GitHub - MythicAgents/Athena
https://github.com/MythicAgents/Athena
KlaySwap crypto users lose funds after BGP hijack - The Record from Recorded Future News
https://therecord.media/klayswap-crypto-users-lose-funds-after-bgp-hijack/
The Cyber Startup Observatory - The Global Cyber Innovation Network
https://cyberstartupobservatory.com
Defense of Ukraine on Twitter: "❗️Сайт МОУ зазнав, ймовірно, DDoS-атаки: фіксувалася надмірна кількість звернень на секунду. Проводяться техроботи з відновлення штатного функціонування. Комунікація через сторінки в FB та Twitter, сайти АрміяInform https://t.co/ukMW41irPW та Армія FM https://t.co/IpDnBXoMXw." / Twitter
https://twitter.com/DefenceU/status/1493628291844083723
Stealing and faking Azure AD device identities
https://o365blog.com/post/deviceidentity/
GitHub - daem0nc0re/PrivFu: Kernel mode WinDbg extension and PoCs for token privilege investigation.
https://github.com/daem0nc0re/PrivFu#KernelWritePoCs
New Chrome 0-Day Bug Under Active Attack – Update Your Browser ASAP!
https://thehackernews.com/2022/02/new-chrome-0-day-bug-under-active.html
Chrome Releases: Stable Channel Update for Desktop
https://chromereleases.googleblog.com/2022/02/stable-channel-update-for-desktop_14.html
Tweet / Twitter
https://twitter.com/campuscodi/status/1493301901340905472
shodan-public / nrich · GitLab
https://gitlab.com/shodan-public/nrich
Google Chrome emergency update fixes zero-day exploited in attacks
https://www.bleepingcomputer.com/news/security/google-chrome-emergency-update-fixes-zero-day-exploited-in-attacks/
GitHub - mpgn/BackupOperatorToDA: From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
https://github.com/mpgn/BackupOperatorToDA
Cobalt Strike Training Options - Cobalt Strike Research and Development
https://www.cobaltstrike.com/blog/cobalt-strike-training-options/
MalwareBazaar | Browse Checking your browser
https://bazaar.abuse.ch/browse/tag/HOUSE%209A%20s.r.o/
Last Week in Security (LWiS) - 2022-02-14 | Bad Sector Labs Blog
https://blog.badsectorlabs.com/last-week-in-security-lwis-2022-02-14.html
Include diagrams in your Markdown files with Mermaid | The GitHub Blog
https://github.blog/2022-02-14-include-diagrams-markdown-files-mermaid/
Germán Fernández on Twitter: "New #Qakbot (#obama155) on Valentine's Day ♥️ Signed DLL payloads: /188.119.148.108/1621832826316290.dat /185.61.151.52/1621832826316290.dat /103.155.93.225/1621832826316290.dat XLSB: https://t.co/ecP5eauWAH Config: https://t.co/5PFFkxsdaR 141 C2 🔥 https://t.co/hwdj7katM9" / Twitter
https://twitter.com/1ZRR4H/status/1493321773009494019
Christopher Miller on Twitter: "In Ukraine right now, hackers are attacking state-owned Privatbank & Oschadbank, as well as Ministry of Defense. ATMs & banking services interrupted. MOD and Armed Forces websites are down (picture below). Confirmed by gov's Center for Strategic Comms and Info Security of Ukraine https://t.co/BGhPcfhoCM" / Twitter
https://twitter.com/christopherjm/status/1493623129180196872
Researchers Link ShadowPad Malware Attacks to Chinese Ministry and PLA
https://thehackernews.com/2022/02/researchers-link-shadowpad-malware.html
Hunting for bugs in VMware: View Planner and vRealize Business for Cloud – PT SWARM
https://swarm.ptsecurity.com/hunting-for-bugs-in-vmware-view-planner-and-vrealize-business-for-cloud/
GitHub - antx-code/CVE-2022-22536: SAP memory pipes(MPI) desynchronization vulnerability CVE-2022-22536.
https://github.com/antx-code/CVE-2022-22536
Dropping Files on a Domain Controller Using CVE-2021-43893 | Rapid7 Blog
https://www.rapid7.com/blog/post/2022/02/14/dropping-files-on-a-domain-controller-using-cve-2021-43893/
Eliminating Dangling Elastic IP Takeovers with Ghostbuster – Assetnote
https://blog.assetnote.io/2022/02/13/dangling-eips/
Charting TA2541's Flight | Proofpoint US
https://www.proofpoint.com/us/blog/threat-insight/charting-ta2541s-flight
Cyberpolice Ukraine on Twitter: "Кіберполіція встановлює осіб, причетних до розсилання смс-повідомлень щодо збоїв у роботі банкоматів Інформація про технічні несправності банкоматів, поширена через спам-розсилку, не відповідає дійсності. Деталі: https://t.co/Nxe2hAhcc0 https://t.co/HN7PWaHGxx" / Twitter
https://twitter.com/CyberpoliceUA/status/1493578811492950020
GitHub - xdavidhu/awesome-google-vrp-writeups: 🐛 A list of writeups from the Google VRP Bug Bounty program
https://github.com/xdavidhu/awesome-google-vrp-writeups
Russian hackers have probably penetrated critical Ukraine computer networks, U.S. says - The Washington Post
https://www.washingtonpost.com/national-security/2022/02/15/russia-ukraine-cyber-attacks/
MATANBUCHUS: Another Loader-as-a-Service | 0ffset Training Solutions
https://www.0ffset.net/reverse-engineering/matanbuchus-loader-analysis/
BlackCat (ALPHV) claims Swissport ransomware attack, leaks data
https://www.bleepingcomputer.com/news/security/blackcat-alphv-claims-swissport-ransomware-attack-leaks-data/
Allcome clipbanker is a newcomer in underground forums
https://www.gdatasoftware.com/blog/2022/02/37239-allcome-clipbanker-is-a-newcomer-in-malware-underground-forums
Experts Warn of Hacking Group Targeting Aviation and Defense Sectors
https://thehackernews.com/2022/02/experts-warn-of-hacking-group-targeting.html