Apple sues NSO Group to curb the abuse of state-sponsored spyware - Apple
https://www.apple.com/newsroom/2021/11/apple-sues-nso-group-to-curb-the-abuse-of-state-sponsored-spyware/
NSO was about to sell hacking tools to France. Now the Israeli spyware company is in crisis. | MIT Technology Review
https://www.technologyreview.com/2021/11/23/1040509/france-macron-nso-in-crisis-sanctions/
New Windows zero-day with public exploit lets you become an admin
https://www.bleepingcomputer.com/news/microsoft/new-windows-zero-day-with-public-exploit-lets-you-become-an-admin/
Tweet / Twitter
https://twitter.com/HowellONeill/status/1463127600344227845
https://gist.githubusercontent.com/plutooo/733318dbb57166d203c10d12f6c24e06/raw/15c5b2612ab62998243ce5e7877496466cabb77f/tsec.txt
https://gist.githubusercontent.com/plutooo/733318dbb57166d203c10d12f6c24e06/raw/15c5b2612ab62998243ce5e7877496466cabb77f/tsec.txt
Ciaran Martin on Twitter: "So here, with trepidation, I've ventured into the end-to-end encryption debate with a lecture earlier this month, published by @BlavatnikSchool👇 & a summary article for @prospect_uk 1/15 https://t.co/fJ6YeGW4My" / Twitter
https://twitter.com/ciaranmartinoxf/status/1463136190987751430
GoDaddy says data breach exposed over a million user accounts | TechCrunch
https://techcrunch.com/2021/11/22/godaddy-breach-million-accounts/
Exploit released for Microsoft Exchange RCE bug, patch now
https://www.bleepingcomputer.com/news/security/exploit-released-for-microsoft-exchange-rce-bug-patch-now/
David Maynor on Twitter: "Security isn't a job or a paycheck. It's a mindset. It is needing to know why or how. It is needing to know you can beat the system or make the system unbeatable. It's not 9-5. It's an obsession. A way you look at the world. The hardest part is not getting taken advantage of." / Twitter
https://twitter.com/Dave_Maynor/status/1462144020054953990
Analysis 24afdc5eec90e61a909be062a613ec02eaf788cd2d9d33a1a048ec43f68c16d6.xlsb (MD5: 59130955F8CE27F24E0AF842E12A769C) Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/f0c40d6b-3687-4922-95ee-04a1b77d4262
Researchers Detail Privilege Escalation Bugs Reported in Oracle VirtualBox
https://thehackernews.com/2021/11/researchers-detail-privilege-escalation.html
Page not found · GitHub · GitHub
https://github.com/klinix5/InstallerFileTakeOver
Attackers don\'t bother brute-forcing long passwords, Microsoft engineer says
https://therecord.media/attackers-dont-bother-brute-forcing-long-passwords-microsoft-engineer-says/
Apple Sues Israeli Spyware Maker NSO Group - The New York Times
https://www.nytimes.com/2021/11/23/technology/apple-nso-group-lawsuit.html
NVISO Technology Day - YouTube
https://www.youtube.com/watch?v=nB2JnQdJWZw
Tommy M (TheAnalyst) on Twitter: "Interesting #TrickBot gtag rob139. Obfuscated HTML attachment with encrypted zip with obfuscated js in blob (HTML smuggling). HTML redirects to /abc.com if it doesn't like the browser. JS > PS > EXE. EXE requires vcredist to run. https://t.co/FQBApWcQzj https://t.co/jSuKEhHfNc https://t.co/yamrH9L13C" / Twitter
https://twitter.com/ffforward/status/1462863261335003143
Feodo Tracker | Blocklist
https://feodotracker.abuse.ch/blocklist/#ip-blocklist
https://bit.ly/3ChiQsE
https://bit.ly/3ChiQsE
Zack Whittaker on Twitter: "New: Web host GoDaddy has confirmed a data breach affecting 1.2 million customers, who use WordPress. GoDaddy said email addresses and customer IDs were accessed, and in some cases customer database passwords and SSL private keys were exposed. https://t.co/ak5NlFsnn1" / Twitter
https://twitter.com/zackwhittaker/status/1462819458632892425
Ex-security chief: the government must prove its encryption plans work—or abandon them - Prospect Magazine
https://www.prospectmagazine.co.uk/science-and-technology/ex-security-chief-ciaran-martin-gchq-government-encryption-plans-facebook-apple
Powershell and DnSpy tricks in .NET reversing – AgentTesla [Part2] - YouTube
https://youtu.be/BM38OshcozE![Powershell and DnSpy tricks in .NET reversing – AgentTesla [Part2] - YouTube](/image/screenshot/3a5e6cc8a586ddc98bb6144de34c4c2d.webp)
The Cyber Startup Observatory - The Global Cyber Innovation Network
https://cyberstartupobservatory.com
Lead Microsoft Engineer Kevin Sheldrake Brings Sysmon to Linux | Li...
https://linuxsecurity.com/features/lead-microsoft-engineer-kevin-sheldrake-brings-sysmon-to-linux
End-to-end encryption: the (fruitless?) search for a compromise | Blavatnik School of Government
https://www.bsg.ox.ac.uk/research/publications/end-end-encryption-fruitless-search-compromise
GoDaddy Breached - Plaintext Passwords - 1.2M Affected
https://www.wordfence.com/blog/2021/11/godaddy-breach-plaintext-passwords/
Cobalt Strike Community Kit
https://cobalt-strike.github.io/community_kit/
Ankit Anubhav on Twitter: "Something is cooking with #dridex ! Every time you connect to the dridex server, it throws a new set of email addresses . The recent samples connect to this also + they do try to send mails on victim's behalf. (worm?) #Takethisdown /137.74.169.189:8080/PJ3ZQWVJPYCYDCA9A6Q2Y6YA https://t.co/9txE84Y0Mv" / Twitter
https://twitter.com/ankit_anubhav/status/1463131601185902594
CVE-2021-43557: Apache APISIX: Path traversal in request_uri variable - xvnpw personal blog
https://xvnpw.github.io/posts/cve_2021_43557_apache_apisix_path_traversal_in_request_uri_variable/
Unlocking the Vault :: Unauthenticated Remote Code Execution against CommVault Command Center
https://srcincite.io/blog/2021/11/22/unlocking-the-vault.html