Security analysis tool Binwalk poses a risk to users running outdated versions due to a security pitfall that could lead to remote code execution. Researcher Quentin Kaiser discovered that a mistake in binwalk’s Professional File System extractor plugin has created a vulnerability that lets files be written outside of the extraction directory. Kaiser eventually alerted Microsoft-owned Refirm Labs to the issue, which released a patch for it after three months.
Securonix Threat Labs 2024 Annual Autonomous Threat Sweeper (ATS) Intelligence Insights
2024 saw the evolution of cyber threats, with attacks on widely-used technologies like VPNs, advanced phishing campaigns, and exploitations of cloud services for malware distribution.
