Bug Bounty Redacted #1: Exposed Redis and HAProxy - YouTube
https://www.youtube.com/watch?v=mWNaGn8xwoc
Browser In The Browser (BITB) Attack | mr.d0x
https://mrd0x.com/browser-in-the-browser-phishing-attack/
VT4Browsers++ Any indicator, every detail, anywhere ~ VirusTotal Blog
https://blog.virustotal.com/2022/03/vt4browsers-any-indicator-every-detail.html
https://www.openssl.org/news/secadv/20220315.txt
https://www.openssl.org/news/secadv/20220315.txt
Intrusion Truth on Twitter: "Intrusion Truth now knows that Chinese hackers are conducting cyber attacks against Ukraine. We can only assume these have been ordered, or are at least condoned, by the Chinese state. If they haven't, the CCP has a big problem: hackers getting ahead of CCP foreign policy." / Twitter
https://twitter.com/intrusion_truth/status/1503757739557900295
NSA, CISA release Kubernetes Hardening Guidance > National Security Agency/Central Security Service > Article
https://www.nsa.gov/Press-Room/News-Highlights/Article/Article/2716980/nsa-cisa-release-kubernetes-hardening-guidance/
СБ України on Twitter: "СБУ затримала хакера, який забезпечував окупантам мобільний зв’язок в Україні Як встановила СБУ, за один день через цього хакера проходило до тисячі дзвінків. Значна частина з них – від вищого керівництва ворожої армії. ➡️ https://t.co/qKhKU9Ew4S https://t.co/OBIolmv9qh" / Twitter
https://twitter.com/ServiceSsu/status/1503642820527239169
Anti-UPX Unpacking Technique - JPCERT/CC Eyes | JPCERT Coordination Center official Blog
https://blogs.jpcert.or.jp/en/2022/03/anti_upx_unpack.html
Analysis of CVE-2022-21882: Win32k Window Object Type Confusion Exploit | Core Labs
https://www.coresecurity.com/core-labs/articles/analysis-cve-2022-21882-win32k-window-object-type-confusion-exploit
DarkTracer : DarkWeb Criminal Intelligence on Twitter: "[Recommendations for your visitors: change password and remove stealer malware] 1.7M+ credentials of 49K+ government sites have been leaked from users infected with Stealer. TOP 10,000 sites: https://t.co/3yvhg8mtqg If GOV organization needs more information, please contact us. https://t.co/YBiCHm0jxN" / Twitter
https://twitter.com/darktracer_int/status/1500781297413009408![DarkTracer : DarkWeb Criminal Intelligence on Twitter: "[Recommendations for your visitors: change password and remove stealer malware] 1.7M+ credentials of 49K+ government sites have been leaked from users infected with Stealer. TOP 10,000 sites: https://t.co/3yvhg8mtqg If GOV organization needs more information, please contact us. https://t.co/YBiCHm0jxN" / Twitter](/image/screenshot/a4dd755daf548383b0af501be8cca46a.webp)
Nearly 34 Ransomware Variants Observed in Hundreds of Cyberattacks in Q4 2021
https://thehackernews.com/2022/03/nearly-34-ransomware-variants-observed.html
'Dirty Pipe' Linux Flaw Affects a Wide Range of QNAP NAS Devices
https://thehackernews.com/2022/03/dirty-pipe-linux-flaw-affects-wide.html
CVE-2022-22616 - YouTube
https://www.youtube.com/watch?v=S5moPnXnvaE
Mail.ru: почта, поиск в интернете, новости, игры
http://Mail.ru
Shields Up | CISA
http://cisa.gov/shields-up
Blue Team Con 2022 Tickets, Sat, Aug 27, 2022 at 9:00 AM | Eventbrite
https://blueteamcon.eventbrite.com
Tweet / Twitter
https://twitter.com/dinfontay/status/1503766565157838857
Ukraine Arrests ‘Hacker’ It Says Was Routing Calls for Russian Troops
https://www.vice.com/en/article/v7djda/ukraine-arrests-hacker-routing-calls-for-russian-troops
GitHub - pry0cc/tew: A quick ‘n dirty nmap parser written in Golang to convert nmap xml to IP:Port notation.
https://github.com/pry0cc/tew
[DarkTracer] Stealer Malware Intelligence Report - Government - Google スプレッドシート
http://bit.ly/3sA7f6s![[DarkTracer] Stealer Malware Intelligence Report - Government - Google スプレッドシート](/image/screenshot/c3535aa3d296a0ed2a951f4ceb7e0e89.webp)
Finding gadgets like it's 2022
https://www.synacktiv.com/publications/finding-gadgets-like-its-2022.html
CaddyWiper: Yet Another Data Wiping Malware Targeting Ukrainian Networks
https://thehackernews.com/2022/03/caddywiper-yet-another-data-wiping.html
Fake antivirus updates used to deploy Cobalt Strike in Ukraine
https://www.bleepingcomputer.com/news/security/fake-antivirus-updates-used-to-deploy-cobalt-strike-in-ukraine/
Ransomware - The Other Devastating Epidemic - Cyber Innovation Summits
https://cyberinnovationsummits.com/ransomware-the-other-devastating-epidemic/
Senate Cloakroom on Twitter: "Passed by Unanimous Consent, S.623: Sunshine Protection Act, as amended (to make Daylight Saving Time permanent) @SenRubioPress / @SenWhitehouse / others" / Twitter
https://twitter.com/SenateCloakroom/status/1503797632745025542
KB4288: CVE-2022-26500 | CVE-2022-26501
https://www.veeam.com/kb4288
Joey Politano 🏳️🌈 on Twitter: "Instead of telling you when it's safe to cross the street, the walk signs in Crystal City, VA are just repeating "CHANGE PASSWORD". Something's gone terribly wrong here. https://t.co/W5h8OjBXUu" / Twitter
https://twitter.com/JosephPolitano/status/1503131005389099011
BSI - Bundesamt für Sicherheit in der Informationstechnik - Warnung nach §7 BSIG: Virenschutzsoftware des Herstellers Kaspersky (archiviert)
https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Publikationen/Warnungen-nach-P7_BSIG/2022/BSI_W-004-220315.pdf?__blob=publicationFile&v=9
Interview with Ippsec
https://www.hackthebox.com/blog/Interview-with-Ippsec
| Job Preference
http://www.jobpreference.com
Thomas Brewster on Twitter: "NEW - They’re fixing internet in bombed out buildings, finding rogue operators providing Russians with mobile connections and thwarting hackers… The telecom companies of Ukraine and their employees are being hailed as heroes in the war with Russia. https://t.co/jK0XmcXqOG" / Twitter
https://twitter.com/iblametom/status/1503778298354089988
Судья по вызову. Кто стоит за фальшивым делом Навального? - YouTube
https://youtu.be/agKDpYGcPHw
GitHub - Group3r/Group3r: Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.
https://github.com/Group3r/Group3r
Emotet/e5_emotet_15.03.2022.txt at main · pr0xylife/Emotet · GitHub
https://github.com/pr0xylife/Emotet/blob/main/e5_emotet_15.03.2022.txt
Fermat Attack on RSA
https://fermatattack.secvuln.info/
VT4Browsers – Get this Extension for 🦊 Firefox (en-US)
https://addons.mozilla.org/en-US/firefox/addon/vt4browsers/
Jake🇺🇦 on Twitter: "Couple folks out there yeetin some CYCLOPSBLINK samples on VT rn. Samples for everyone 🙌" / Twitter
https://twitter.com/nicastronaut/status/1503772915711496198