From Zero to Domain Admin
https://thedfirreport.com/2021/11/01/from-zero-to-domain-admin/
Page Not Found - Zoom
https://bit.ly/3FiUamq
Researchers Uncover 'Pink' Botnet Malware That Infected Over 1.6 Million Devices
https://thehackernews.com/2021/11/researchers-uncover-pink-botnet-malware.html
‘Trojan Source’ Bug Threatens the Security of All Code – Krebs on Security
https://krebsonsecurity.com/2021/11/trojan-source-bug-threatens-the-security-of-all-code/
Trojan Source: Invisible Vulnerabilities | Light Blue Touchpaper
https://www.lightbluetouchpaper.org/2021/11/01/trojan-source-invisible-vulnerabilities/
BlackMatter: New Data Exfiltration Tool Used in Attacks | Symantec Enterprise Blogs
https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/blackmatter-data-exfiltration
Jonas L on Twitter: "@martinsohndk calling the api directly is doable as unpriv though https://t.co/pVNlNNXkq0" / Twitter
https://twitter.com/jonasLyk/status/1438339949330317314
Tweet / Twitter
https://twitter.com/GossiTheDog/status/1455204386834206729
An Overview of the GDPR AI-Data Governance Control Framework | Udemy
https://www.udemy.com/how-to-implement-ai-data-governance-control-framework/
The DFIR Report on Twitter: "From Zero to Domain Admin ➡️Initial Access: Maldoc deploys Hancitor ➡️C2: #CobaltStrike & #Hancitor ➡️Discovery: net, nltest, check.exe, AD module, scan for backup systems ➡️Privilege Escalation: Zerologon CVE-2020-1472 https://t.co/gtiUAi9EQN" / Twitter
https://twitter.com/TheDFIRReport/status/1455138052708474885
3xp0rt on Twitter: "#Malware #Stealer #PhoenixStealer e62467fc0e7982279b2752a3330e741135366e7b318890aa9613ccc5ddcfd37f.exe: https://t.co/P5UPTBRJQT https://t.co/osQ1DfaLpj Additional information in the comments 👇 https://t.co/3CDnxmdSAK" / Twitter
https://twitter.com/3xp0rtblog/status/1455111070566207493
Kaspersky's stolen Amazon SES token used in Office 365 phishing
https://www.bleepingcomputer.com/news/security/kasperskys-stolen-amazon-ses-token-used-in-office-365-phishing/
FBI: HelloKitty ransomware adds DDoS attacks to extortion tactics
https://www.bleepingcomputer.com/news/security/fbi-hellokitty-ransomware-adds-ddos-attacks-to-extortion-tactics/
New 'Trojan Source' Technique Lets Hackers Hide Vulnerabilities in Source Code
https://thehackernews.com/2021/11/new-trojan-source-technique-lets.html
ブログが見つかりません
http://sandboxescaper.blogspot.com/2021/10/the-polar-bear-method.html
Page Not Found - Zoom
http://bit.ly/3FiUamq
NSO appoints Isaac Benbenisti as CEO - Globes
https://en.globes.co.il/en/article-nso-to-appoint-isaac-benbenisti-as-ceo-1001389237
Exploit Pack
https://exploitpack.com
DECAF Ransomware: A New Golang Threat Makes Its Appearance
https://blog.morphisec.com/decaf-ransomware-a-new-golang-threat-makes-its-appearance
A Mysterious Network of Twitter Bots Promote Alleged NRA Hack
https://www.thedailybeast.com/a-mysterious-network-of-twitter-bots-promote-alleged-nra-hack?ref=home
EU to adopt new cybersecurity rules for smartphones, wireless, IoT devices
https://therecord.media/eu-to-adopt-new-cybersecurity-rules-for-smartphones-wireless-iot-devices/
Cryptolaemus on Twitter: "We have been seeing the TR Distro actor (we call them ChaserLdr) utilize compromised Exchange servers vulnerable to Proxylogon/ProxyShell to send malspam for about 1 week with artifacts indicating access going back to earlyOCT. 1/x" / Twitter
https://twitter.com/cryptolaemus1/status/1455264060644204550