2022-01-20 | Hacker Trends

35 Posts

Crypto.com: The best place to buy Bitcoin, Ethereum, and 250+ altcoins

http://Crypto.com

32 Posts

一般社団法人日本ハッカー協会 on Twitter: "2022年1月20日、最高裁判所において、Coinhive事件は逆転無罪判決となりました。これまでの皆様のご支援に深く感謝申し上げます。" / Twitter

https://twitter.com/japanhackera/status/1484054406694060040

30 Posts

MoonBounce: the dark side of UEFI firmware | Securelist

https://securelist.com/moonbounce-the-dark-side-of-uefi-firmware/105468/

16 Posts

vx-underground - Directory

https://samples.vx-underground.org/samples/Families/

13 Posts

Treasury Sanctions Russian-Backed Actors Responsible for Destabilization Activities in Ukraine | U.S. Department of the Treasury

https://home.treasury.gov/news/press-releases/jy0562

12 Posts

Windows Drivers Reverse Engineering Methodology - VoidSec

https://voidsec.com/windows-drivers-reverse-engineering-methodology/

12 Posts

Simple, Secure Identity Verification | ID.me

http://ID.me

10 Posts

The Cyber Startup Observatory - The Global Cyber Innovation Network

https://cyberstartupobservatory.com

10 Posts

VirusTotal - File - 694fb9d8ffeddf9988e6ae8946a50ee195ebb3021b0d0b0370f5246a497c4353

https://www.virustotal.com/gui/file/694fb9d8ffeddf9988e6ae8946a50ee195ebb3021b0d0b0370f5246a497c4353/community

10 Posts

Hackers Attempt to Exploit New SolarWinds Serv-U Bug in Log4Shell Attacks

https://thehackernews.com/2022/01/microsoft-hackers-exploiting-new.html

9 Posts

Zloader Installs Remote Access Backdoors and Delivers Cobalt Strike – Sophos News

https://news.sophos.com/en-us/2022/01/19/zloader-installs-remote-access-backdoors-and-delivers-cobalt-strike/

8 Posts

Google Details Two Zero-Day Bugs Reported in Zoom Clients and MMR Servers

https://thehackernews.com/2022/01/google-details-two-zero-day-bugs.html

8 Posts

Belarusian Government Officials Charged with Aircraft Piracy for Diverting Ryanair Flight 4978 to Arrest Dissident Journalist in May 2021 | OPA | Department of Justice

https://www.justice.gov/opa/pr/belarusian-government-officials-charged-aircraft-piracy-diverting-ryanair-flight-4978-arrest

8 Posts

Memorandum on Improving the Cybersecurity of National Security, Department of Defense, and Intelligence Community Systems - The White House

https://www.whitehouse.gov/briefing-room/presidential-actions/2022/01/19/memorandum-on-improving-the-cybersecurity-of-national-security-department-of-defense-and-intelligence-community-systems/

7 Posts

ryaagard on Twitter: "https://t.co/ffiFyHrakE :) https://t.co/Qvaw9dbus1" / Twitter

https://twitter.com/ryaagard/status/1483592308352294917

7 Posts

One Source to Rule Them All: Chasing AVADDON Ransomware | Mandiant

https://www.mandiant.com/resources/chasing-avaddon-ransomware

7 Posts

WMI for Script Kiddies - TrustedSec

https://hubs.la/Q012zm7n0

7 Posts

https://mp-weixin-qq-com.translate.goog/s/1L7o1C-aGlMBAXzHqR9udA?_x_tr_sl=zh-CN&_x_tr_tl=en&_x_tr_hl=zh-CN

7 Posts

tweets/2022-01-17-IOCs-for-Astaroth-Guildma-infection.txt at master · pan-unit42/tweets · GitHub

https://bit.ly/3KtA9vE

7 Posts

https://mp.weixin.qq.com/s/1L7o1C-aGlMBAXzHqR9udA

7 Posts

Mark Lechtik on Twitter: "[1/n] Today I'm sharing the details of a research done by @vaber_b, @legezo, Ilya Borisov and myself on a UEFI firmware implant found in the wild, dubbed #MoonBounce. We assess that this formerly unknown threat is the work of the infamous #APT41. A 🧵 https://t.co/YSa2R2RGJh" / Twitter

https://twitter.com/_marklech_/status/1484114943108603904

7 Posts

People Can’t See Some NFTs on Twitter, Crypto Wallets After OpenSea Goes Down

https://www.vice.com/en/article/g5qjej/people-cant-see-some-nfts-in-crypto-wallets-after-opensea-goes-down

7 Posts

oss-sec: Linux kernel: Heap buffer overflow in fs_context.c since version 5.1

https://seclists.org/oss-sec/2022/q1/54

7 Posts

blackorbird on Twitter: "#Oceanlotus .mht & .mhtml C2:glitch https://t.co/UYrEUxOWQJ https://t.co/NWi9E0cziL https://t.co/BRQWgsdfIB" / Twitter

https://twitter.com/blackorbird/status/1481527529475559427

7 Posts

Sean Lyngaas on Twitter: "New: @TalosSecurity says the attacker responsible for the data-wiping malware found on Ukrainian gov networks had access 2 those networks as far back as late summer. "The wiper malware was deployed several months after initial access was secured, depending on the network."-@kpyke" / Twitter

https://twitter.com/snlyngaas/status/1484275411597111303

6 Posts

Chris Wysopal on Twitter: "FireEye and McAfee brands are being retired. They will now be Trellix. Trellix plans to be the leader in XDR. "The company name is a reference to a garden trellis that supports plants as they grow—hence the notion of 'living' security." https://t.co/oKuLvXAAFf" / Twitter

https://twitter.com/WeldPond/status/1483805772928753666

6 Posts

test.mysmartlogon.com PingCastle 2023-02-20

https://pingcastle.com/PingCastleFiles/ad_hc_test.mysmartlogon.com.html

Crypto.com: The best place to buy Bitcoin, Ethereum, and 250+ altcoins

一般社団法人日本ハッカー協会 on Twitter: "2022年1月20日、最高裁判所において、Coinhive事件は逆転無罪判決となりました。これまでの皆様のご支援に深く感謝申し上げます。" / Twitter

MoonBounce: the dark side of UEFI firmware | Securelist

vx-underground - Directory

Treasury Sanctions Russian-Backed Actors Responsible for Destabilization Activities in Ukraine | U.S. Department of the Treasury

Windows Drivers Reverse Engineering Methodology - VoidSec

Simple, Secure Identity Verification | ID.me

The Cyber Startup Observatory - The Global Cyber Innovation Network

VirusTotal - File - 694fb9d8ffeddf9988e6ae8946a50ee195ebb3021b0d0b0370f5246a497c4353

Hackers Attempt to Exploit New SolarWinds Serv-U Bug in Log4Shell Attacks

Zloader Installs Remote Access Backdoors and Delivers Cobalt Strike – Sophos News

Google Details Two Zero-Day Bugs Reported in Zoom Clients and MMR Servers

Belarusian Government Officials Charged with Aircraft Piracy for Diverting Ryanair Flight 4978 to Arrest Dissident Journalist in May 2021 | OPA | Department of Justice

Memorandum on Improving the Cybersecurity of National Security, Department of Defense, and Intelligence Community Systems - The White House

ryaagard on Twitter: "https://t.co/ffiFyHrakE :) https://t.co/Qvaw9dbus1" / Twitter

One Source to Rule Them All: Chasing AVADDON Ransomware | Mandiant

WMI for Script Kiddies - TrustedSec

https://mp-weixin-qq-com.translate.goog/s/1L7o1C-aGlMBAXzHqR9udA?_x_tr_sl=zh-CN&_x_tr_tl=en&_x_tr_hl=zh-CN

tweets/2022-01-17-IOCs-for-Astaroth-Guildma-infection.txt at master · pan-unit42/tweets · GitHub

https://mp.weixin.qq.com/s/1L7o1C-aGlMBAXzHqR9udA

People Can’t See Some NFTs on Twitter, Crypto Wallets After OpenSea Goes Down

oss-sec: Linux kernel: Heap buffer overflow in fs_context.c since version 5.1

blackorbird on Twitter: "#Oceanlotus .mht & .mhtml C2:glitch https://t.co/UYrEUxOWQJ https://t.co/NWi9E0cziL https://t.co/BRQWgsdfIB" / Twitter

The Real "F-Word": Understanding the Source of False Positives from EDR Systems & How to Ease the Pain | SANS Institute

SecurityZines

GitHub - nyxgeek/onedrive_user_enum: onedrive user enumeration - pentest tool to enumerate valid o365 users

Cisco bug gives remote attackers root privileges via debug mode

Supply-Chain Risk Management: Doing More for Less - Infosecurity Magazine

EU wants to build its own DNS infrastructure with built-in filtering capabilities - The Record from Recorded Future News

FBI links Diavol ransomware to the TrickBot cybercrime group

Pirates Spammed an Infamous Soviet Short-wave Radio Station with Memes

GitHub - vletoux/pingcastle: PingCastle - Get Active Directory Security at 80% in 20% of the time

Site not found · GitHub Pages

New BHUNT Password Stealer Malware Targeting Cryptocurrency Wallets

https://pingcastle.com/download/

Chris Wysopal on Twitter: "FireEye and McAfee brands are being retired. They will now be Trellix. Trellix plans to be the leader in XDR. "The company name is a reference to a garden trellis that supports plants as they grow—hence the notion of 'living' security." https://t.co/oKuLvXAAFf" / Twitter

test.mysmartlogon.com PingCastle 2023-02-20