> In this blog post we take a look at a race condition we found in Microsoft Windows Cloud Minifilter (i.e. cldflt.sys) in March 2024. This vulnerability was patched in October 2025 and assigned CVE-2025-55680. What's that saying about moving at the speed of cloud?
Exodus Intelligence
Microsoft Windows Cloud Files Minifilter TOCTOU Privilege Escalation - Exodus Intelligence
By Michele Campa Overview In this blog post we take a look at a race condition we found in Microsoft Windows Cloud Minifilter (i.e. cldflt.sys ) in...
Okay, so now that people are aware of the F5 shit show ( can we call it BIG-(R)IP I like that one ) and hopefully patching or prepping to patch, do y'all remember how even factory resets wouldn't purge the Ivanti malware? Just a random question, no reason.
image
Hold up, F5 is offering a free year of Blue Falcon EDR to customers? Apparently getting your remote access gear popped isn't enough so customers can also have a little unpredictable system crash, as a treat.
RE:
Mastodon
Zack Whittaker (@zackwhittaker@mastodon.social)
New, by me: If you're not using ad blockers, you should be! I wrote 2,000+ words on why you should use them and how to get started. In this deep-d...
 This. Ad blockers just proved their value once again in mitigating what would likely have been a major incident at $dayjob. View quoted note →
Patch your Mozilla things.
Mozilla
Security Vulnerabilities fixed in Firefox 144
Mozilla
Security Vulnerabilities fixed in Firefox ESR 115.29
Mozilla
Security Vulnerabilities fixed in Firefox ESR 140.4
Mozilla
Security Vulnerabilities fixed in Thunderbird 144
Mozilla
Security Vulnerabilities fixed in Thunderbird 140.4
image
RE:
Infosec Exchange
BleepingComputer (@BleepingComputer@infosec.exchange)
SonicWall has confirmed that all customers that used the company's cloud backup service are affected by the security breach last month. https://ww...
 Remember that whole "only about 5% of customers were impacted" line? And how it got people to stop paying attention? Yeah... View quoted note →
Ooh, RCE in python-socketio.
GitHub
Arbitrary Python code execution (RCE) through malicious pickle deserialization in certain multi-server deployments
### Summary A remote code execution vulnerability in python-socketio versions prior to 5.14.0 allows attackers to execute arbitrary Python code th...