11/18
11/19
11/20
18 Posts

Malicious Python packages caught stealing Discord tokens, installing shells

https://therecord.media/malicious-python-packages-caught-stealing-discord-tokens-installing-shells/
Malicious Python packages caught stealing Discord tokens, installing shells
16 Posts

Some notes about Microsoft Exchange Deserialization RCE (CVE-2021–42321) | by Peterjson | Medium

https://peterjson.medium.com/some-notes-about-microsoft-exchange-deserialization-rce-cve-2021-42321-110d04e8852
Some notes about Microsoft Exchange Deserialization RCE (CVE-2021–42321) | by Peterjson | Medium
13 Posts

Project Zero: Using Kerberos for Authentication Relay Attacks

https://googleprojectzero.blogspot.com/2021/10/using-kerberos-for-authentication-relay.html
Project Zero: Using Kerberos for Authentication Relay Attacks
11 Posts

11 Malicious PyPI Python Libraries Caught Stealing Discord Tokens and Installing Shells

https://thehackernews.com/2021/11/11-malicious-pypi-python-libraries.html
11 Malicious PyPI Python Libraries Caught Stealing Discord Tokens and Installing Shells
10 Posts

FBI - Tips

http://tips.fbi.gov
FBI - Tips
10 Posts

[CONTI] Ransomware Group In-Depth Analysis - PRODAFT

https://www.prodaft.com/resource/detail/conti-ransomware-group-depth-analysis
[CONTI] Ransomware Group In-Depth Analysis - PRODAFT
10 Posts

Cobalt Strike: Decrypting Obfuscated Traffic – Part 4 – NVISO Labs

https://blog.nviso.eu/2021/11/17/cobalt-strike-decrypting-obfuscated-traffic-part-4/
Cobalt Strike: Decrypting Obfuscated Traffic – Part 4 – NVISO Labs
10 Posts

TPM sniffing – Sec Team Blog

https://blog.scrt.ch/2021/11/15/tpm-sniffing/
TPM sniffing – Sec Team Blog
10 Posts

https://dl.packetstormsecurity.net/2111-exploits/gitlab13102reverse-exec.txt

https://dl.packetstormsecurity.net/2111-exploits/gitlab13102reverse-exec.txt
10 Posts

HackSys Extreme Vulnerable Driver — Arbitrary Write NULL (New Solution) | by w4fz5uck5 | Medium

https://wafzsucks.medium.com/hacksys-extreme-vulnerable-driver-arbitrary-write-null-new-solution-7d45bfe6d116
HackSys Extreme Vulnerable Driver — Arbitrary Write NULL (New Solution) | by w4fz5uck5 | Medium
9 Posts

Unzip, 6 more - CyberChef

https://tinyurl.com/zexbjxcd
Unzip, 6 more - CyberChef
9 Posts

FDIC: FIL-74-2021: Computer-Security Incident Notification Final Rule

https://www.fdic.gov/news/financial-institution-letters/2021/fil21074.html
FDIC: FIL-74-2021: Computer-Security Incident Notification Final Rule
9 Posts

Capitol Violence — FBI

https://fbi.gov/wanted/capitol-violence
Capitol Violence — FBI
8 Posts

Triple Threat: North Korea-Aligned TA406 Scams, Spies, and Steals | Proofpoint US

https://www.proofpoint.com/us/blog/threat-insight/triple-threat-north-korea-aligned-ta406-scams-spies-and-steals
Triple Threat: North Korea-Aligned TA406 Scams, Spies, and Steals | Proofpoint US
8 Posts

Space / Twitter

https://twitter.com/i/spaces/1mnxedbBOyPJX
Space / Twitter
7 Posts

Intelligence Insights: November 2021

https://redcanary.com/blog/intelligence-insights-november-2021/
Intelligence Insights: November 2021
7 Posts

Insurers run from ransomware cover as losses mount | Reuters

https://www.reuters.com/markets/europe/insurers-run-ransomware-cover-losses-mount-2021-11-19/
Insurers run from ransomware cover as losses mount | Reuters
7 Posts

New Side Channel Attacks Re-Enable Serious DNS Cache Poisoning Attacks

https://thehackernews.com/2021/11/new-side-channel-attacks-re-enable.html
New Side Channel Attacks Re-Enable Serious DNS Cache Poisoning Attacks
7 Posts

Sponsor @FuzzySecurity on GitHub Sponsors · GitHub

https://github.com/sponsors/FuzzySecurity
Sponsor @FuzzySecurity on GitHub Sponsors · GitHub
6 Posts

Cobalt Strike: Using Known Private Keys To Decrypt Traffic – Part 1 – NVISO Labs

https://blog.nviso.eu/2021/10/21/cobalt-strike-using-known-private-keys-to-decrypt-traffic-part-1/
Cobalt Strike: Using Known Private Keys To Decrypt Traffic – Part 1 – NVISO Labs
6 Posts

The Pitfall of Threat Intelligence Whitelisting: Specter Botnet is 'taking over' Top Legit DNS Domains By Using ClouDNS Service

https://blog.netlab.360.com/the-pitfall-of-threat-intelligence-whitelisting-specter-botnet-is-taking-over-top-legit-dns-domains-by-using-cloudns-service/
The Pitfall of Threat Intelligence Whitelisting: Specter Botnet is 'taking over' Top Legit DNS Domains By Using ClouDNS Service
6 Posts

Cobalt Strike: Using Process Memory To Decrypt Traffic – Part 3 – NVISO Labs

https://blog.nviso.eu/2021/11/03/cobalt-strike-using-process-memory-to-decrypt-traffic-part-3/
Cobalt Strike: Using Process Memory To Decrypt Traffic – Part 3 – NVISO Labs
6 Posts

Experts Expose Secrets of Conti Ransomware Group That Made 25 Million from Victims

https://thehackernews.com/2021/11/experts-expose-secrets-of-conti.html
Experts Expose Secrets of Conti Ransomware Group That Made 25 Million from Victims
6 Posts

GitHub's commitment to npm ecosystem security | The GitHub Blog

https://github.blog/2021-11-15-githubs-commitment-to-npm-ecosystem-security/
GitHub's commitment to npm ecosystem security | The GitHub Blog