blueteamsec

581 readers

25 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago

MODERATORS

digicat@infosec.pub

mediatek? more like media-REKT, amirite. - 19 vulns in Wi-Fi (blog.coffinsec.com)

submitted 6 days ago by digicat@infosec.pub to c/blueteamsec@infosec.pub

3 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Blue_Morpho@lemmy.world 5 points 6 days ago (1 children)

Wow. His aggression made me think he was exaggerating the problems. Often it's dry research text that shows the worst problems.

But at the bottom he posted all the receipts: Multiple examples of kernel access due to driver mistakes with sample exploit code.

[–] notabot@piefed.social 3 points 6 days ago (1 children)

I'm glad it wasn't just me that found the write up aggressive. They've undoubtedly done some good work finding these issues, but this was exhausting to read, and if they interacted with Mediatek in the same tone, I'm not surprised the interactions didn't go well.

[–] ulterno@programming.dev 0 points 2 days ago

If I were to be hit with "we do not consider multiple user cases" in a Linux context, by someone on the other side calling themselves a developer, then either they were paying me to work with them or I would have stopped any correspondence.
I coffinsec even treated the other side as a person worth talking to, they have already been way more accommodating than me.