Chai Yichen

@leonjza @bugscale @1ns0mn1h4ck @SachaKozma Thank you for coming, glad you liked it!

@bugscale @1ns0mn1h4ck @Hacker_Chai @SachaKozma Thank you for this talk. Your presentation style was fantastic, as was the content!

If you missed the talk at @1ns0mn1h4ck , our latest blog post is now available for you to explore. In this post, researchers @Hacker_Chai and @SachaKozma detail their journey to a 1-click RCE exploit on the Samsung S25 phone. Check it out here: bugscale.ch/blog/shoot-for…

Proud to have published the first ever report to qualify for Samsung's Important Scenario Vulnerability Programme (ISVP)! @SachaKozma @bugscale security.samsungmobile.com/securityPostDe…

Yay @bugscale @SachaKozma: security.samsungmobile.com/serviceWeb.smsb

Representing @bugscale !

Wahoo

@1ns0mn1h4ck @SachaKozma We are from @bugscale :D

Get to know how a modern smartphone like the Samsung Galaxy S25 got hacked with a 1-click RCE chain. @SachaKozma & @Hacker_Chai will walk through how an ordinary app became the key to a full exploit chain. Join the talk: ow.ly/MPQ550YkjxB #Infosec #INSO26 #CyberConference

Second part of my blog post is out now at: yichenchai.com/blog/v8-cve-20… ! It talks about an alternate way to exploit CVE-2025-5959, with the caveat that we enable an experimental (but not unsafe) WASM proposal.

My next blog post (no fixed date) will be about defeating an Android anti-debug packer, unrelated to my work on the Samsung Galaxy S25

Second part should be done in the next day or so

There is a factual error in the post. Guard pages following WasmNull are not for security, but used in the implicit null check. I've corrected my post with a bit more analysis. Sorry!

Wrote a new blog post on CVE-2025-5959 at yichenchai.com/blog/v8-cve-20… . Check it out!

I revamped the layout and got a custom domain, so hopefully it'll be a better experience now

Going to share about my work with @SachaKozma on the Samsung Galaxy S25 at Bugscale in March at Insomni'Hack! We managed to get a one-click RCE with some limitations; further details will be disclosed during the talk as the bugs are still in the process of patching.

Feels like there's a bit of a typo somewhere but eh

Check it out here: insomnihack.ch/talks/shoot-fo… !