Tweet / Twitter
https://twitter.com/campuscodi/status/1458668057040097283
Alan Paller, Cyber Security Industry Titan and SANS Institute Founder, Passes Away | SANS Institute
https://www.sans.org/press/announcements/alan-paller-cyber-security-industry-titan-and-sans-institute-founder-passes-away/
SANS Institute on Twitter: "It is with deep sadness we share that SANS founder Alan Paller, passed away on Nov 9. He was a pioneer in the cybersecurity industry, championing the need for greater education & knowledge for practitioners, and this is a profound loss. Full statement: https://t.co/88WRSSZaRL https://t.co/1mANM5PA6T" / Twitter
https://twitter.com/SANSInstitute/status/1458837836787032071
Zero-Day Disclosure: PAN GlobalProtect CVE-2021-3064
https://www.randori.com/blog/cve-2021-3064/
ESET Research on Twitter: "#ESETresearch discovered a trojanized IDA Pro installer, distributed by the #Lazarus APT group. Attackers bundled the original IDA Pro 7.5 software developed by @HexRaysSA with two malicious components. @cherepanov74 1/5 https://t.co/WEAJz4Gxpi" / Twitter
https://twitter.com/esetresearch/status/1458438155149922312
Analyzing a watering hole campaign using macOS exploits
https://blog.google/threat-analysis-group/analyzing-watering-hole-campaign-using-macos-exploits/
The hunt for NOBELIUM, the most sophisticated nation-state attack in history - Microsoft Security Blog
https://www.microsoft.com/security/blog/2021/11/10/the-hunt-for-nobelium-the-most-sophisticated-nation-state-attack-in-history/
CVE-2021-3064 PAN-OS: Memory Corruption Vulnerability in GlobalProtect Portal and Gateway Interfaces
https://security.paloaltonetworks.com/CVE-2021-3064
Tweet / Twitter
https://twitter.com/browninfosecguy/status/1458039376693366784
Kaspersky | Courses > Advanced Malware Analysis Techniques
https://kas.pr/ok5y
Zero-Day Disclosure: PAN GlobalProtect CVE-2021-3064
https://www.randori.com/blog/cve-2021-3064
HPE says hackers breached Aruba Central using stolen access key
https://www.bleepingcomputer.com/news/security/hpe-says-hackers-breached-aruba-central-using-stolen-access-key/
Secondary-Contexts - Google スライド
https://docs.google.com/presentation/d/1jqnpPe0A7L_cVuPe1V0XeW6LOHvMYg5PBqHd96SScJ8
The Kerberos Key List Attack: The return of the Read Only Domain Controllers – SecureAuth
https://www.secureauth.com/blog/the-kerberos-key-list-attack-the-return-of-the-read-only-domain-controllers/
2214 - Windows: WSAQuerySocketSecurity AppContainer EoP - project-zero
https://bugs.chromium.org/p/project-zero/issues/detail?id=2214
Server Resolution Error 1001 - SDxCentral
https://www.sdxcentral.com/articles/news/women-in-cybersecurity-arent-unicorns-we-do-exist/2021/11/
Palo Alto Warns of Zero-Day Bug in Firewalls Using GlobalProtect Portal VPN
https://thehackernews.com/2021/11/palo-alto-warns-of-zero-day-bug-in.html
メールアカウントを盗むフィッシングサイトに要注意、被害は既に1000件以上か | 日経クロステック(xTECH)
https://xtech.nikkei.com/atcl/nxt/news/18/11647/?n_cid=nbpnxt_twbn
Katherine Talia Stevenson on Twitter: "When did it become ok for supervisors to ask the IT department to provide logs that will help the figure out whether or not a remote employee is actually working?" / Twitter
https://twitter.com/ktstevenson/status/1458400334246727680
Top Google Result for NFT Marketplace OpenSea Was a Phishing Site
https://www.vice.com/en/article/k7wakw/top-google-result-opensea-phishing-site
Cyber-mercenary group Void Balaur has been hacking companies for years
https://therecord.media/cyber-mercenary-group-void-balaur-has-been-hacking-companies-for-years/
Selena on Twitter: "Incorporating an identified vulnerability into your red team platform for nine months without notifying the vendor makes you a vulnerability broker, not a red teamer https://t.co/SZRfJgtpMJ" / Twitter
https://twitter.com/selenalarson/status/1458799877320699907
Practical HTTP Header Smuggling: Sneaking Past Reverse Proxies to Attack AWS and Beyond
https://www.intruder.io/research/practical-http-header-smuggling
GitHub - fortra/nanodump: The swiss army knife of LSASS dumping
https://github.com/helpsystems/nanodump
https://synthesis.to/2021/11/11/practical_mba_deobfuscation.html
https://synthesis.to/2021/11/11/practical_mba_deobfuscation.html
Google Caught Hackers Using a Mac Zero-Day Against Hong Kong Users
https://www.vice.com/en/article/93bw8y/google-caught-hackers-using-a-mac-zero-day-against-hong-kong-users
Hoe Booking een Amerikaanse spion in de eigen systemen ontdekte (en niets tegen de klanten zei) - NRC
https://www.nrc.nl/nieuws/2021/11/10/spion-andrew-zocht-bij-booking-uit-wie-naar-midden-oosten-reisde-2-a4065012
InfoSec Handlers Diary Blog - SANS Internet Storm Center
https://i5c.us/d28026
American spy hacked Booking.com, company stayed silent - NRC
https://www.nrc.nl/nieuws/2021/11/10/american-spy-hacked-bookingcom-company-stayed-silent-a4065086
Iran's Lyceum Hackers Target Telecoms, ISPs in Israel, Saudi Arabia, and Africa
https://thehackernews.com/2021/11/irans-lyceum-hackers-target-telecoms.html
Security Weekly Unlocked DIGITAL
https://events.securityweekly.com/unlocked2021