#binarly — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #binarly, aggregated by home.social.
-
Binarly Transparency Platform 3.5 now supports Java archives and JVM bytecode https://www.helpnetsecurity.com/2025/11/06/binarly-transparency-platform-3-5-now-supports-java-archives-and-jvm-bytecode/ #Industrynews #Binarly
-
#DockerHub: Gefährliche #Backdoor in älteren #Linux-Images entdeckt
-
Vulnerable firmware for Gigabyte motherboards could allow bootkit installation https://www.helpnetsecurity.com/2025/07/15/gigabyte-uefi-vulnerabilities-bootkit-installation/ #securityupdate #vulnerability #Don'tmiss #Hotstuff #consumer #firmware #Gigabyte #Binarly #bootkit #News
-
Right a few days before I'll be talking about patterns in DRAM init at #GPN23, #Binarly are posting on their type inference tooling:
https://www.binarly.io/blog/type-inference-for-decompiled-code-from-hidden-semantics-to-structured-insightsWill definitely mention this. :)
-
Binarly Transparency Platform 3.0 prioritizes vulnerabilities based on active exploitation https://www.helpnetsecurity.com/2025/04/24/binarly-transparency-platform-3-0/ #Industrynews #Binarly
-
Binarly helps organizations prepare for mandatory transition to PQC standards https://www.helpnetsecurity.com/2025/01/31/binarly-transparency-platform-v2-7/ #Industrynews #Binarly
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered – Source: www.securityweek.com https://ciso2ciso.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered-source-www-securityweek-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #Malware&Threats #vulnerabilities #securityweekcom #securityweek #SouthKorea #Bootkitty #FEATURED #Binarly #Bootkit #eset #UEFI
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered – Source: www.securityweek.com https://ciso2ciso.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered-source-www-securityweek-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #Malware&Threats #vulnerabilities #securityweekcom #securityweek #SouthKorea #Bootkitty #FEATURED #Binarly #Bootkit #eset #UEFI
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered – Source: www.securityweek.com https://ciso2ciso.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered-source-www-securityweek-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #Malware&Threats #vulnerabilities #securityweekcom #securityweek #SouthKorea #Bootkitty #FEATURED #Binarly #Bootkit #eset #UEFI
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered https://www.securityweek.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered/ #Malware&Threats #Vulnerabilities #SouthKorea #Bootkitty #Binarly #bootkit #ESET #UEFI
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered https://www.securityweek.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered/ #Malware&Threats #Vulnerabilities #SouthKorea #Bootkitty #Binarly #bootkit #ESET #UEFI
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered https://www.securityweek.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered/ #Malware&Threats #Vulnerabilities #SouthKorea #Bootkitty #Binarly #bootkit #ESET #UEFI
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered https://www.securityweek.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered/ #Malware&Threats #Vulnerabilities #SouthKorea #Bootkitty #Binarly #bootkit #ESET #UEFI
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered https://www.securityweek.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered/ #Malware&Threats #Vulnerabilities #SouthKorea #Bootkitty #Binarly #bootkit #ESET #UEFI
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered https://www.securityweek.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered/ #Malware&Threats #Vulnerabilities #SouthKorea #Bootkitty #Binarly #bootkit #ESET #UEFI
-
Infosec products of the month: September 2024 https://www.helpnetsecurity.com/2024/10/01/infosec-products-of-the-month-september-2024/ #VeritasTechnologies #SkyhighSecurity #PromptSecurity #NudgeSecurity #Malwarebytes #WingSecurity #Bitdefender #Guardsquare #F5Networks #Strivacity #anecdotes #ArmorCode #Absolute #Huntress #Revenera #Binarly #Netgear #Tenable #Trellix #LOKKER #Rapid7 #Druva #Gcore #Ketch #Vanta #News
-
Infosec products of the month: September 2024 https://www.helpnetsecurity.com/2024/10/01/infosec-products-of-the-month-september-2024/ #VeritasTechnologies #SkyhighSecurity #PromptSecurity #NudgeSecurity #Malwarebytes #WingSecurity #Bitdefender #Guardsquare #F5Networks #Strivacity #anecdotes #ArmorCode #Absolute #Huntress #Revenera #Binarly #Netgear #Tenable #Trellix #LOKKER #Rapid7 #Druva #Gcore #Ketch #Vanta #News
-
Infosec products of the month: September 2024 https://www.helpnetsecurity.com/2024/10/01/infosec-products-of-the-month-september-2024/ #VeritasTechnologies #SkyhighSecurity #PromptSecurity #NudgeSecurity #Malwarebytes #WingSecurity #Bitdefender #Guardsquare #F5Networks #Strivacity #anecdotes #ArmorCode #Absolute #Huntress #Revenera #Binarly #Netgear #Tenable #Trellix #LOKKER #Rapid7 #Druva #Gcore #Ketch #Vanta #News
-
Infosec products of the month: September 2024 https://www.helpnetsecurity.com/2024/10/01/infosec-products-of-the-month-september-2024/ #VeritasTechnologies #SkyhighSecurity #PromptSecurity #NudgeSecurity #Malwarebytes #WingSecurity #Bitdefender #Guardsquare #F5Networks #Strivacity #anecdotes #ArmorCode #Absolute #Huntress #Revenera #Binarly #Netgear #Tenable #Trellix #LOKKER #Rapid7 #Druva #Gcore #Ketch #Vanta #News
-
New infosec products of the week: September 6, 2024 https://www.helpnetsecurity.com/2024/09/06/new-infosec-products-of-the-week-september-6-2024/ #SkyhighSecurity #PromptSecurity #Bitdefender #Revenera #Binarly #Vanta #News
-
Binarly Transparency Platform 2.5 identifies critical vulnerabilities before they can be exploited https://www.helpnetsecurity.com/2024/09/05/binarly-transparency-platform-2-5/ #Industrynews #Binarly
-
Thanks to #Binarly for Sponsoring #OST2 at the Gold🥇 level!
Learn more about them here: https://binarly.io/ -
Binarly releases Transparency Platform v2.0 to improve software supply chain security https://www.helpnetsecurity.com/2024/04/24/binarly-transparency-platform-v2-0/ #Industrynews #Binarly
-
XZ Utils backdoor: Detection tools, scripts, rules https://www.helpnetsecurity.com/2024/04/08/detect-xz-backdoor/ #supplychaincompromise #Bitdefender #opensource #Don'tmiss #Hotstuff #backdoor #Binarly #Elastic #GitHub #Linux #News
-
Binarly secured $10.5M in seed funding led by Two Bear Capital. Binarly specialises in AI-powered firmware and software supply chain security, identifying vulnerabilities and malicious code in devices to enhance security. #binarly #ai #supplychain #supply #supplier #funding #investment #security #code #vulnerabilities #shipment #transportation #logistics #transport #secure
-
Binarly secured $10.5M in seed funding led by Two Bear Capital. Binarly specialises in AI-powered firmware and software supply chain security, identifying vulnerabilities and malicious code in devices to enhance security. #binarly #ai #supplychain #supply #supplier #funding #investment #security #code #vulnerabilities #shipment #transportation #logistics #transport #secure
-
Binarly secured $10.5M in seed funding led by Two Bear Capital. Binarly specialises in AI-powered firmware and software supply chain security, identifying vulnerabilities and malicious code in devices to enhance security. #binarly #ai #supplychain #supply #supplier #funding #investment #security #code #vulnerabilities #shipment #transportation #logistics #transport #secure
-
Binarly Attracts $10.5M to Tackle Software Supply Chain Security https://www.securityweek.com/binarly-attracts-10-5m-to-tackle-software-supply-chain-security/ #SupplyChainSecurity #Funding/M&A #SupplyChain #seedstage #firmware #Binarly
-
Binarly Attracts $10.5M to Tackle Software Supply Chain Security https://www.securityweek.com/binarly-attracts-10-5m-to-tackle-software-supply-chain-security/ #SupplyChainSecurity #Funding/M&A #SupplyChain #seedstage #firmware #Binarly
-
10 cybersecurity startups to watch in 2024 https://www.helpnetsecurity.com/2024/02/21/cybersecurity-startups-watch-2024/ #PaloAltoNetworks #RadiantSecurity #cybersecurity #DopeSecurity #RiskLedger #Don'tmiss #Hotstuff #Filigran #Mitigant #QevlarAI #Binarly #Datadog #Dataiku #Gomboc #Google #KTrust #Lakera #News #Snyk
-
10 cybersecurity startups to watch in 2024 https://www.helpnetsecurity.com/2024/02/21/cybersecurity-startups-watch-2024/ #PaloAltoNetworks #RadiantSecurity #cybersecurity #DopeSecurity #RiskLedger #Don'tmiss #Hotstuff #Filigran #Mitigant #QevlarAI #Binarly #Datadog #Dataiku #Gomboc #Google #KTrust #Lakera #News #Snyk
-
10 cybersecurity startups to watch in 2024 https://www.helpnetsecurity.com/2024/02/21/cybersecurity-startups-watch-2024/ #PaloAltoNetworks #RadiantSecurity #cybersecurity #DopeSecurity #RiskLedger #Don'tmiss #Hotstuff #Filigran #Mitigant #QevlarAI #Binarly #Datadog #Dataiku #Gomboc #Google #KTrust #Lakera #News #Snyk
-
"🚨 UEFI Under Threat: The LogoFAIL Vulnerability 🚨"
A recent security report has brought attention to LogoFAIL, a collection of vulnerabilities that pose a substantial risk to devices utilizing UEFI firmware. These vulnerabilities enable attackers to install UEFI bootkits by leveraging weaknesses in the image-parsing components utilized by various vendors in their firmware. LogoFAIL's impact is widespread, affecting a broad range of devices across x86 and ARM architectures, including products from prominent manufacturers such as Intel, Acer, and Lenovo.
Researchers at Binarly have uncovered that malicious payloads can be executed by injecting image files into the EFI System Partition (ESP), effectively evading security features like Secure Boot. This method of attack ensures the persistence of malware on the system, rendering it virtually undetected. LogoFAIL's full scope of impact is still being assessed, but it is already evident that it poses a significant threat to both consumer and enterprise-grade devices, as it bypasses security mechanisms designed to protect UEFI systems.
Source: BlackHat talk and Bill Toulas, BleepingComputer
MITRE ATT&CK Reference for UEFI Vulnerabilities: T1588.006
Tags: #CyberSecurity #UEFI #Vulnerability #LogoFAIL #Bootkit #SecureBoot #FirmwareSecurity #Binarly #DeviceSecurity 🚨💻🔒
-
📬 LogoFAIL: Sicherheitslücke bedroht Millionen von PC-Nutzern
#ITSicherheit #Binarly #BlackHatEurope #BMPBildparser #Bootkit #LogoFAIL #Malware #UEFIFirmware https://tarnkappe.info/artikel/it-sicherheit/logofail-sicherheitsluecke-bedroht-millionen-von-pc-nutzern-284205.html -
📬 LogoFAIL: Sicherheitslücke bedroht Millionen von PC-Nutzern
#ITSicherheit #Binarly #BlackHatEurope #BMPBildparser #Bootkit #LogoFAIL #Malware #UEFIFirmware https://tarnkappe.info/artikel/it-sicherheit/logofail-sicherheitsluecke-bedroht-millionen-von-pc-nutzern-284205.html -
📬 LogoFAIL: Sicherheitslücke bedroht Millionen von PC-Nutzern
#ITSicherheit #Binarly #BlackHatEurope #BMPBildparser #Bootkit #LogoFAIL #Malware #UEFIFirmware https://tarnkappe.info/artikel/it-sicherheit/logofail-sicherheitsluecke-bedroht-millionen-von-pc-nutzern-284205.html -
📬 LogoFAIL: Sicherheitslücke bedroht Millionen von PC-Nutzern
#ITSicherheit #Binarly #BlackHatEurope #BMPBildparser #Bootkit #LogoFAIL #Malware #UEFIFirmware https://tarnkappe.info/artikel/it-sicherheit/logofail-sicherheitsluecke-bedroht-millionen-von-pc-nutzern-284205.html -
📬 LogoFAIL: Sicherheitslücke bedroht Millionen von PC-Nutzern
#ITSicherheit #Binarly #BlackHatEurope #BMPBildparser #Bootkit #LogoFAIL #Malware #UEFIFirmware https://tarnkappe.info/artikel/it-sicherheit/logofail-sicherheitsluecke-bedroht-millionen-von-pc-nutzern-284205.html -
📬 Nach MSI-Hack: Private Schlüssel erlauben Firmware-Manipulation
#Cyberangriffe #ITSicherheit #Binarly #IntelBootGuard #lenovo #MatthewGreen #MoneyMessage #MSIHack #RansomwareAngriff #Supermicro #UEFISecureBoot https://tarnkappe.info/artikel/it-sicherheit/nach-msi-hack-private-schluessel-erlauben-firmware-manipulation-274210.html -
Недавно Lenovo обновила BIOS'ы для своих устройств. Мне прилетело обновление через их Lenovo Vantage.
Крайне рекомендую обновиться, закрыты серьезные уязвимости (https://support.lenovo.com/fr/en/product_security/len-65529):
* CVE-2021-3452: A potential vulnerability in the system shutdown SMI callback function in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code.* CVE-2021-3453: Some Lenovo Notebook, ThinkPad, and Lenovo Desktop systems have BIOS modules unprotected by Intel Boot Guard that could allow an attacker with physical access the ability to write to the SPI flash storage.
* CVE-2021-3614: A vulnerability was reported on some Lenovo Notebook systems that could allow an attacker with physical access to elevate privileges under certain conditions during a BIOS update performed by Lenovo Vantage.
Немного подробностей от исследователей:
* https://github.com/binarly-io/Vulnerability-REsearch/blob/main/Lenovo/BRLY-2021-001.md
* https://github.com/binarly-io/Vulnerability-REsearch/blob/main/Lenovo/BRLY-2021-002.md