Join us for an immersive, two-day cybersecurity conference in Da Nang’s Ariyana Convention Centre. Whether it’s securing files, defending against peripheral media-borne threats, or building a defense-in-depth perimeter around your secure environments, discover the critical role you’ll play in your organization’s cybersecurity.

Experience OPSWAT’s threat prevention capabilities in real-time through hands-on product demos and interactive presentations in our state-of-the-art CIP lab and immersive booths. Then network with cybersecurity experts and peers before you’re invited to unwind with a VIP gala dinner and a choice of local Vietnamese adventure in and around Da Nang.

Global Customer and Partner Summit 2025
15-17 January | Da Nang, Vietnam

The future of cybersecurity is in your hands — RSVP for OPX25 today.

InQuest Email Attack Simulation

This month we harvested 933 samples from the wild capable of bypassing either Microsoft or Google. Of those, Microsoft missed 741 (79%), and Google missed 181 (19%). InQuest, MailTAC for reference, missed 53 (0.6%). The distribution of misses by file type is depicted below:

InQuest EAS includes samples sourced from 50+ industry leading blogs. This month, we sourced 476 samples from these blogs for inclusion in attack simulation.

Want to validate the efficacy of your email security stack? InQuire here for a one-month free email attack simulation.

InQuest Labs Research Spotlight

LOLESXi

The goal of the LOLESXi project is to identify, track, and document native VMware ESXi binaries and scripts that adversaries utilize during offensive campaigns. By cataloging these tools, the project aims to raise awareness and provide information to enhance detection capabilities.

bug.directory 🐛

bug.directory is a searchable Obsidian vault brought to you by the exploits.club team. It’s intended to serve as a collection of vuln research, exploit development, and reverse engineering resources to help you get spun up on new projects fast.

Atuin

Atuin replaces your existing shell history with a SQLite database, and records additional context for your commands. Additionally, it provides optional and fully encrypted synchronization of your history between machines, via an Atuin server.

Global Security Events

Critical Linux RCE in CUPS — What We Know and How to Prepare

On September 23, 2024, security researcher Simone Margaritelli shared details on social media about an upcoming vulnerability disclosure. In his post, Margaritelli described a critical vulnerability that he had disclosed to the developers three weeks prior — an unauthenticated RCE vulnerability that can potentially affect all GNU/Linux machines.

Critical Vulnerabilities Discovered in Automated Tank Gauge Systems

Recent investigation by Bitsight TRACE has discovered multiple critical 0-day vulnerabilities across six ATG systems from five different vendors. These vulnerabilities pose significant real-world risks, as they could be exploited by malicious actors to cause widespread damage, including physical damage, environmental hazards, and economic losses. What’s even more concerning is that, besides multiple warnings in the past, thousands of ATGs are still currently online and directly accessible over the Internet, making them prime targets for cyberattacks, especially in sabotage or cyberwarfare scenarios.

Turning Everyday Gadgets into Bombs is a Bad Idea

Not all things that could exist should exist, and some ideas are better left unimplemented. Technology alone has no ethics: the difference between a patch and an exploit is the method in which a technology is disclosed. Exploding batteries have probably been conceived of and tested by spy agencies around the world, but never deployed en masse because while it may achieve a tactical win, it is too easy for weaker adversaries to copy the idea and justify its re-deployment in an asymmetric and devastating retaliation

Useful Links

Support

Social

X.com

GitHub

InQuest Insider - Your monthly resource for the latest in cyber security news, trends, tips, and tools. Subscribe here.

Unsubscribe here.