SUNNYVALE, Calif.—March 5, 2025 – SafeBreach, the leader in enterprise security validation, today announced the SafeBreach Labs research team will present updates to its previously released QuickShell research at both Black Hat Asia 2025 on April 3 and RSA Conference 2025 on April 28.
Security Research Team Lead Or Yair will present “QuickShell: Sharing is Caring About an RCE Attack Chain on Quick Share.” This presentation builds on original research first revealed at DEF CON 32 with Security Researcher Shmuel Cohen that explained how the researchers discovered 10 unique vulnerabilities, some of which they assembled into an innovative remote code execution (RCE) attack chain against Quick Share for Windows.
In this latest research, Yair will explain how the team discovered two additional vulnerabilities in Quick Share for Windows that allowed them to bypass two of the security fixes implemented by Google in response to their original research. Google issued one new CVE for the team’s latest discoveries: CVE-2024-10668. Session links and times can be found here:
- At Black Hat on Tuesday, April 3, 2025: 10:20 am – 11:00 am Singapore Time
- At RSAC on Monday, April 28, 2025: 10:50 am – 11:40 am PDT
“Our research into Quick Share shows how attackers can chain together seemingly ‘low severity’ vulnerabilities in creative and unconventional ways to eventually achieve something much more severe. In our case, remote code execution,” said Yair. “Even after initial patches, we found ways to bypass some of these fixes. This proves why continuous security validation matters.”
“SafeBreach Labs continues to uncover critical vulnerabilities in widely used applications, helping to strengthen the security posture of organizations worldwide,” said Tomer Bar, VP of Security Research at SafeBreach. “The latest findings regarding Quick Share showcase our commitment to proactive security research that directly benefits both our customers and the broader cybersecurity community.”
These presentations add to SafeBreach Labs’ impressive track record, having presented original research at every Black Hat USA and DEF CON USA event for the past six years. The company uses these research findings to add original attack content within its platform to help organizations test their defenses against new and emerging threats. With the industry’s most advanced threat research team, SafeBreach ensures its playbook boasts an unmatched collection of 30,000+ attacks and maintains a 24-hour service-level agreement (SLA) to add new attacks to its Hacker’s Playbook based on critical US-CERT and FBI Flash alerts, so customers can immediately test against the latest threats.
SafeBreach has had a landmark year so far, launching its new SafeBreach Exposure Validation Platform in February 2025, which combines breach and attack simulation (BAS) capabilities with attack path validation to provide enterprises with deeper insight into threat exposure and cyber risk. The company also expanded its channel partner program “Elevate” and is preparing to launch a new Managed Security Service Provider (MSSP) program in Q1 2025—two initiatives which were led by SafeBreach Channel Director Joe Wilkinson, who was recently named to CRN’s 2025 Channel Chiefs list for transforming the company’s partner program.
SafeBreach will be at RSA Conference 2025 in Booth #228 in the South Hall from April 28 to May 1 at the Moscone Center in San Francisco. For more information about the sessions or to connect with SafeBreach RSAC 2025, visit www.safebreach.com/events.