GitHub - Crusaders-of-Rust/CVE-2022-0185: CVE-2022-0185
https://github.com/Crusaders-of-Rust/CVE-2022-0185
GitHub - chvancooten/NimPackt-v1: Nim-based assembly packer and shellcode loader for opsec & profit
https://github.com/chvancooten/NimPackt-v1
Will's Root: CVE-2022-0185 - Winning a $31337 Bounty after Pwning Ubuntu and Escaping Google's KCTF Containers
https://www.willsroot.io/2022/01/cve-2022-0185.html
The Cyber Startup Observatory - The Global Cyber Innovation Network
https://cyberstartupobservatory.com
Simple, Secure Identity Verification | ID.me
http://ID.me
German govt warns of APT27 hackers backdooring business networks
https://www.bleepingcomputer.com/news/security/german-govt-warns-of-apt27-hackers-backdooring-business-networks/
Human Rights Watch Among Pegasus Spyware Targets | Human Rights Watch
https://www.hrw.org/news/2022/01/26/human-rights-watch-among-pegasus-spyware-targets
CPX 360 2023 - Check Point Software
https://bit.ly/3ou52Y3
Prime Minister’s Office Compromised: Details of Recent Espionage Campaign
https://www.trellix.com/en-gb/about/newsroom/stories/threat-labs/prime-ministers-office-compromised.html
GitHub - ly4k/PwnKit: Self-contained exploit for CVE-2021-4034 - Pkexec Local Privilege Escalation
https://github.com/ly4k/PwnKit
PwnKit: Local Privilege Escalation Vulnerability Discovered in polkit’s pkexec (CVE-2021-4034) | Qualys Security Blog
https://blog.qualys.com/vulnerabilities-threat-research/2022/01/25/pwnkit-local-privilege-escalation-vulnerability-discovered-in-polkits-pkexec-cve-2021-4034
New DeadBolt ransomware targets QNAP devices, asks 50 BTC for master key
https://www.bleepingcomputer.com/news/security/new-deadbolt-ransomware-targets-qnap-devices-asks-50-btc-for-master-key/
Hussein Daher on Twitter: "It's finally live - I'm sorry for the time this took! The workshop I gave at @THREAT_CON is now live on Udemy for a discounted price. The price will go back to $149 at the end of the week . More details to follow. https://t.co/7LoaJOwhzH https://t.co/aRmDI6QAam" / Twitter
https://twitter.com/HusseiN98D/status/1485953436684365826
Jobs at GitHub
https://boards.greenhouse.io/github/jobs/3836182
VirusTotal - Sign in
https://www.virustotal.com/gui/collection/c40e02a6598ead021ab0013f825159a2caa8f1047ec228bfbf7f68a8ec6318b8
ID.me CEO backtracks on claims company doesn't use powerful facial recognition tech | CyberScoop
https://www.cyberscoop.com/id-me-ceo-backtracks-on-claims-company-doesnt-use-powerful-facial-recognition-tech/
Evolved phishing: Device registration trick adds to phishers’ toolbox for victims without MFA - Microsoft Security Blog
https://www.microsoft.com/security/blog/2022/01/26/evolved-phishing-device-registration-trick-adds-to-phishers-toolbox-for-victims-without-mfa/
Watering hole deploys new macOS malware, DazzleSpy, in Asia | WeLiveSecurity
https://www.welivesecurity.com/2022/01/25/watering-hole-deploys-new-macos-malware-dazzlespy-asia/
A bug lurking for 12 years gives attackers root on most major Linux distros | Ars Technica
https://arstechnica.com/information-technology/2022/01/a-bug-lurking-for-12-years-gives-attackers-root-on-every-major-linux-distro/
hackerfantastic.crypto on Twitter: "The UK government wants to decide who is allowed to be an ethical hacker or not and tie it to legal defense exemptions under the upcoming amended Computer Misuse Act. A government that has shown itself to be nothing but corrupt and unethical... https://t.co/eIj2x3IYxX" / Twitter
https://twitter.com/hackerfantastic/status/1485946271877804033
CRYPTOCVES
https://cryptocves.com/
Bundesamt für Verfassungsschutz on Twitter: "Das Bundesamt für Verfassungsschutz warnt vor einer #Cyberangriffskampagne gegen deutsche Wirtschaftsunternehmen durch die Gruppierung #APT27. Nähere Informationen und Handlungsempfehlungen finden Sie im aktuellen Cyberbrief: https://t.co/7qSyk3bvoT https://t.co/4o1ntQjjXw" / Twitter
https://twitter.com/BfV_Bund/status/1486280723665408002
Bypassing Little Snitch Firewall with Empty TCP Packets - Rhino Security Labs
https://rhinosecuritylabs.com/network-security/bypassing-little-snitch-firewall/
GitHub - AFLplusplus/StdFuzzer: StdFuzzer is the reference implementation of a generic bit-level fuzzer with LibAFL
https://github.com/AFLplusplus/StdFuzzer
Doctor-style register planned for UK infosec professionals • The Register
https://www.theregister.com/2022/01/25/ukgov_cybersecurity_profession_regulation_ukcsc/
Tweet / Twitter
https://twitter.com/campuscodi/status/1486132147354226690
A first look into how WinDbg works - YouTube
https://www.youtube.com/watch?v=QStC084UrgY
Triage | Static Report
https://tria.ge/220126-k7ksdsbef9/static1
GitHub - berdav/CVE-2021-4034: CVE-2021-4034 1day
https://github.com/berdav/CVE-2021-4034
Accidentally Graphing DLL Hijacks in Every Electron App :: [audible]blink
https://ctrl.red/posts/2022/01/accidentally-graphing-dll-hijacks-in-every-electron-app/![Accidentally Graphing DLL Hijacks in Every Electron App :: [audible]blink](/image/screenshot/cd4115c81dd466cc056121f03db34e3f.webp)
Prime Minister’s Office Compromised: Details of Recent Espionage Campaign
https://www.trellix.com/en-us/about/newsroom/stories/threat-labs/prime-ministers-office-compromised.html
Job details | Microsoft Careers
https://careers.microsoft.com/us/en/job/1245076/Senior-Threat-Analyst
CyberSlide - The Cyber Startup Observatory
https://cyberstartupobservatory.com/resources-cyberslide/
Ukrainian government calls out false flag operation in recent data wiping attack - The Record from Recorded Future News
https://therecord.media/ukrainian-government-calls-out-false-flag-operation-in-recent-data-wiping-attack/
Webcam Hacking (again) - Safari UXSS | Ryan Pickren
https://www.ryanpickren.com/safari-uxss
https://haxx.in/files/blasty-vs-pkexec.c
https://haxx.in/files/blasty-vs-pkexec.c
argv silliness | ~ryiron
https://ryiron.wordpress.com/2013/12/16/argv-silliness/
Initial Access Broker Involved in Log4Shell Attacks Against VMware Horizon Servers
https://thehackernews.com/2022/01/initial-access-broker-involved-in.html
Jobs at GitHub
https://boards.greenhouse.io/github/jobs/3836183
Last Week in Security (LWiS) - 2022-01-25 | Bad Sector Labs Blog
https://blog.badsectorlabs.com/last-week-in-security-lwis-2022-01-25.html
GitHub - arthepsy/CVE-2021-4034: PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034)
https://github.com/arthepsy/CVE-2021-4034
White House clamps down on federal cybersecurity after big hacks | CNN Politics
https://www.cnn.com/2022/01/26/politics/white-house-cybersecurity-strategy/index.html
oss-security - CVE-2022-0185: Linux kernel slab out-of-bounds write: exploit and writeup
https://www.openwall.com/lists/oss-security/2022/01/25/14
Build Secure Containers Faster | Reduce Supply Chain Risk
http://Slim.AI
Ryan Mallon on Twitter: "Lol, I blogged about this polkit vulnerability in 2013: https://t.co/a6ciqwCmyt. I failed to find an actual avenue for exploitation, but did identify the root cause." / Twitter
https://twitter.com/ryiron/status/1486207182404472832
Pastebin.com - Not Found (#404)
https://pastebin.com/NLw2z0pK
220126.pdf
https://www.ic3.gov/Media/News/2022/220126.pdf
Wiper in Ukraine Used Code Repurposed From WhiteBlackCrypt Ransomware
https://zetter.substack.com/p/wiper-in-ukraine-used-code-repurposed