{"version":1,"type":"rich","provider_name":"Libsyn","provider_url":"https:\/\/www.libsyn.com","height":90,"width":600,"title":"March23: buy browser extensions, attackers don't need exploits, socvel CTI quiz","description":" Check out the BrakeSecEd Twitch at https:\/\/twitch.tv\/brakesec  Join the Discord! https:\/\/bit.ly\/brakesecDiscord  Questions and topics: (please feel free to update or make comments for clarifications) * https:\/\/techoreon.com\/http-flaw-in-apple-passwords-left-iphones-vulnerable\/ * https:\/\/darkmarc.substack.com\/p\/attackers-dont-need-exploits-when * https:\/\/www.techzine.eu\/news\/security\/129713\/the-browser-is-riddled-with-bugs-2025-may-squash-them\/ * https:\/\/medium.com\/@vanvleet\/compound-probability-you-dont-need-100-coverage-to-win-a2e650da21a4 (interesting article on quantifying attack risk by your coverage in MITRE) * https:\/\/www.promptfoo.dev\/blog\/agent-security\/ * https:\/\/www.socvel.com\/quiz\/ - 20March2025 edition! * https:\/\/secureannex.com\/blog\/buying-browser-extensions\/ - interesting article about browser extensions * https:\/\/gist.github.com\/c0m4r\/45e15fc1ec13c544393feafca30e74de?permalink_comment_id=5298117#gistcomment-5298117 * https:\/\/www.bleepingcomputer.com\/news\/security\/-particle-chrome-extension-sold-to-new-dev-who-immediately-turns-it-into-adware\/ * https:\/\/arealsociety.substack.com\/p\/you-can-just-take-things-cyber-letters?r=99bhj - oh boy, cyber \u2018letters of marque\u2019  Additional information \/ pertinent LInks (Would you like to know more?):  * VanVleet detection engineering podcast appearance: https:\/\/www.youtube.com\/watch?v=5DAQkvOyqME * https:\/\/medium.com\/@vanvleet\/technique-analysis-and-modeling-ffef1f0a595a * https:\/\/github.com\/prodaft\/cradle\/ * https:\/\/blog.talosintelligence.com\/css-abuse-for-evasion-and-tracking\/ * https:\/\/www.gdatasoftware.com\/blog\/2025\/03\/38161-analysis-fin7-anubis-backdoor   Show points of Contact: Amanda Berlin: https:\/\/www.linkedin.com\/in\/amandaberlin\/ Brian Boettcher: https:\/\/www.linkedin.com\/in\/bboettcher96\/ Bryan Brake: https:\/\/linkedin.com\/in\/brakeb Brakesec Website: https:\/\/www.brakeingsecurity.com Youtube channel: https:\/\/youtube.com\/@BrakeSecEd Twitch Channel: https:\/\/twitch.tv\/brakesec   Music:  Music provided by Chillhop Music: https:\/\/chillhop.ffm.to\/creatorcred  &quot;Flex&quot; by Jeremy Blake Courtesy of Youtube media library  ","author_name":"BrakeSec Education Podcast","author_url":"https:\/\/www.youtube.com\/c\/BDSPodcast","html":"<iframe title=\"Libsyn Player\" style=\"border: none\" src=\"\/\/html5-player.libsyn.com\/embed\/episode\/id\/35846015\/height\/90\/theme\/custom\/thumbnail\/yes\/direction\/forward\/render-playlist\/no\/custom-color\/88AA3C\/\" height=\"90\" width=\"600\" scrolling=\"no\"  allowfullscreen webkitallowfullscreen mozallowfullscreen oallowfullscreen msallowfullscreen><\/iframe>","thumbnail_url":"https:\/\/assets.libsyn.com\/secure\/content\/186179425"}