Month: March 2025

  • The Curious Case of CVE-2015-2551 & CVE-2019-9081 – Doom and Gloom! Or not.

    The Curious Case of CVE-2015-2551 & CVE-2019-9081 – Doom and Gloom! Or not.

    What’s Your Story CVE-2015-2551? This CVE-2015-2551 entry seems straight-forward, based on the description provided by CVE or NVD. Looking at the change history on NVD it is a bit more informative: So the ID was created for the 2015 calendar year, apparently not used, rejected seven years later, and confirmed by the assigning CNA (Microsoft).…

  • ChatGPT Exploited by Threat Actors, Doom and Gloom! Or not.

    ChatGPT Exploited by Threat Actors, Doom and Gloom! Or not.

    After years of chasing down typos in CVE IDs, now we all have to contend with poorly researched headlines and apparent to me ambulance chasing over mistaken product names. If you missed the news, threat actors are exploiting a vulnerability in ChatGPT! This is obviously a huge warning and we should all be afraid because…

  • APT Naming Woes Redux (Bonus ‘DOJ’ Oops!)

    APT Naming Woes Redux (Bonus ‘DOJ’ Oops!)

    One aspect of vulnerability intelligence is also doing a best-faith effort to track the threat actors that are using the vulnerabilities. While that information often isn’t published, when it is we should include it. For example, less than 1% of data breaches publish the vulnerability associated with the initial compromise, and that is often the…