Countering threats from North Korea
https://blog.google/threat-analysis-group/countering-threats-north-korea/
Four Russian Government Employees Charged in Two Historical Hacking Campaigns Targeting Critical Infrastructure Worldwide | OPA | Department of Justice
https://www.justice.gov/opa/pr/four-russian-government-employees-charged-two-historical-hacking-campaigns-targeting-critical
DEV-0537 criminal actor targeting organizations for data exfiltration and destruction - Microsoft Security Blog
https://www.microsoft.com/security/blog/2022/03/22/dev-0537-criminal-actor-targeting-organizations-for-data-exfiltration-and-destruction/
GitHub - MythicAgents/tetanus: Mythic C2 agent targeting Linux and Windows hosts written in Rust
https://github.com/MythicAgents/tetanus
GitHub - XaFF-XaFF/Cronos-Rootkit: Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
https://github.com/XaFF-XaFF/Cronos-Rootkit
North Korean Hackers Exploited Chrome Zero-Day to Target Fintech, IT, and Media Firms
https://thehackernews.com/2022/03/north-korean-hackers-exploited-chrome.html
GitHub - nonamecoder/CVE-2022-27254: PoC for vulnerability in Honda's Remote Keyless System(CVE-2022-27254)
https://github.com/nonamecoder/CVE-2022-27254
Russian military behind hack of satellite communication devices in Ukraine at war’s outset, U.S. officials say - The Washington Post
https://www.washingtonpost.com/national-security/2022/03/24/russian-military-behind-hack-satellite-communication-devices-ukraine-wars-outset-us-officials-say/
mandatory/Matthew Bryant on Twitter: "It's time to up our infosec shitposting game (listen with audio) https://t.co/HJflZXlNZ0" / Twitter
https://twitter.com/IAmMandatory/status/1506824003289198594
Emotet/e4_emotet_25.03.2022.txt at main · pr0xylife/Emotet · GitHub
https://github.com/pr0xylife/Emotet/blob/main/e4_emotet_25.03.2022.txt
GitHub - MythicAgents/merlin: Cross-platform post-exploitation HTTP Command & Control agent written in golang
https://github.com/MythicAgents/merlin
GitHub - polygraphene/DirtyPipe-Android: Dirty Pipe root exploit for Android (Pixel 6)
https://github.com/polygraphene/DirtyPipe-Android
Russian military behind hack of satellite communication devices in Ukraine at war’s outset, U.S. officials say - The Washington Post
https://www.washingtonpost.com/national-security/2022/03/24/russian-military-behind-hack-satellite-communication-devices-ukraine-wars-outset-us-officials-say/?tid=ss_tw
Morgan Stanley client accounts breached in social engineering attacks
https://www.bleepingcomputer.com/news/security/morgan-stanley-client-accounts-breached-in-social-engineering-attacks/
VirusTotal - File - 2e52494e776be6433c89d5853f02b536f7da56e94bbe86ae4cc782f85bed2c4b
https://www.virustotal.com/gui/file/2e52494e776be6433c89d5853f02b536f7da56e94bbe86ae4cc782f85bed2c4b
Project Zero: Racing against the clock -- hitting a tiny kernel race window
https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html
SwiftOnSecurity on Twitter: "I'll be honest, I panic about all the stuff I don't know in my field and that I'm falling further behind all the time. All these people crushing it, developing new stuff constantly, and I feel guilty not working or researching." / Twitter
https://twitter.com/swiftonsecurity/status/1507111239016718344
Remote Code Execution on Western Digital PR4100 NAS (CVE-2022-23121) – NCC Group Research
https://research.nccgroup.com/2022/03/24/remote-code-execution-on-western-digital-pr4100-nas-cve-2022-23121/
7 Suspected Members of LAPSUS$ Hacker Gang, Aged 16 to 21, Arrested in U.K.
https://thehackernews.com/2022/03/7-suspected-members-of-lapsus-hacker.html
VirusTotal - File - 03a41d29e3c9763093aca13f1cc8bcc41b201a6839c381aaaccf891204335685
https://www.virustotal.com/gui/file/03a41d29e3c9763093aca13f1cc8bcc41b201a6839c381aaaccf891204335685
FBI - Tips
http://tips.fbi.gov
| Job Preference
http://www.jobpreference.com
Job Not Found
https://recruiting.paylocity.com/Recruiting/Jobs/Details/995660
Malware-Traffic-Analysis.net - 2022-03-24 (Thursday) - Emotet E4 with Cobalt Strike
https://www.malware-traffic-analysis.net/2022/03/24/index.html
Experts Uncover Campaign Stealing Cryptocurrency from Android and iPhone Users
https://thehackernews.com/2022/03/experts-uncover-campaign-stealing.html
Mining data from Cobalt Strike beacons – NCC Group Research
https://research.nccgroup.com/2022/03/25/mining-data-from-cobalt-strike-beacons/
vx-underground on Twitter: "Lockbit ransomware group has placed a $1,000,000 bounty on their own head. They state they will give $1,000,000 to any FBI agent who can locate them. Intel courtesy of @ddd1ms https://t.co/bPDl0aTwDq" / Twitter
https://twitter.com/vxunderground/status/1507359484854915078
Tweet / Twitter
https://twitter.com/alexandruc4/status/1507473089952718851
YEVGENIY VIKTOROVICH PRIGOZHIN — FBI
http://ow.ly/oSlT50Ie593