Relaying Kerberos over DNS using krbrelayx and mitm6 - dirkjanm.io
https://dirkjanm.io/relaying-kerberos-over-dns-with-krbrelayx-and-mitm6/
New Sandworm malware Cyclops Blink replaces VPNFilter - NCSC.GOV.UK
https://www.ncsc.gov.uk/news/joint-advisory-shows-new-sandworm-malware-cyclops-blink-replaces-vpnfilter
NCSC UK on Twitter: "New Sandworm malware Cyclops Blink replaces VPNFilter https://t.co/NxHaWWJW4b" / Twitter
https://twitter.com/NCSC/status/1496500441219276803
Threat Intelligence on Twitter: "New #wiper malware being used in attacks on #Ukraine 1bc44eef75779e3ca1eefb8ff5a64807dbc942b1e4a2672d77b9f6928d292591" / Twitter
https://twitter.com/threatintel/status/1496578746014437376
Ciaran Martin on Twitter: "There's a lot of incidental speculation about the cyber dimension of the Russia/Ukraine crisis. Much of it implies a degree of certainty about how it will play out. Here's why I think it's impossible to have much certainty when it comes to Russia & the West 1/🧵" / Twitter
https://twitter.com/ciaranmartinoxf/status/1496240171485908993
The Bvp47 - a Top-tier Backdoor of US NSA Equation Group | Beijing Qi an Pangu Laboratory Technology Co., Ltd
https://www.pangulab.cn/en/post/the_bvp47_a_top-tier_backdoor_of_us_nsa_equation_group/
The_Bvp47_a_top-tier_backdoor_of_us_nsa_equation_group.en.pdf
https://www.pangulab.cn/files/The_Bvp47_a_top-tier_backdoor_of_us_nsa_equation_group.en.pdf
Erin Reed on Twitter: "Greg Abbot has officially directed Family and Protective Services to begin investigating all trans children in Texas and prosecuting their parents as child abusers. He has also instructed all teachers, doctors, and caregivers to begin reporting any trans students they see. https://t.co/AO4FdYNuym" / Twitter
https://twitter.com/ErinInTheMorn/status/1496511215719399431
ESET research on Twitter: "Breaking. #ESETResearch discovered a new data wiper malware used in Ukraine today. ESET telemetry shows that it was installed on hundreds of machines in the country. This follows the DDoS attacks against several Ukrainian websites earlier today 1/n" / Twitter
https://twitter.com/esetresearch/status/1496581903205511181
Dirk-jan on Twitter: "New blog: Relaying Kerberos over DNS using krbrelayx and mitm6. New method of gaining RCE on AD hosts in the same VLAN without credentials or needing NTLM, by abusing Kerberos, DNS and Active Directory Certificate Services. Blog: https://t.co/vfJelYofBs" / Twitter
https://twitter.com/_dirkjan/status/1496201867117928453
J. A. Guerrero-Saade on Twitter: "Looking into new #wiper malware in #Ukraine– #EarlyTriage" / Twitter
https://twitter.com/juanandres_gs/status/1496581710368358400
| Job Preference
http://www.jobpreference.com
APT_REPORT/The_Bvp47_a_top-tier_backdoor_of_us_nsa_equation_group.en.pdf at master · blackorbird/APT_REPORT · GitHub
https://github.com/blackorbird/APT_REPORT/blob/master/EquationGroup/The_Bvp47_a_top-tier_backdoor_of_us_nsa_equation_group.en.pdf
Exploit Development: ASLR - Coming To A KUSER_SHARED_DATA Structure Near You! | Home
https://connormcgarr.github.io/kuser-shared-data-changes-win-11/
New Sandworm malware Cyclops Blink replaces VPNFilter - NCSC.GOV.UK
https://www.ncsc.gov.uk/news/new-sandworm-malware-cyclops-blink-replaces-vpnfilter
Emotet/e5_emotet_23.02.2022.txt at main · pr0xylife/Emotet · GitHub
https://github.com/pr0xylife/Emotet/blob/main/e5_emotet_23.02.2022.txt
Second data wiper attack hits Ukraine computer networks - The Record by Recorded Future
https://therecord.media/second-data-wiper-attack-hits-ukraine-computer-networks/
Chinese Experts Uncover Details of Equation Group's Bvp47 Covert Hacking Tool
https://thehackernews.com/2022/02/chinese-experts-uncover-details-of.html
Attack on Ukrainian Government Websites Linked to GRU Hackers - bellingcat
https://www.bellingcat.com/news/2022/02/23/attack-on-ukrainian-government-websites-linked-to-russian-gru-hackers/
tmp.0ut on Twitter: "We are pleased to announce tmp.0ut Volume 2 https://t.co/zhxrUC420L https://t.co/3Lmxi5sz32" / Twitter
https://twitter.com/tmpout/status/1496235851155746818
GitHub - projectdiscovery/nuclei-burp-plugin: Nuclei plugin for BurpSuite
https://github.com/projectdiscovery/nuclei-burp-plugin
Urgent Webcast: Russian Cyber Attack Escalation in Ukraine - What You Need To Know! | SANS Institute
https://www.sans.org/u/1kQn
NSA Cyber on Twitter: "New #malware, Cyclops Blink, is detailed in the @NCSC, @FBI, @CISAgov, and @NSAgov advisory. Use the guidance to patch devices to be free of it. https://t.co/D47qXptKPA" / Twitter
https://twitter.com/nsacyber/status/1496502644030021636
Dmitri Alperovitch on the risks of escalation | The Economist
https://www.economist.com/by-invitation/2022/02/23/dmitri-alperovitch-on-the-risks-of-escalation
ESET research on Twitter: "In one of the targeted organizations, the wiper was dropped via the default (domain policy) GPO meaning that attackers had likely taken control of the Active Directory server. 5/n" / Twitter
https://twitter.com/ESETresearch/status/1496581914769207298
Shields Up | CISA
http://cisa.gov/shields-up
Lares on Twitter: "New on the Lares blog - The Lowdown on Lateral Movement: https://t.co/l3BMAo0eTr" / Twitter
https://twitter.com/Lares_/status/1496497895901642758
25 Malicious JavaScript Libraries Distributed via Official NPM Package Repository
https://thehackernews.com/2022/02/25-malicious-javascript-libraries.html
Devious phishing method bypasses MFA using remote access software
https://www.bleepingcomputer.com/news/security/devious-phishing-method-bypasses-mfa-using-remote-access-software/
Project Dynamo - Veteran Led Ukraine and Afghanistan Rescues
https://www.projectdynamo.org/
Chinese Cybersecurity Company Doxes Apparent NSA Hacking Operation
https://www.vice.com/en/article/v7dxg3/chinese-cybersecurity-company-doxes-apparent-nsa-hacking-operation
Emotet/e5_emotet_22.02.2022.txt at main · pr0xylife/Emotet · GitHub
https://github.com/pr0xylife/Emotet/blob/main/e5_emotet_22.02.2022.txt
forgedhallpass on Twitter: "The first version of the official @pdnuclei template generator @Burp_Suite plugin is now available at: https://t.co/G2NPlf36q1 Feature requests and bug reports are welcome. Feel free to 💬 on Discord. 🎥 coming soon #nuclei #burpsuite #infosec #hackwithautomation #opensource https://t.co/sVErjKrk9V" / Twitter
https://twitter.com/forgedhallpass/status/1496528958371815424
Guide To Attacking JWT (JSON Web Tokens) [Free Download] - RedHunt Labs
https://redhuntlabs.com/a-practical-guide-to-attack-jwt-json-web-token/![Guide To Attacking JWT (JSON Web Tokens) [Free Download] - RedHunt Labs](/image/screenshot/86897ff88a2457f2a305e2b5dec67e79.webp)
Resources for Retired Events Links | 6Connex Event Tech
https://securityweek.6connex.com/event/threatsummit/login
GitHub - BishopFox/unredacter: Never ever ever use pixelation as a redaction technique
https://github.com/BishopFox/unredacter
GitHub - icyguider/Nimcrypt2: .NET, PE, & Raw Shellcode Packer/Loader Written in Nim
https://github.com/icyguider/Nimcrypt2
Getting Linux based eBPF programs to run with eBPF for Windows - Microsoft Open Source Blog
https://cloudblogs.microsoft.com/opensource/2022/02/22/getting-linux-based-ebpf-programs-to-run-with-ebpf-for-windows/
nao_sec on Twitter: "#MagnitudeEK started distributing #Magniber using signed msi file https://t.co/YYchbgR43E https://t.co/PnT8AS07NJ" / Twitter
https://twitter.com/nao_sec/status/1496114535455166464
Unpatched bug allows takeover of Horde webmail accounts, servers - The Record by Recorded Future
https://therecord.media/unpatched-bug-allows-takeover-of-horde-webmail-accounts-servers/
Jarrod🦉 on Twitter: "How does this make you feel? https://t.co/C59PNP2sAy" / Twitter
https://twitter.com/Jrod_R87/status/1496245965061304326
Dridex Malware Deploying Entropy Ransomware on Hacked Computers
https://thehackernews.com/2022/02/dridex-malware-deploying-entropy.html
Botconf 2021/22 preliminary programme | Botconf 2021-2022
https://www.botconf.eu/botconf-2021/botconf-2021-22-programme/