Mike Larkin, Author at Security Boulevard

An Accidental Discovery of a Backdoor Likely Prevented Thousands of Infections

Mike Larkin — Sat, 30 Mar 2024 20:07:28 +0000

The post An Accidental Discovery of a Backdoor Likely Prevented Thousands of Infections appeared first on Security Boulevard.

Back from Hacker Summer Camp 2023: One CTO’s Experience

Mike Larkin — Wed, 23 Aug 2023 16:02:10 +0000

The post Back from Hacker Summer Camp 2023: One CTO’s Experience appeared first on Deepfactor.

The post Back from Hacker Summer Camp 2023: One CTO’s Experience appeared first on Security Boulevard.

Back from Hacker Summer Camp 2023: One CTO’s Experience

Mike Larkin — Wed, 23 Aug 2023 16:02:10 +0000

The post Back from Hacker Summer Camp 2023: One CTO’s Experience appeared first on Deepfactor.

The post Back from Hacker Summer Camp 2023: One CTO’s Experience appeared first on Security Boulevard.

Digging Into An Interesting New CVE

Mike Larkin — Fri, 21 Jul 2023 15:05:23 +0000

CVE-2023-38408, discovered by the Qualys Threat Research Unit (TRU), describes an RCE (remote code execution) vulnerability made possible by an unwanted interaction between OpenSSH’s ssh-agent executable, the dlopen() and dlclose() functions used by a process to load shared libraries, and various other deficiencies in libraries present (or installable) in many Linux distributions. What is the... Read more »

The post Digging Into An Interesting New CVE appeared first on Deepfactor.

The post Digging Into An Interesting New CVE appeared first on Security Boulevard.

Digging Into An Interesting New CVE

Mike Larkin — Fri, 21 Jul 2023 15:05:23 +0000

The post Digging Into An Interesting New CVE appeared first on Deepfactor.

The post Digging Into An Interesting New CVE appeared first on Security Boulevard.

Another Bug Caused by Memory Unsafe String APIs

Mike Larkin — Mon, 26 Sep 2022 19:41:25 +0000

A recent vulnerability came across my radar earlier this week. The description was vague but said: “There is a stack overflow vulnerability caused by strcpy.” This API first appeared in UNIX in the 1970s. There are many other APIs that don’t exhibit the same memory unsafety that these APIs do, but for some reason, we... Read more »

The post Another Bug Caused by Memory Unsafe String APIs appeared first on Deepfactor.

The post Another Bug Caused by Memory Unsafe String APIs appeared first on Security Boulevard.

CTO Observations from Hacker Summer Camp 2022

Mike Larkin — Fri, 26 Aug 2022 21:30:49 +0000

BSides LV / Black Hat 25 / DEF CON 30 (aka Hacker Summer Camp 2022) in Las Vegas is now in the rear-view mirror. In addition to news that continues to come out, especially around DEF CON, I wanted to highlight some sessions I attended across the three conferences and offer some perspectives. BSides... Read more »

The post CTO Observations from Hacker Summer Camp 2022 appeared first on Deepfactor.

The post CTO Observations from Hacker Summer Camp 2022 appeared first on Security Boulevard.