Encrypting our way to SSRF in VMWare Workspace One UEM (CVE-2021-22054) – Assetnote
https://blog.assetnote.io/2022/04/27/vmware-workspace-one-uem-ssrf/
The hybrid war in Ukraine - Microsoft On the Issues
https://blogs.microsoft.com/on-the-issues/2022/04/27/hybrid-war-ukraine-russia-cyberattacks/
Austin Peay State University on Twitter: "APSU ALERT: Ransom ware attack. THIS IS NOT A TEST. SHUT DOWN ALL COMPUTERS NOW!" / Twitter
https://twitter.com/austinpeay/status/1519399475785125889
Assembling the Russian Nesting Doll: UNC2452 Merged into APT29 | Mandiant
https://www.mandiant.com/resources/unc2452-merged-into-apt29
The chronicles of Bumblebee: The Hook, the Bee, and the Trickbot connection | by Eli Salem | Medium
https://elis531989.medium.com/the-chronicles-of-bumblebee-the-hook-the-bee-and-the-trickbot-connection-686379311056
RFC 9116: A File Format to Aid in Security Vulnerability Disclosure
https://www.rfc-editor.org/rfc/rfc9116
GitHub - trustedsec/CS-Remote-OPs-BOF
https://github.com/trustedsec/CS-Remote-OPs-BOF
Microsoft finds new elevation of privilege Linux vulnerability, Nimbuspwn - Microsoft Security Blog
https://www.microsoft.com/security/blog/2022/04/26/microsoft-finds-new-elevation-of-privilege-linux-vulnerability-nimbuspwn/
CISA, FBI, NSA, and International Partners Warn Organizations of Top Routinely Exploited Cybersecurity Vulnerabilities > National Security Agency/Central Security Service > Article
https://www.nsa.gov/Press-Room/News-Highlights/Article/Article/3011622/cisa-fbi-nsa-and-international-partners-warn-organizations-of-top-routinely-exp/
A lookback under the TA410 umbrella: Its cyberespionage TTPs and activity | WeLiveSecurity
https://www.welivesecurity.com/2022/04/27/lookback-ta410-umbrella-cyberespionage-ttps-activity/
Linux Handbook on Twitter: "Did everyone start their Linux journey with Ubuntu? 🤔" / Twitter
https://twitter.com/linuxhandbook/status/1519125172049289216
NSA Cyber on Twitter: "The top #CVEs exploited in 2021 were mostly newly disclosed. This joint advisory highlights the need for timely updates and a patch management program to protect networks. https://t.co/HRSStWEmZA https://t.co/RmViB3sEqm" / Twitter
https://twitter.com/nsacyber/status/1519317972581502978
U.S. Offers $10 Million Bounty for Information on 6 Russian Military Hackers
https://thehackernews.com/2022/04/us-offers-10-million-bounty-for.html
Introduction to VirtualBox security research · Doyensec's Blog
https://blog.doyensec.com/2022/04/26/vbox-fuzzing.html
MalwareBazaar | SHA256 db4158ecdd18f5f5a706b12d2af93169199e02a6d53270acc3f233aa2d459ed2 (Gozi)
https://bazaar.abuse.ch/sample/db4158ecdd18f5f5a706b12d2af93169199e02a6d53270acc3f233aa2d459ed2/
US offers $10 million reward for tips on Russian Sandworm hackers
https://www.bleepingcomputer.com/news/security/us-offers-10-million-reward-for-tips-on-russian-sandworm-hackers/
Hatching Triage | Malware sandboxing report by Hatching Triage
https://tria.ge/220427-gqchxachgq
Azure Monitor – Malicious KQL Query – SecureCloudBlog
https://securecloud.blog/2022/04/27/azure-monitor-malicious-kql-query/
Remove null bytes, 4 more - CyberChef
https://is.gd/jZffiz
Tarah M. Wheeler on Twitter: "Why am I retiring from CTFs? https://t.co/dY214LeMRN https://t.co/r5x7rm4TN1" / Twitter
https://twitter.com/tarah/status/1519403615290462208
NPM Bug Allowed Attackers to Distribute Malware as Legitimate Packages
https://thehackernews.com/2022/04/npm-bug-allowed-attackers-to-distribute.html
Amit Yoran on Twitter: "Excited to announce (https://t.co/GTYIqB5Lmd) @TenableSecurity's intent to acquire @bitdiscovery. Can’t wait to work alongside great dude and security legend @jeremiahg, rockstar @RSnake and the rest of the kick ass team there!" / Twitter
https://twitter.com/ayoran/status/1519047418049871873
4-Hour Time-to-Ransom Seen in Quantum Attack as Accelerated Ransomware Increasingly Common | SecurityWeek.Com
https://www.securityweek.com/4-hour-time-ransom-seen-quantum-attack-accelerated-ransomware-increasingly-common
Redis, MongoDB, and Elastic: 2022’s top exposed databases
https://www.bleepingcomputer.com/news/security/number-of-publicly-exposed-database-instances-hits-new-record/
Fundraiser by Leonid Volkov : Join Navalny Team now!
https://www.gofundme.com/f/navalny-team
Microsoft Discovers New Privilege Escalation Flaws in Linux Operating System
https://thehackernews.com/2022/04/microsoft-discovers-new-privilege.html
Mor Davidovich on Twitter: "Introducing KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings). All credits go to @tiraniddo @cube0x0 @harmj0y, most of the code was taken from their tools. https://t.co/gyTmaITNin" / Twitter
https://twitter.com/dec0ne/status/1518516602458759168