The ‘Groove’ Ransomware Gang Was a Hoax – Krebs on Security
https://krebsonsecurity.com/2021/11/the-groove-ransomware-gang-was-a-hoax/
The Booming Underground Market for Bots That Steal Your 2FA Codes
https://www.vice.com/en/article/y3vz5k/booming-underground-market-bots-2fa-otp-paypal-amazon-bank-apple-venmo
From Zero to Domain Admin
https://thedfirreport.com/2021/11/01/from-zero-to-domain-admin/
Zero Day Initiative — Pwn2Own Austin 2021 - Schedule and Live Results
https://www.zerodayinitiative.com/blog/2021/11/1/pwn2ownaustin
Alert! Hackers Exploiting GitLab Unauthenticated RCE Flaw in the Wild
https://thehackernews.com/2021/11/alert-hackers-exploiting-gitlab.html
Destructive\' cyberattack hits National Bank of Pakistan
https://therecord.media/destructive-cyberattack-hits-national-bank-of-pakistan/
Tweet / Twitter
https://twitter.com/GossiTheDog/status/1455204386834206729
APT-C-59(芜琼洞)组织2021年攻击行动揭秘
https://mp.weixin.qq.com/s/WBpML3BTxFPHmBgyunmEEA
Analysing TA551/Shathak Malspam With Binary Refinery
https://bin.re/blog/analysing-ta551-malspam-with-binary-refinery/
Graham Gold 💩 🌮 (infosec.exchange/@cirriustech) on Twitter: "Caption this, infosec style https://t.co/b6hyDBSA5s" / Twitter
https://twitter.com/cirriustech/status/1455437804150870019
Page Not Found - Zoom
http://bit.ly/3FiUamq
Micro-channel public platform
https://mp-weixin-qq-com.translate.goog/s/WBpML3BTxFPHmBgyunmEEA?_x_tr_sl=zh-CN&_x_tr_tl=en&_x_tr_hl=zh-CN&_x_tr_pto=nui
Sherrod DeGrippo 📬 on Twitter: "A lot of debate about if you need to know how to code to be in security. Is the dev community having a debate about how you need to know security to be a real dev?" / Twitter
https://twitter.com/sherrod_im/status/1455370517662289922
GitHub - dafthack/MFASweep: A tool for checking if MFA is enabled on multiple Microsoft Services
https://github.com/dafthack/MFASweep
BlackMatter: New Data Exfiltration Tool Used in Attacks | Symantec Enterprise Blogs
https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/blackmatter-data-exfiltration
An Update On Our Use of Face Recognition | Meta
https://about.fb.com/news/2021/11/update-on-use-of-face-recognition/
Micro-channel public platform
https://mp-weixin-qq-com.translate.goog/s/CGHDuJAb4dav_th25yYpWA?_x_tr_sl=zh-CN&_x_tr_tl=en&_x_tr_hl=zh-CN&_x_tr_pto=nui
Frank McGovern on Twitter: "Hi, I’m Frank. I’m the sole Cybersecurity Architect for a Fortune 100 org. I barely know code. I barely know scripting. I barely know containers. I barely know forensics. I’ve never popped a shell. You’ll be OK. I depend on coworkers & other SME’s to fill me in while I learn." / Twitter
https://twitter.com/frankmcg/status/1455380836858089477
Page Not Found - Zoom
https://bit.ly/3FiUamq
Microsoft brings JavaScript to Excel | TechCrunch
https://techcrunch.com/2021/11/02/microsoft-brings-javascript-to-excel/
An Overview of the GDPR AI-Data Governance Control Framework | Udemy
https://www.udemy.com/how-to-implement-ai-data-governance-control-framework/
GitHub - EspressoCake/DLL-Hijack-Search-Order-BOF: DLL Hijack Search Order Enumeration BOF
https://github.com/EspressoCake/DLL-Hijack-Search-Order-BOF
Google to Pay Hackers $31,337 for Exploiting Patched Linux Kernel Flaws
https://thehackernews.com/2021/11/google-to-pay-hackers-31337-for.html
Sawyer Hackett on Twitter: "This is where we are as a country. Hundreds of Qanon believers gathered at the site of JFK’s assassination because they believe his son JFK Jr. will return from the dead to run on a 2024 unity ticket with Trump. Deeply disturbing. https://t.co/StGc3d5ndv" / Twitter
https://twitter.com/SawyerHackett/status/1455611962478505991
Hunting for potential network beaconing patterns using Apache Spark via Azure Synapse – Part 1 - Microsoft Community Hub
https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/hunting-for-potential-network-beaconing-patterns-using-apache/ba-p/2916179
Tae’lur Alexis on Twitter: "8 hour intense interview with no breaks just to be still told I’m not technical enough. I need a break from the interview process for the near future." / Twitter
https://twitter.com/TaelurAlexis/status/1455634239240736778
GitHub - fofapro/fapro: Fake Protocol Server
https://ift.tt/3hxewOx
Intezer on Twitter: "[1/2]❗️Attention❗️ Weakly protected Giltab servers under a live attack. Based on Protect sensor, attacker delivers a TCP reverse shell named "gitlab.elf" to later run XMRig miner Use Intezer Protect to make sure you are clean https://t.co/esxO5iwpWK IOCs 172[.]96[.]190[.]95 ->> https://t.co/mZ8TP2dMi6" / Twitter
https://twitter.com/IntezerLabs/status/1455160560258097153![Intezer on Twitter: "[1/2]❗️Attention❗️ Weakly protected Giltab servers under a live attack. Based on Protect sensor, attacker delivers a TCP reverse shell named "gitlab.elf" to later run XMRig miner Use Intezer Protect to make sure you are clean https://t.co/esxO5iwpWK IOCs 172[.]96[.]190[.]95 ->> https://t.co/mZ8TP2dMi6" / Twitter](/image/screenshot/9a0a8618abdf231d620dffde4cf643d7.webp)
CVE-2021-22205 | AttackerKB
https://attackerkb.com/topics/D41jRUXCiJ/cve-2021-22205/rapid7-analysis?referrer=twitter
Windows Kernel Exploitation Tutorial Part 5: NULL Pointer Dereference - rootkit
https://rootkits.xyz/blog/2018/01/kernel-null-pointer-dereference/
Windows Kernel Exploitation Tutorial Part 2: Stack Overflow - rootkit
https://rootkits.xyz/blog/2017/08/kernel-stack-overflow/
Jonas L on Twitter: "@martinsohndk calling the api directly is doable as unpriv though https://t.co/pVNlNNXkq0" / Twitter
https://twitter.com/jonasLyk/status/1438339949330317314
Facebook Plans to Shut Down Its Facial Recognition System - The New York Times
https://www.nytimes.com/2021/11/02/technology/facebook-facial-recognition.html
Windows Kernel Exploitation Tutorial Part 1: Setting up the Environment - rootkit
https://rootkits.xyz/blog/2017/06/kernel-setting-up/
MITRE shares list of most dangerous hardware weaknesses
https://www.bleepingcomputer.com/news/security/mitre-shares-list-of-most-dangerous-hardware-weaknesses/