You're listening to the CyberWire Network, powered by N2K.

Today's episode is sponsored by SRM, your first call for cybersecurity and

investigations. Threats today are evolving faster than ever before and since 2005 SRM has pioneered

tailored security solutions for global corporations and their executives.

Whether it's defending against cyber attacks with their award-winning team of ethical hackers and incident response specialists,

or navigating the murky waters of compliance and ESG challenges,

SRMs, Insight and Straight straightforward advice will help you navigate complex risks

and emerge more resilient.

Their secret, a culture that nurtures the sharpest minds, giving them access to the newest technologies and the freedom

to solve problems in new ways, enabling them to craft simple effective solutions for your

unique cyber challenges.

Search your first call to discover how SRM can help your business. Hello everyone and welcome to the CyberWire's research Saturday.

I'm Dave Bitner and this is our weekly conversation with researchers and analysts tracking down the threats and vulnerabilities,

solving some of the hard problems of protecting ourselves in a rapidly evolving cyberspace.

Thanks for joining us. And this specific research was targeted to the Chromium browser, which is the open source version of Chrome which is also the

foundation for many of the popular browsers that are used today. That's Ron Masas. That's Ron Masas.

He's a lead vulnerability researcher at Imperva.

The research we're discussing today is titled

Google Chrome SimSteiller Vulnerability, how to protect your files from being stolen.

And yeah, we just wanted to really map out all the ways that the browser can interact with the user file system and explore these mechanisms to better

understand how they handle symbolic links.

So at the root of the issue here, as you mentioned, is this notion of Sim Links, symbolic links.

...