🎙️​ In this episode of the Aperture Podcast, #Team82 researcher, Noam Moshe, joins host, Michael Mimoso, to discuss his recent research and development of a generic bypass of leading vendors’ web application firewalls.

The attack technique exploits the vendors’ previous lack of support for JSON syntax in their SQL injection processes. WAFs were previously blind to JSON syntax prepended to a SQL injection payload and would not flag these as malicious. :ablobcatheadphones:​ Listen here: https://claroty.com/resources/podcasts/aperture-podcast-noam-moshe-on-a-generic-bypass-of-web-application-firewalls #LetsTalkAboutXIoT

🎩 Next week, we'll be in London for #BlackHatEurope! We look forward to sharing the latest in research, development, and trends in Information Security. Come say hello to our team at Stand 101, get a FREE t-shirt, and see how we're securing the Extended Internet of Things. https://www.blackhat.com/eu-22/ #LetsTalkAboutXIoT #BlackHat

Are you attending Rockwell Automation Fair next week? Be sure to stop by the #Cybersecurity Operations Center on the Expo floor—sponsored by Claroty—to see live demos that'll give you the tools and knowledge you need to help detect, mitigate, and respond to cyber threats. #ROKevents #BetterTogether #LetsTalkAboutXIoT https://www.rockwellautomation.com/en-us/company/events/in-person-events/automation-fair.html