Towards understanding and mitigating attacks leveraging zero-day exploits

Zero-day vulnerabilities are unknown and therefore not addressed with the result that they can be exploited by attackers to gain unauthorised system access. In order to understand and mitigate against attacks leveraging zero-days or unknown techniques, it is necessary to study the vulnerabilities, exploits and attacks that make use of them. In recent years there have been a number of leaks publishing such attacks using various methods to exploit vulnerabilities. This research seeks to understand what types of vulnerabilities exist, why and how these are exploited, and how to defend against such attacks by either mitigating the vulnerabilities or the method / process of exploiting them. By moving beyond merely remedying the vulnerabilities to defences that are able to prevent or detect the actions taken by attackers, the security of the information system will be better positioned to deal with future unknown threats. An interesting finding is how attackers exploit moving beyond the observable bounds to circumvent security defences, for example, compromising syslog servers, or going down to lower system rings to gain access. However, defenders can counter this by employing defences that are external to the system preventing attackers from disabling them or removing collected evidence after gaining system access. Attackers are able to defeat air-gaps via the leakage of electromagnetic radiation as well as misdirect attribution by planting false artefacts for forensic analysis and attacking from third party information systems. They analyse the methods of other attackers to learn new techniques. An example of this is the Umbrage project whereby malware is analysed to decide whether it should be implemented as a proof of concept. Another important finding is that attackers respect defence mechanisms such as: remote syslog (e.g. firewall), core dump files, database auditing, and Tripwire (e.g. SlyHeretic). These defences all have the potential to result in the attacker being discovered. Attackers must either negate the defence mechanism or find unprotected targets. Defenders can use technologies such as encryption to defend against interception and man-in-the-middle attacks. They can also employ honeytokens and honeypots to alarm misdirect, slow down and learn from attackers. By employing various tactics defenders are able to increase their chance of detecting and time to react to attacks, even those exploiting hitherto unknown vulnerabilities. To summarize the information presented in this thesis and to show the practical importance thereof, an examination is presented of the NSA's network intrusion of the SWIFT organisation. It shows that the firewalls were exploited with remote code execution zerodays. This attack has a striking parallel in the approach used in the recent VPNFilter malware. If nothing else, the leaks provide information to other actors on how to attack and what to avoid. However, by studying state actors, we can gain insight into what other actors with fewer resources can do in the future

Maxillofacial Radiology 202

A 30-year-old male patient, RVD-reactive on treatment, presented with a fast-growing, painful swelling involving the mandible of unknown duration. A panoramic radiograph (PR) and cone-beam computed tomography (CBCT) imaging were performed. What are the pertinent radiological features and your diagnostic hypothesis

Radiology corner

Two patients presented with multiple concentric calcifications superimposed over the mandibular ramus region. The first patient was a 41-year-old male who presented to the dental clinic requesting a partial denture (Figure 1A). The calcifications were detected incidentally on panoramic radiography. The second patient was a 15- year-old female who presented with a left facial swelling that had been present for 7 years (Figure 1B). What is your diagnostic hypothesis for both patients

Maxillofacial Radiology 205

A 5-year-old healthy female patient presented with a one-year history of a slow-growing swelling of the right mandible. The patient reported that the swelling was slightly tender. Intraoral examination revealed a grossly carious lower right primary molar (tooth 85). A panoramic radiograph showed bony expansion of the inferior mandibular border with a lamellated or ‘onion-skin’ appearance. The trabecular bone in the vicinity had a sclerotic appearance. What is your diagnostic hypothesis

Maxillofacial Radiology 201

Two female patients presented with multiple radiolucent lesions noted on panoramic radiography. Cone-beam computed tomography (CBCT) scans confirmed multiple “punched-out” lesions affecting the skull

Maxillofacial Radiology 198

Two paediatric male patients presented with painless bilateral facial swellings (Figures 1 and 2A&B). What are the pertinent radiological findings and your diagnostic hypothesis

Dental radiographic superimposition : an exciting addition to the forensic odontology armamentarium

Forensic odontology plays an important role in the identification of severely decomposed or carbonised corpses, particularly when conventional identification methods fail. This case report highlights the use of dental radiographic superimposition of extensive dental restorative work in the identification of a severely carbonised corpse. Ante- and post-mortem radiographs were analysed via superimposition using the Adobe Photoshop® 2021 image manipulation software. Multiple concordant features, as well as near-perfect radiographic superimposition, enabled a positive identification of the carbonised corpse. This emphasises the need for consultation of forensic odontologists in cases where dental restorative work is noted during post-mortem examination.https://www.sciencedirect.com/journal/forensic-imaginghj2023Oral Pathology and Oral Biolog

Clinicoradiological spectrum of primary aneurysmal bone cysts of the maxillofacial region : a series of 31 cases

OBJECTIVES : The aim of the current study was to analyse the demographic, clinical and radiological features of primary aneurysmal bone cysts (ABCs) involving the maxillofacial region. METHODS : Histologically confirmed cases affecting the maxillofacial region were retrospectively reviewed over a 21-year period (2000–2021). Cases were collected from the archives of five Oral Pathology laboratories from three countries: South Africa, Guatemala and Brazil. The information was analysed, with emphasis on the clinical and radiological spectrum. RESULTS : Following the inclusion criteria, a total of 31 cases of primary ABCs were included in the study. A nearly equal male-to- female distribution was seen, with ABCs occurring in males at an earlier age compared to females. Localised swelling was the main clinical presentation. ABCs had a mandibular predominance, particularly in the posterior regions. All ABCs presented as blow-out expansile well-demarcated radiolucent lesions with the majority having a multilocular appearance. Cortical expansion was seen in 91% of cases with loss of cortical integrity being common (78%). CONCLUSION : Primary ABCs involving the maxillofacial region are extremely rare with the majority of current published literature consisting of isolated case reports. The current study is the first large series detailing the radiological features.http://birpublications.org/dmfram2023Oral Pathology and Oral Biolog

The genetics of the mood disorder spectrum:genome-wide association analyses of over 185,000 cases and 439,000 controls

Background Mood disorders (including major depressive disorder and bipolar disorder) affect 10-20% of the population. They range from brief, mild episodes to severe, incapacitating conditions that markedly impact lives. Despite their diagnostic distinction, multiple approaches have shown considerable sharing of risk factors across the mood disorders. Methods To clarify their shared molecular genetic basis, and to highlight disorder-specific associations, we meta-analysed data from the latest Psychiatric Genomics Consortium (PGC) genome-wide association studies of major depression (including data from 23andMe) and bipolar disorder, and an additional major depressive disorder cohort from UK Biobank (total: 185,285 cases, 439,741 controls; non-overlapping N = 609,424). Results Seventy-three loci reached genome-wide significance in the meta-analysis, including 15 that are novel for mood disorders. More genome-wide significant loci from the PGC analysis of major depression than bipolar disorder reached genome-wide significance. Genetic correlations revealed that type 2 bipolar disorder correlates strongly with recurrent and single episode major depressive disorder. Systems biology analyses highlight both similarities and differences between the mood disorders, particularly in the mouse brain cell-types implicated by the expression patterns of associated genes. The mood disorders also differ in their genetic correlation with educational attainment – positive in bipolar disorder but negative in major depressive disorder. Conclusions The mood disorders share several genetic associations, and can be combined effectively to increase variant discovery. However, we demonstrate several differences between these disorders. Analysing subtypes of major depressive disorder and bipolar disorder provides evidence for a genetic mood disorders spectrum

Bipolar multiplex families have an increased burden of common risk variants for psychiatric disorders.

Multiplex families with a high prevalence of a psychiatric disorder are often examined to identify rare genetic variants with large effect sizes. In the present study, we analysed whether the risk for bipolar disorder (BD) in BD multiplex families is influenced by common genetic variants. Furthermore, we investigated whether this risk is conferred mainly by BD-specific risk variants or by variants also associated with the susceptibility to schizophrenia or major depression. In total, 395 individuals from 33 Andalusian BD multiplex families (166 BD, 78 major depressive disorder, 151 unaffected) as well as 438 subjects from an independent, BD case/control cohort (161 unrelated BD, 277 unrelated controls) were analysed. Polygenic risk scores (PRS) for BD, schizophrenia (SCZ), and major depression were calculated and compared between the cohorts. Both the familial BD cases and unaffected family members had higher PRS for all three psychiatric disorders than the independent controls, with BD and SCZ being significant after correction for multiple testing, suggesting a high baseline risk for several psychiatric disorders in the families. Moreover, familial BD cases showed significantly higher BD PRS than unaffected family members and unrelated BD cases. A plausible hypothesis is that, in multiplex families with a general increase in risk for psychiatric disease, BD development is attributable to a high burden of common variants that confer a specific risk for BD. The present analyses demonstrated that common genetic risk variants for psychiatric disorders are likely to contribute to the high incidence of affective psychiatric disorders in the multiplex families. However, the PRS explained only part of the observed phenotypic variance, and rare variants might have also contributed to disease development