DomainTools | 18. The Machine Kernel of Truth

**Executive summary:** This podcast/blog post highlights two security issues: critical TCP/IP SACK implementation vulnerabilities in Linux and FreeBSD (including SACK Panic which can crash kernels and other SACK-based DoS variants) with vendor patches and mitigations discussed, and an active Turla APT campaign that deployed multiple backdoors (Neptun on Exchange, Meterpreter disguised as .wav, PowerShellRunner-derived implants), reused and combined leaked Equation Group tools, leveraged living-off-the-land techniques, and targeted government, ICT, and education sectors while opportunistically using OilRig infrastructure.