Areizen

Following their presentation at @hexacon_fr, Mehdi & Etienne detail how they exploited CVE-2023-40129, a critical vulnerability affecting the Bluetooth stack in Android ⬇️ synacktiv.com/en/publication…

Congrats to @Tek_7987 and @_Anyfun for landing the first successful entry at #Pwn2OwnCork - exploiting a stack overflow on @Synology BeeStation Plus for $40,000 and 4 Master of Pwn points in the process 💥 Let’s keep pushing 💪 #P2OIreland #Synacktiv

A technical look at @GrapheneOS Hardened Malloc, a memory allocator designed to mitigate heap corruption vulnerabilities (UAF, overflows) and break common exploit primitives. Deep dive for security researchers & exploit developers by @iksocin synacktiv.com/en/publication…

We've just released a tool to decrypt all Synology encrypted archives! We used it to compare SynologyPhotos versions and highlight our #Pwn2Own Ireland 2024 vulnerability on the BeeStation BST150-4T. Check out @Tek_7987's blog post for more details. synacktiv.com/en/publication…

While performing security research on IoT control applications, @Areizen_ and @Anatharrr discovered critical vulnerabilities in the mobile app for the Eachine E58 drone. These flaws could potentially lead to remote code execution on the user's smartphone. synacktiv.com/en/publication…

More highlights from Day 2 of #Pwn2Own Ireland - Synacktive vs Synology Beestation youtube.com/shorts/2XwITuk…

We have another bug collision. The @synacktiv team successfully exploited the #Synology Beestation, but they used a bug previously seen during the contest. They still earn $10,000 and 2 Master of Pwn points. #Pwn2Own #P2OIreland

[ZDI-24-837|CVE-2024-6246] (Pwn2Own) Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Code Execution Vulnerability (CVSS 9.6; Credit: @vdehors, @0xmitsurugi, @Areizen_ from @Synacktiv) zerodayinitiative.com/advisories/ZDI…

Last week, Microsoft released a patch for CVE-2024-26238, a Windows 10 LPE reported by @yaumn_. You can read the advisory here: synacktiv.com/advisories/win…

Want to know how deleted photos reappeared in iOS 17.5? Check out today's blogpost by @Lefnui 🍎 synacktiv.com/publications/i…

Our ninjas will be at #OffensiveCon by the end of the week. Don't miss our 3 talks: 🧭Escaping the Safari Sandbox by @0xdagger 🚘0-Click RCE on the Tesla Infotainment by @vdehors and @_p0ly_ 🗝️Open Sesame by @_lucas_georges_ See you there 👋

Sometimes, the obstination of our Linux fans leads to interesting findings on iOS USB networking. Have a look at our latest blogpost by @flogallium synacktiv.com/publications/i…

Exploiting Arbitrary Object Instantiations in PHP without Custom Classes swarm.ptsecurity.com/exploiting-arb…

Interested in finding and exploiting vulnerabilities in old video games? If so, you'll love our latest blogpost on American Conquest by @tomtombinary! synacktiv.com/publications/e…

Things are going pretty well so far 🚗 #Pwn2Own

Only a few days until #Pwn2Own Automotive in Tokyo. Our ninjas will bring some interesting entries with them ;)

Have you ever wondered what the attack surface of Counter Strike: Global Offensive looks like? Our ninjas @myr463 and @v1csec studied it and found a server to client bug! Read more details about this research in our latest blogpost. synacktiv.com/publications/e…

To facilitate reverse-engineering of large programs, vulnerability research and root-cause analysis on iOS, Android, and other major platforms, @myr463 and @Hexabeast released Frinet, a tool combining Frida with an enhanced version of Tenet. synacktiv.com/publications/f…

Exploiting vulnerability in Diablo I tomtombinary.xyz/articles/diabl…

To celebrate @WyzeCam's decision to release a firmware update a day before this years Pwn2Own Toronto competition.. I've decided to release the exploit for my (killed) bugchain: github.com/blasty/unwyze .. maybe next time they will not withhold patches for critical bugs? 🙃