Two different attackers poisoned popular open source tools - and showed us the future of supply chain compromise

Although executed by different attackers – Axios by North Korean-linked goons, and Trivy et al. by a loosely knit band of ...
Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...
IEEE

Low Power Capacitive Ultrasonic Transceiver Array for Airborne Object Detection

Abstract: This work presents a low power ultrasonic transceiver line array enabling energy efficient airborne object detection. The line array is based on capacitive micromachined ultrasonic ...
IEEE

Flexible Tactile Sensing Array for Robust Object Recognition

Abstract: Many object recognition techniques rely on visual-based detection, requiring high-quality cameras and substantial computing power for high recognition accuracy. When visual detection ...