Tag: 2025

13 articles

First analysis of Apple's USB Restricted Mode bypass (CVE-2025-24200)

Date Fri 14 February 2025
Author Loïc Buckwell
Category Vulnerability

Apple released iOS 18.3.1 (build 22D72) to patch a vulnerability tied to the Accessibility framework and reported by Citizen Lab. Let's analyze it!

Read article

Being Overlord on the Steam Deck with 1 Byte

Date Tue 11 February 2025
Author Gwaby
Category Exploitation

In this blog post we explain the consequences of asking our R&D boss for a Steam Deck as a Christmas gift. It involves a couple of vulnerabilities, limited primitives, challenging exploitation and a long disclosure process.

Read article

Security audit of the Notary Project

Date Tue 21 January 2025
Authors Dahmun Goudarzi, Sebastien Rolland, Ramtine Tofighi Shirazi
Category Software

The OSTIF engaged with Quarkslab to perform a security audit of the Notary project, focused on new features.

Read article