-
Random Movie/TV Thoughts and Reviews (October 2021)
Mindhunter S1-2 (2017) Medium: TV (Netflix) Rating: 4.5 / 5 Criminal Minds should take note Reference(s): IMDB Listing || Trailer || Netflix I originally avoided this show because it was compared to Criminal Minds, which was a good show to start but went too far into procedural tedium. I’m glad I eventually came around to give it a chance because…
-
Random Movie/TV Thoughts and Reviews (September 2021)
The Protege (2021) Medium: Movie (Theatres or Usenet) Rating: 4.5 / 5 Maggie’s good, Michael’s better Reference(s): IMDB Listing || Trailer || Official Site As far as the “badass femme getting revenge” genre goes, this movie ranks up there. First, Samuel Jackson doesn’t play his usual self which is a plus. He’s a more muted and reserved version of himself…
-
Assessing the ‘War on Tech’: Huawei vs. U.S.
[I wrote this with Curtis Kang who did a lot of work researching various aspects of this article and provided invaluable help. His research and written contributions made this article possible. It was originally intended to be published on RiskBasedSecurity.com in early 2020 but was passed over so I am publishing it here.] In 2019,…
-
Commentary on Trend Micro’s Linux Threat Report 2021
On August 23, 2021, Trend Micro released a report titled “Linux Threat Report 2021 1H” by Magno Logan and Pawan Kinger. The report is based on Trend Micro’s Smart Protection Network (SPN) which they call “the data lake for all detections across all Trend Micro’s products“. Basically, every security product they make that detects vulnerabilities…
-
Sharks Are Scary but Worry About Mosquitoes
[This was originally published on RiskBasedSecurity.com and was included in the 2021 Mid Year Vulnerability QuickView Report.] It seems like every day that we hear about a new hack and read headlines that tell us that so-called advanced persistent threats (APT) are compromising major organizations. These APT and nation-state actors have incredible skill and seemingly…
-
Niki7a vs Magen – Charity Drive
Like the epic rumble in the jungle, after a quick offer to throw money to charity on behalf of their suffering, other generous souls jumped in to do the same. The result? Niki7a and Magen are now locked in a legendary contest to see who can wear their DEF CON 29 bracelet the longest. Whoever…
-
Reflections on “CVE Approach for Cloud Vulnerabilities”
At Black Hat Briefings USA this week, Ami Luttwak and Shir Tamari called for a “CVE” style approach to documenting vulnerabilities that affect cloud offerings (note: I have not seen the talk). As one of two people (the other being Jake Kouns) that may have the longest history in this specific space, I wanted to…
-
Random Movie/TV Thoughts and Reviews (August 2021)
F9: The Fast Saga (2021) Medium: Movie (Multiple) Rating: 1 / 5 From zero to trash in 9 movies Reference(s): IMDB Listing || Trailer Four score and 87 Fast & Furious movies ago, we learned to suspend disbelief primarily by ignoring physics. The problem is that with each subsequent movie they have to ignore physics more. And logic.…
-
Random Movie/TV Thoughts and Reviews (July 2021)
[A summary of my movie and TV reviews from last month, posted to Attrition.org, mixed in with other reviews.] The Tomorrow War (2021)Medium: Movie (Amazon)Rating: 0.5/5 don’t wait until tomorrow to ignore this trashReference(s): IMDB Listing || TrailerThis movie was going swimmingly when everything was just regular life in today’s time. The second the “tomorrow”…
-
Perlroth, Miller, and the First Remote iPhone Vuln
In what is sure to be my last blog (?!) born out of reading “This Is How They Tell Me The World Ends” by Nicole Perlroth, this article is basically a quick dive into a single paragraph that contains one sentence with an alleged fact pertaining to vulnerability history. As a self-described Vulnerability Historian, this…