Kim Maida on Twitter: "I dare you to demonstrate how old you are in "developer years" in one sentence without stating any actual years" / Twitter
https://twitter.com/kimmaida/status/1514652490683367438
Diving Deeper into WatchGuard Pre-Auth RCE - CVE-2022-26318 – Assetnote
https://blog.assetnote.io/2022/04/13/watchguard-firebox-rce/
Marcelo Claure on Twitter: "It bothers me when I hear young employees talk about work/life balance at an early stage of their lives. Work your butt off at the beginning, make money, save it and then later in life aim for work/life balance as you will need it with kids and partners etc. this is my POV" / Twitter
https://twitter.com/marceloclaure/status/1514906537474633730
Orion Threat Alert: Flight of the BumbleBee - Cynet
https://www.cynet.com/orion-threat-alert-flight-of-the-bumblebee/
VirusTotal - File - d69665f56ddef7ad4e71971f06432e59f1510a7194386e5f0e8926aea7b88e00
https://www.virustotal.com/gui/file/d69665f56ddef7ad4e71971f06432e59f1510a7194386e5f0e8926aea7b88e00
Google Releases Urgent Chrome Update to Patch Actively Exploited Zero-Day Flaw
https://thehackernews.com/2022/04/google-releases-urgent-chrome-update-to.html
Malware-Traffic-Analysis.net - 2022-04-14 (Thursday) - aa distribution Qakbot (Qbot) infection with Cobalt Strike
https://www.malware-traffic-analysis.net/2022/04/14/index.html
CVE-2022-26809 MS-RPC Vulnerability Analysis | SANS Webcast
https://www.sans.org/webcasts/cve-2022-26809-ms-rpc-vulnerability-analysis/
How vx-underground is building a hacker's dream library - The Record by Recorded Future
https://therecord.media/how-vx-underground-is-building-a-hackers-dream-library/
GitHub - BehroozAbbassi/sdkffi: A code parser for C-Style header files that lets you to parse function's prototypes and data types used in their parameters.
https://github.com/BehroozAbbassi/sdkffi
Chrome Releases: Stable Channel Update for Desktop
https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_14.html
Mysteries of the Registry – Pavel Yosifovich
http://scorpiosoftware.net/2022/04/15/mysteries-of-the-registry/
FBI - Tips
http://tips.fbi.gov
CVE-2022-26809 MS-RPC Vulnerability Analysis | SANS Webcast
http://ow.ly/EREp50IJTCa
Critical Auth Bypass Bug Reported in Cisco Wireless LAN Controller Software
https://thehackernews.com/2022/04/critical-auth-bypass-bug-reported-in.html
Karakurt revealed as data extortion arm of Conti cybercrime syndicate
https://www.bleepingcomputer.com/news/security/karakurt-revealed-as-data-extortion-arm-of-conti-cybercrime-syndicate/
Security alert: Attack campaign involving stolen OAuth user tokens issued to two third-party integrators | The GitHub Blog
https://github.blog/2022-04-15-security-alert-stolen-oauth-user-tokens/
GitHub - netero1010/ScheduleRunner: A C# tool with more flexibility to customize scheduled task for both persistence and lateral movement in red team operation
https://github.com/netero1010/ScheduleRunner
Multiple Vulnerabilities in Cisco Expressway
https://firefart.at/post/multiple_vulnerabilities_cisco_expressway/
JekyllBot:5 Flaws Let Attackers Take Control of Aethon TUG Hospital Robots
https://thehackernews.com/2022/04/new-jekyllbot5-flaws-let-attackers-take.html
Exploiting Windows RPC - CVE-2022-26809 Explained | Patch Analysis - YouTube
https://www.youtube.com/watch?v=GGlwy3_jVYE
Project Zero: CVE-2021-1782, an iOS in-the-wild vulnerability in vouchers
https://googleprojectzero.blogspot.com/2022/04/cve-2021-1782-ios-in-wild-vulnerability.html
Haskers Gang Gives Away ZingoStealer Malware to Other Cybercriminals for Free
https://thehackernews.com/2022/04/haskers-gang-gives-away-zingostealer.html
Jeff Woolsey ☮️ on Twitter: "Please RT Folks, here are some key End of Support dates to avoid any surprises... A few to highlight: SQL Server 2012 SP4 (July '22) Windows Server 2012/2012R2 (Oct. '23) Exchange Server 2013 (April '23) SharePoint Server 2013 (April '23) BizTalk Server 2013 (July '23)" / Twitter
https://twitter.com/wsv_guy/status/1514625303221452805
(1) New Messages!
https://www.avertium.com/resources/threat-reports/in-depth-look-at-iranian-apt-muddywater
Coercing NTLM Authentication from SCCM | by Chris Thompson | Posts By SpecterOps Team Members
https://posts.specterops.io/coercing-ntlm-authentication-from-sccm-e6e23ea8260a