Feb 14, 2021 Application Security This Week Valentines Day edition Apparently I failed to publish last week. Sorry about that. Rolling shellcode from objects in memory. https://github.com/paranoidninja/PIC-Get-Privileges The Swiss say they can break encryption using quantum computing. https://www.bloomberg.com/amp/news/articles/2021-02-07/a-swiss-company-says-it-found-weakness-that-imperils-encryption?__twitter_impression=true Remember how everyone has been warning about internet-connected industrial control systems? Whelp. https://www.tampabay.com/news/pinellas/2021/02/08/someone-tried-to-poison-oldsmars-water-supply-during-hack-sheriff-says/ Look, more supply chain attacks! https://thehackernews.com/2021/02/dependency-confusion-supply-chain.html In related news, I'll be speaking on the topic at the Cincinnati Security Users Group on Thursday https://www.meetup.com/TechLife-Cincinnati/events/hjjlrryccdbxb/ Oh look! Another one! We might have a trend here. https://www.bleepingcomputer.com/news/security/researcher-hacks-over-35-tech-firms-in-novel-supply-chain-attack/