Project Zero: FORCEDENTRY: Sandbox Escape
https://googleprojectzero.blogspot.com/2022/03/forcedentry-sandbox-escape.html
Colin Cowie👨🏼💻 on Twitter: "I was able to confirm that the #Spring4Shell exploit works against the "Handling Form Submission" tutorial from here: https://t.co/HCHBFy6JC0 😮 Methodology followed (thanks esell & @BobTShoplifter) https://t.co/MXNzEiH2JF https://t.co/cHisyIerGi" / Twitter
https://twitter.com/th3_protoCOL/status/1509345839134609408
Spring Framework RCE, Early Announcement
https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement
Turbocharging your security program with XDR | SANS Institute
https://www.sans.org/webcasts/turbocharging-your-security-program-with-xdr/
Pwning 3CX Phone Management Backends from the Internet | by frycos | Medium
https://medium.com/@frycos/pwning-3cx-phone-management-backends-from-the-internet-d0096339dd88
Daughter + Dad: Coming out as transgender | Snyk
https://snyk.io/blog/daughter-dad-coming-transgender/
Spring4Shell: Zero-Day Vulnerability in Spring Framework | Rapid7 Blog
https://www.rapid7.com/blog/post/2022/03/30/spring4shell-zero-day-vulnerability-in-spring-framework/
Tracking cyber activity in Eastern Europe
https://blog.google/threat-analysis-group/tracking-cyber-activity-eastern-europe/
👑 Alyssa Miller 🦄🛩️ on Twitter: "#NewProfilePic It's #TransDayOfVisibility so here's on reminder that transgender people are here among you and can't simply be erased with your hateful laws. Would love to see some of my cis folks add the same reminder to their profiles for today. Anybody willing? https://t.co/SE1yXUF1HO" / Twitter
https://twitter.com/AlyssaM_InfoSec/status/1509509500256018436
I'm here and I'm human - Alyssa Miller
https://alyssasec.com/2022/03/im-here-and-im-human
BlueHat IL 2022 - Samuel Groß & Ian Beer - A Brief History of iMessage Exploitation - YouTube
https://youtu.be/lIlg1MpEL8o
Emotet/e4_emotet_31.03.2022.txt at main · pr0xylife/Emotet · GitHub
https://github.com/pr0xylife/Emotet/blob/main/e4_emotet_31.03.2022.txt
GreyNoise Trends
https://www.greynoise.io/viz/tag/spring-core-rce-attempt
GreyNoise Trends
https://www.greynoise.io/viz/tag/spring-cloud-function-spel-rce-attempt
Emotet/e5_emotet_31.03.2022.txt at main · pr0xylife/Emotet · GitHub
https://github.com/pr0xylife/Emotet/blob/main/e5_emotet_31.03.2022.txt
Post Office Cops Used Social Media Surveillance Program Illegally
https://www.vice.com/en/article/n7nmaz/post-office-cops-used-social-media-surveillance-program-illegally
Triage | Behavioral Report
https://tria.ge/220331-nzbfjafdfr/behavioral1
Login | Microsoft Careers
https://aka.ms/threat-hunter-role
Spring4Shell: Security Analysis of the latest Java RCE '0-day' vulnerabilities in Spring | LunaSec
https://www.lunasec.io/docs/blog/spring-rce-vulnerabilities/
qakbot_31_03_2022 - Pastebin.com
https://pastebin.com/mWbKWgrM
'I can fight with a keyboard': How one Ukrainian IT specialist exposed a notorious Russian ransomware gang - CNNPolitics
https://www.cnn.com/2022/03/30/politics/ukraine-hack-russian-ransomware-gang/index.html
AcidRain | A Modem Wiper Rains Down on Europe - SentinelOne
https://www.sentinelone.com/labs/acidrain-a-modem-wiper-rains-down-on-europe/
GitHub - snovvcrash/KeeThief at syscalls
https://github.com/snovvcrash/KeeThief/tree/syscalls
x86matthew - EventPipe - An IPC method to transfer binary data between processes using event objects
https://www.x86matthew.com/view_post?id=eventpipe
Threat Alert: First Python Ransomware Attack Targeting Jupyter Notebooks
https://blog.aquasec.com/python-ransomware-jupyter-notebook
Url: http://45.67.230.64/kinsing - AlienVault - Open Threat Exchange
https://otx.alienvault.com/indicator/url/http://45.67.230.64/kinsing
stuff.txt · GitHub
https://gist.github.com/esell/c9731a7e2c5404af7716a6810dc33e1a
Unpatched Java Spring Framework 0-Day RCE Bug Threatens Enterprise Web Apps Security
https://thehackernews.com/2022/03/unpatched-java-spring-framework-0-day.html
Hackers Increasingly Using 'Browser-in-the-Browser' Technique in Ukraine Related Attacks
https://thehackernews.com/2022/03/hackers-increasingly-using-browser-in.html
New Python-based Ransomware Targeting JupyterLab Web Notebooks
https://thehackernews.com/2022/03/new-python-based-ransomware-targeting.html
Spring Framework WebappClassLoader code execution CVE-2010-1622 Vulnerability Report
https://exchange.xforce.ibmcloud.com/vulnerabilities/59573
Spring4Shell: Security Analysis of the latest Java RCE '0-day' vulnerabilities in Spring | LunaSec
https://www.lunasec.io/docs/blog/spring-rce-vulnerabilities
GitHub - tweedge/springcore-0day-en: Everything I needed to understand what was going on with "Spring4Shell" - translated source materials, exploit, links to demo apps, and more.
https://github.com/tweedge/springcore-0day-en
National Security Agency Employee Indicted for Willful Transmission and Retention of National Defense Information | OPA | Department of Justice
https://www.justice.gov/opa/pr/national-security-agency-employee-indicted-willful-transmission-and-retention-national
New Milestones for Deep Panda: Log4Shell and Digitally Signed Fire Chili Rootkits
https://www.fortinet.com/blog/threat-research/deep-panda-log4shell-fire-chili-rootkits
ImpressCMS: from unauthenticated SQL injection to RCE | Karma(In)Security
http://karmainsecurity.com/impresscms-from-unauthenticated-sqli-to-rce