Research, cases & blogs

KNOWLEDGE

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

Nov 2024

Reverse engineering and fuzzing the Lorex 2K Indoor Wi-Fi Security Camera

This blog post highlights the failed and successful attempts on attacking the Lorex camer. A follow-up blog post will go in-depth on the vulnerability found and ultimately used at Pwn2Own Ireland.

40 minutes

Technology

Oct 2024

Blog

CVE-2024-8036: Multiple ABB products affected by insecure updates

Midnight Blue and Secura found two security vulnerabilities in multiple ABB products used in critical OT environments, allowing for remote code execution

30 minutes

Critical Infrastructure

Technology

Oct 2024

Research

RISK:STATION

A zero-day vulnerability in the Synology® DiskStation and BeeStation product line, granting remote code execution as root

10 minutes

Technology

Aug 2023

Research

RE:TETRA CVEs

During our TETRA:BURST research, we found numerous vulnerabilities in TETRA equipment and underlying technologies. This page is an overview of the findings.

10 Minutes

No items found.

Jul 2023

Research

TETRA:BURST

TETRA:BURST is a collection of five vulnerabilities, affecting the Terrestrial Trunked Radio (TETRA) standard used globally by emergency services and critical infrastructure.

10 Minutes

No items found.

Sep 2020

Research

Where's crypto - Automated Identification and Classification of Proprietary Cryptographic Primitives

A novel approach to automate the identification and classification of (proprietary) cryptographic primitives within binary code, based on Data Flow Graph (DFG) isomorphism

10 Minutes

No items found.