker is able to replace microcode on some AMD CPUs. This may alter how the CPUs function and Google released a PoC showing how it can be used to manipulate the random number generator.
https://github.com/google/security-research/security/advisories/GHSA-4xq7-4mgh-gp6w
Trimble Cityworks Exploited
CISA added a recent Trimble Cityworks vulnerabliity to its list of exploited vulnerabilities.
https://learn.assetlifecycle.trimble.com/i/1532182-cit

‌

Episode description

SANS Stormcast Feb 11th 2025: 7zip and MoW; Apple 0-Day Fix; AMD Microcode Overwrite; Trimble CityWorks 0-Day; MageCart Update

Episode description