Lucene search
K

12 matches found

CERT
CERT
added 2026/06/22 12:0 a.m.6 views

Microsoft WinRE allows for bypass of UEFI/BIOS password enforcement

Overview Microsoft Windows Recovery Environment WinRE provides a mechanism for recovering and repairing Windows systems using an alternate boot environment. Under certain platform implementations, access to WinRE may allow an attacker to bypass firmware security controls, including...

6.8CVSS7.4AI score0.01249EPSS
Exploits2References6
Schneier on Security
Schneier on Security
added 2021/08/09 11:19 a.m.44 views

Defeating Microsoft’s Trusted Platform Module

This is a really interesting story explaining how to defeat Microsofts TPM in 30 minutes -- without having to solder anything to the motherboard. Researchers at the security consultancy Dolos Group, hired to test the security of one clients network, received a new Lenovo computer preconfigured to...

0.6AI score
Exploits0
Schneier on Security
Schneier on Security
added 2020/05/12 11:9 a.m.34 views

Attack Against PC Thunderbolt Port

The attack requires physical access to the computer, but it's pretty devastating: On Thunderbolt-enabled Windows or Linux PCs manufactured before 2019, his technique can bypass the login screen of a sleeping or locked computer -- and even its hard disk encryption -- to gain full access to the...

0.5AI score
Exploits0
The Hacker News
The Hacker News
added 2020/05/11 4:8 p.m.38 views

7 New Flaws Affect All Thunderbolt-equipped Computers Sold in the Last 9 Years

A cybersecurity researcher today uncovers a set of 7 new unpatchable hardware vulnerabilities that affect all desktops and laptops sold in the past 9 years with Thunderbolt, or Thunderbolt-compatible USB-C ports. Collectively dubbed 'ThunderSpy,' the vulnerabilities can be exploited in 9 realisti...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2020/05/11 4:8 p.m.5 views

7 New Flaws Affect All Thunderbolt-equipped Computers Sold in the Last 9 Years

A cybersecurity researcher today uncovers a set of 7 new unpatchable hardware vulnerabilities that affect all desktops and laptops sold in the past 9 years with Thunderbolt, or Thunderbolt-compatible USB-C ports. Collectively dubbed 'ThunderSpy,' the vulnerabilities can be exploited in 9 realisti...

5.9AI score
Exploits0
n0where
n0where
added 2018/08/19 1:7 a.m.30 views

Detect Evil Maid Attacks: Do Not Disturb

Physical access or “evil maid” attacks are some of the most insidious threats faced by those of us who travel with our Macs. Do Not Disturb DND is a free, open-source utility that aims to detect and alert you of such attacks! One of the best ways to compromise a computer is with physical access...

0.5AI score
Exploits0References1
HackRead
HackRead
added 2018/04/27 4:3 p.m.91 views

Ex-NSA staffer creates app to notify users of evil maid attack on MacBook

By Uzair Amir It is a fact that a MacBook cannot be easily This is a post from HackRead.com Read the original post: Ex-NSA staffer creates app to notify users of evil maid attack on MacBook...

3.2AI score
Exploits0
Schneier on Security
Schneier on Security
added 2018/01/03 12:17 p.m.34 views

Tamper-Detection App for Android

Edward Snowden and Nathan Freitas have created an Android app that detects when it's being tampered with. The basic idea is to put the app on a second phone and put the app on or near something important, like your laptop. The app can then text you -- and also record audio and video -- when...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2017/08/01 9:12 p.m.17 views

Alexa, Are You Spying On Me? Not Really, Maybe, It's Complex!

Do you own an Amazon Echo? So are you also worried about hackers turning out your device into a covert listening device? Just relax, if there's no NSA, no CIA or none of your above-skilled friends after you. Since yesterday there have been several reports on Amazon Echo hack that could allow a...

7.1AI score
Exploits0
CheckPoint Security
CheckPoint Security
added 2009/11/03 10:0 p.m.12 views

Check Point response to the "Evil Maid" attack

Symptoms Check Point Full Disk Encryption is not vulnerable to the "Evil Maid" attack. Solution Full technical details of the "Evil Maid" attack Check Point Full Disk Encryption is not vulnerable to the "Evil Maid" attack, as this particular program specifically targets the True Crypt boot code,...

0.3AI score
Exploits0Affected Software1
ThreatPost
ThreatPost
added 2009/10/23 7:57 p.m.22 views

On the Evil Maid USB Attack, Time Warner and the Cybersecurity Czar

Dennis Fisher and Ryan Naraine discuss the Evil Maid USB attack, the Time Warner modem vulnerability and that old standby: the cybersecurity czar. Download SHOW NOTES: How to Defeat Full-Disk Encryption in One Minute Time Warner Router Flaw Exposes Customers Apathy Creeps In as Cybersecurity Czar...

2.1AI score
Exploits0References7
ThreatPost
ThreatPost
added 2009/10/19 7:26 p.m.8 views

How to Defeat Full-Disk Encryption in One Minute

Full-disk encryption is often heralded as a panacea to the huge problems of data breaches and laptop thefts, and with good reason. Making the data on a laptop or other device unreadable makes the machine far less attractive or valuable to a thief. However, researchers are showing that this soluti...

1.7AI score
Exploits0References2
Rows per page
Query Builder